Declare ECDSA key exchange and ciphersuites Also fix bug in ssl_list_ciphersuites(). For now, disable it on server. Client will offer it but fail if server selects it.

commit: 32ea60a1277c5c06c344e96dcda8d0fd73a21810 [log] [tgz]
author: Manuel Pégourié-Gonnard <mpg@elzevir.fr> Sat Aug 17 17:39:04 2013 +0200
committer: Manuel Pégourié-Gonnard <mpg@elzevir.fr> Tue Aug 27 22:21:19 2013 +0200
tree: ac19a995d50c07aa6723530a9a15cd695a10d609
parent: 0b03200e96160b318649abdcfc853c38bf635188 [diff] [blame]
diff --git a/library/ssl_srv.c b/library/ssl_srv.c
index 53b6031..17b23f1 100644
--- a/library/ssl_srv.c
+++ b/library/ssl_srv.c

@@ -1318,6 +1318,10 @@
                     continue;
 #endif
 
+                if( ciphersuite_info->key_exchange ==
+                    POLARSSL_KEY_EXCHANGE_ECDHE_ECDSA )
+                    continue;
+
                 goto have_ciphersuite;
             }
         }
@@ -1603,9 +1607,9 @@
     *p++ = (unsigned char)( ssl->session_negotiate->ciphersuite      );
     *p++ = (unsigned char)( ssl->session_negotiate->compression      );
 
-    SSL_DEBUG_MSG( 3, ( "server hello, chosen ciphersuite: %d",
+    SSL_DEBUG_MSG( 3, ( "server hello, chosen ciphersuite: 0x%04X",
                    ssl->session_negotiate->ciphersuite ) );
-    SSL_DEBUG_MSG( 3, ( "server hello, compress alg.: %d",
+    SSL_DEBUG_MSG( 3, ( "server hello, compress alg.: 0x%02X",
                    ssl->session_negotiate->compression ) );
 
     /*
commit	32ea60a1277c5c06c344e96dcda8d0fd73a21810	[log] [tgz]
author	Manuel Pégourié-Gonnard <mpg@elzevir.fr>	Sat Aug 17 17:39:04 2013 +0200
committer	Manuel Pégourié-Gonnard <mpg@elzevir.fr>	Tue Aug 27 22:21:19 2013 +0200
tree	ac19a995d50c07aa6723530a9a15cd695a10d609
parent	0b03200e96160b318649abdcfc853c38bf635188 [diff] [blame]