Skip to content

Commit 16f0a29

Browse files
johubertjjohubertj
committed
testing
1 parent 78a52ab commit 16f0a29

File tree

1 file changed

+3
-0
lines changed

1 file changed

+3
-0
lines changed

tls/extensions/s2n_server_key_share.c

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -262,6 +262,7 @@ static int s2n_server_key_share_recv_pq(struct s2n_connection *conn,
262262
{
263263
POSIX_ENSURE_REF(conn);
264264
POSIX_ENSURE_REF(extension);
265+
POSIX_ENSURE(s2n_pq_is_enabled, S2N_ERR_ECDHE_UNSUPPORTED_CURVE);
265266

266267
struct s2n_kem_group_params *server_params = &conn->kex_params.server_kem_group_params;
267268
struct s2n_kem_group_params *client_params = &conn->kex_params.client_kem_group_params;
@@ -287,6 +288,8 @@ static int s2n_server_key_share_recv_pq(struct s2n_connection *conn,
287288
POSIX_GUARD(s2n_connection_get_kem_preferences(conn, &kem_pref));
288289
POSIX_ENSURE_REF(kem_pref);
289290

291+
POSIX_ENSURE(sn_kem_preferences_includes_tls13_kem_group(kem_pref, named_group_iana), S2N_ERR_ECDHE_UNSUPPORTED_CURVE);
292+
290293
for (size_t i = 0; i < kem_pref->tls13_kem_group_count; i++) {
291294
if (named_group_iana == kem_pref->tls13_kem_groups[i]->iana_id
292295
&& s2n_kem_group_is_available(kem_pref->tls13_kem_groups[i])) {

0 commit comments

Comments
 (0)