CVSROOT: /cvs
Module name: src
Changes by: t...@cvs.openbsd.org 2024/12/05 21:35:03
Modified files:
lib/libcrypto/ec: ec_asn1.c ec_curve.c ec_local.h
Log message:
Set nid on group decoded from EC parameters
We match curve parameters against the builtin curves and only accept
them if they're encoding a curve known to us. After getting rid of the
wtls curves, some of which used to coincide with secp curves (sometimes
the wrong ones), the nid is unambiguous. Setting the nid has no direct
implications on the encoding.
This helps ssh avoid doing ugly computations during the key exchange
for PEM keys using this encoding.
ok djm joshua jsing
