X-Git-Url: https://bearssl.org/gitweb//home/git/?p=BearSSL;a=blobdiff_plain;f=src%2Fssl%2Fssl_hs_client.t0;h=5bc3d3d568b6c908125f3a38f86598734b39d888;hp=4067b4d4a83a42d0abcc891605f59fcb124d125e;hb=693d2a0085f4c1d289cb6d79c02ddd23f18d9478;hpb=05ac106834fa8889cf55ee462fe4108d4712040a

diff --git a/src/ssl/ssl_hs_client.t0 b/src/ssl/ssl_hs_client.t0
index 4067b4d..5bc3d3d 100644
--- a/src/ssl/ssl_hs_client.t0
+++ b/src/ssl/ssl_hs_client.t0
@@ -230,7 +230,7 @@ make_pms_ecdh(br_ssl_client_context *ctx, unsigned ecdhe, int prf_id)
 {
 	int curve;
 	unsigned char key[66], point[133];
-	const unsigned char *generator, *order, *point_src;
+	const unsigned char *order, *point_src;
 	size_t glen, olen, point_len;
 	unsigned char mask;
 
@@ -271,7 +271,7 @@ make_pms_ecdh(br_ssl_client_context *ctx, unsigned ecdhe, int prf_id)
 	 * Compute the common ECDH point, whose X coordinate is the
 	 * pre-master secret.
 	 */
-	generator = ctx->eng.iec->generator(curve, &glen);
+	ctx->eng.iec->generator(curve, &glen);
 	if (glen != point_len) {
 		return -BR_ERR_INVALID_ALGORITHM;
 	}
@@ -286,10 +286,7 @@ make_pms_ecdh(br_ssl_client_context *ctx, unsigned ecdhe, int prf_id)
 	 */
 	br_ssl_engine_compute_master(&ctx->eng, prf_id, point + 1, glen >> 1);
 
-	memcpy(point, generator, glen);
-	if (!ctx->eng.iec->mul(point, glen, key, olen, curve)) {
-		return -BR_ERR_INVALID_ALGORITHM;
-	}
+	ctx->eng.iec->mulgen(point, key, olen, curve);
 	memcpy(ctx->eng.pad, point, glen);
 	return (int)glen;
 }
@@ -1026,7 +1023,7 @@ cc: get-client-chain ( auth_types -- ) {
 		\  - There is an explicit list of supported sign+hash.
 		\  - The ECDH flags must be adjusted for RSA/ECDSA
 		\    support.
-		read-list-sign-algos dup addr-hashes set16
+		read-list-sign-algos dup addr-hashes set32
 
 		\ Trim down the list depending on what hash functions
 		\ we support (since the hashing itself is done by the SSL