From 531b7ad43a7804d6fdaece570fc39b954373a4a9 Mon Sep 17 00:00:00 2001 From: georgeok Date: Sun, 24 Feb 2019 18:20:57 +0000 Subject: [PATCH] schannel: support CALG_ECDH_EPHEM algorithm Add support for Ephemeral elliptic curve Diffie-Hellman key exchange algorithm option when selecting ciphers. This became available on the Win10 SDK. Closes https://github.com/curl/curl/pull/3608 --- docs/CIPHERS.md | 1 + lib/vtls/schannel.c | 3 +++ 2 files changed, 4 insertions(+) diff --git a/docs/CIPHERS.md b/docs/CIPHERS.md index 0d3be3b56..c01180426 100644 --- a/docs/CIPHERS.md +++ b/docs/CIPHERS.md @@ -496,3 +496,4 @@ WinSSL allows the enabling and disabling of encryption algorithms, but not speci `CALG_ECDH`, `CALG_ECMQV`, `CALG_ECDSA`, +`CALG_ECDH_EPHEM`, diff --git a/lib/vtls/schannel.c b/lib/vtls/schannel.c index 6f55b3b8f..36e68f969 100644 --- a/lib/vtls/schannel.c +++ b/lib/vtls/schannel.c @@ -323,6 +323,9 @@ get_alg_id_by_name(char *name) #endif #ifdef CALG_ECDSA CIPHEROPTION(CALG_ECDSA); +#endif +#ifdef CALG_ECDH_EPHEM + CIPHEROPTION(CALG_ECDH_EPHEM); #endif return 0; }