unidef DH, ECDH, and ECDSA. there's no purpose to a libssl without them.

ok deraadt jsing
author: tedu <tedu@openbsd.org> 2014-05-29 18:11:13 +0000
committer: tedu <tedu@openbsd.org> 2014-05-29 18:11:13 +0000
commit: 7fd84db0b7210a7bda0db6e17882901736d4094f (patch)
tree: 9eac4db3e3612610da37c370abc5652ada351ea0 /lib/libssl/ssl_ciph.c
parent: repair KNF indent (diff)
download: wireguard-openbsd-7fd84db0b7210a7bda0db6e17882901736d4094f.tar.xz
wireguard-openbsd-7fd84db0b7210a7bda0db6e17882901736d4094f.zip
1 files changed, 0 insertions, 11 deletions
diff --git a/lib/libssl/ssl_ciph.c b/lib/libssl/ssl_ciph.c
index 5e93a4cde1d..72061035aa2 100644
--- a/lib/libssl/ssl_ciph.c
+++ b/lib/libssl/ssl_ciph.c
@@ -708,19 +708,8 @@ ssl_cipher_get_disabled(unsigned long *mkey, unsigned long *auth, unsigned long
 
 	*mkey |= SSL_kDHr|SSL_kDHd; /* no such ciphersuites supported! */
 	*auth |= SSL_aDH;
-#ifdef OPENSSL_NO_DH
-	*mkey |= SSL_kDHr|SSL_kDHd|SSL_kEDH;
-	*auth |= SSL_aDH;
-#endif
 	*mkey |= SSL_kKRB5;
 	*auth |= SSL_aKRB5;
-#ifdef OPENSSL_NO_ECDSA
-	*auth |= SSL_aECDSA;
-#endif
-#ifdef OPENSSL_NO_ECDH
-	*mkey |= SSL_kECDHe|SSL_kECDHr;
-	*auth |= SSL_aECDH;
-#endif
 #ifdef OPENSSL_NO_PSK
 	*mkey |= SSL_kPSK;
 	*auth |= SSL_aPSK;
author	tedu <tedu@openbsd.org>	2014-05-29 18:11:13 +0000
committer	tedu <tedu@openbsd.org>	2014-05-29 18:11:13 +0000
commit	7fd84db0b7210a7bda0db6e17882901736d4094f (patch)
tree	9eac4db3e3612610da37c370abc5652ada351ea0 /lib/libssl/ssl_ciph.c
parent	repair KNF indent (diff)
download	wireguard-openbsd-7fd84db0b7210a7bda0db6e17882901736d4094f.tar.xz wireguard-openbsd-7fd84db0b7210a7bda0db6e17882901736d4094f.zip