Updates for Draft 20 of TLS v1.3

2017-05-23 15:56:52 +10:00
parent 38c6d2e3eb
commit 0b32d0368f
4 changed files with 179 additions and 60 deletions
--- a/examples/client/client.c
+++ b/examples/client/client.c
@@ -1520,12 +1520,14 @@ THREAD_RETURN WOLFSSL_THREAD client_test(void* args)
    #ifdef WOLFSSL_TLS13
    if (!helloRetry) {
        if (onlyKeyShare == 0 || onlyKeyShare == 2) {
+        #ifdef HAVE_CURVE25519
            if (useX25519) {
                if (wolfSSL_UseKeyShare(ssl, WOLFSSL_ECC_X25519)
                        != SSL_SUCCESS) {
                    err_sys("unable to use curve secp256r1");
                }
            }
+        #endif
            if (wolfSSL_UseKeyShare(ssl, WOLFSSL_ECC_SECP256R1)
                    != SSL_SUCCESS) {
                err_sys("unable to use curve secp256r1");
@@ -1950,12 +1952,14 @@ THREAD_RETURN WOLFSSL_THREAD client_test(void* args)
                                    (void*)"resumed session");
 #endif

-    #ifdef WOLFSSL_TLS13
+#ifdef WOLFSSL_TLS13
+    #ifdef HAVE_CURVE25519
        if (useX25519) {
            if (wolfSSL_UseKeyShare(ssl, WOLFSSL_ECC_X25519) != SSL_SUCCESS) {
                err_sys("unable to use curve secp256r1");
            }
        }
+    #endif
        if (wolfSSL_UseKeyShare(sslResume,
                                WOLFSSL_ECC_SECP256R1) != SSL_SUCCESS) {
            err_sys("unable to use curve secp256r1");
@@ -1964,12 +1968,12 @@ THREAD_RETURN WOLFSSL_THREAD client_test(void* args)
                                WOLFSSL_ECC_SECP384R1) != SSL_SUCCESS) {
            err_sys("unable to use curve secp384r1");
        }
-        #ifdef HAVE_FFDHE_2048
+    #ifdef HAVE_FFDHE_2048
        if (wolfSSL_UseKeyShare(sslResume, WOLFSSL_FFDHE_2048) != SSL_SUCCESS) {
            err_sys("unable to use DH 2048-bit parameters");
        }
-        #endif
    #endif
+#endif

 #ifndef WOLFSSL_CALLBACKS
        if (nonBlocking) {