commit d075706ea5fe39d37dad45ba53216a3bb33256aa
author Piotr Sikora <piotrsikora@google.com> Fri Apr 14 02:59:34 2017 -0700
committer CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org> Fri Apr 14 21:50:04 2017 +0000
tree 8bd02ab85dc73932a538261474252eb1d75e110c
parent 71c21b43000d9ca97ac65be5c8ee79c42b55bf3c

Allow selecting ECDH curves in bssl tool.

Change-Id: Ie515386b7f3555a5acf42e37b49e9a831571cb4a
Signed-off-by: Piotr Sikora <piotrsikora@google.com>
Reviewed-on: https://boringssl-review.googlesource.com/15065
Reviewed-by: Adam Langley <agl@google.com>
Reviewed-by: David Benjamin <davidben@google.com>
Commit-Queue: David Benjamin <davidben@google.com>
CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>

tool/server.cc

diff --git a/tool/server.cc b/tool/server.cc
index ae03905..70a85e5 100644
--- a/tool/server.cc
+++ b/tool/server.cc
@@ -35,6 +35,10 @@
         "ciphers",
     },
     {
+        "-curves", kOptionalArgument,
+        "An OpenSSL-style ECDH curves list that configures the offered curves",
+    },
+    {
         "-max-version", kOptionalArgument,
         "The maximum acceptable protocol version",
     },
@@ -190,6 +194,12 @@
     return false;
   }
 
+  if (args_map.count("-curves") != 0 &&
+      !SSL_CTX_set1_curves_list(ctx.get(), args_map["-curves"].c_str())) {
+    fprintf(stderr, "Failed setting curves list\n");
+    return false;
+  }
+
   uint16_t max_version = TLS1_3_VERSION;
   if (args_map.count("-max-version") != 0 &&
       !VersionFromString(&max_version, args_map["-max-version"])) {