Conditionalize ECDH methods in CA algos.

When building against an OpenSSL configured without ECC, don't include those algos in CASignatureAlgorithms. ok djm@
2019-05-17 10:50:29 +10:00 · 2019-05-17 10:50:29 +10:00 · 633703babf
parent 5c8d14c512
commit 633703babf
1 changed files with 1 additions and 3 deletions
--- a/myproposal.h
+++ b/myproposal.h
@ -136,9 +136,7 @@

 /* Not a KEX value, but here so all the algorithm defaults are together */
 #define	SSH_ALLOWED_CA_SIGALGS	\
-	"ecdsa-sha2-nistp256," \
-	"ecdsa-sha2-nistp384," \
-	"ecdsa-sha2-nistp521," \
+	KEX_ECDH_METHODS \
 	"ssh-ed25519," \
 	"rsa-sha2-512," \
 	"rsa-sha2-256," \