From f56bf3d8eea7e14f48417693ac22c22b6ad2458d Mon Sep 17 00:00:00 2001
From: Sean Parkinson <sean@wolfssl.com>
Date: Tue, 29 Jun 2021 10:29:39 +1000
Subject: [PATCH] TLS: Get DH anon working TLS 1.2 and below

Send the server DH parameters in ServerKeyExchange.
./configure '--enable-anon' '--disable-rsa' '--enable-oldtls'
---
 src/internal.c | 9 ++++++---
 1 file changed, 6 insertions(+), 3 deletions(-)

diff --git a/src/internal.c b/src/internal.c
index 8a60a9f8e..af6d4cab3 100644
--- a/src/internal.c
+++ b/src/internal.c
@@ -26502,11 +26502,13 @@ static int DoSessionTicket(WOLFSSL* ssl, const byte* input, word32* inOutIdx,
                         break;
                     }
                 #endif /* !NO_PSK */
-                #if !defined(NO_DH) && (!defined(NO_PSK) || !defined(NO_RSA))
+                #if !defined(NO_DH) && (!defined(NO_PSK) || !defined(NO_RSA) \
+                          || (defined(HAVE_ANON) && !defined(WOLFSSL_NO_TLS12)))
                 #if !defined(NO_PSK)
                     case dhe_psk_kea:
                 #endif
-                #if !defined(NO_RSA)
+                #if !defined(NO_RSA) || (defined(HAVE_ANON) && \
+                                         !defined(WOLFSSL_NO_TLS12))
                     case diffie_hellman_kea:
                 #endif
                     {
@@ -27277,7 +27279,8 @@ static int DoSessionTicket(WOLFSSL* ssl, const byte* input, word32* inOutIdx,
                         break;
                     }
                 #endif /* HAVE_ECC || HAVE_CURVE25519 || HAVE_CURVE448 */
-                #if !defined(NO_DH) && !defined(NO_RSA)
+                #if !defined(NO_DH) && (!defined(NO_RSA) || \
+                             (defined(HAVE_ANON) && !defined(WOLFSSL_NO_TLS12)))
                     case diffie_hellman_kea:
                     {
                         enum wc_HashType hashType;