sync: merge changes from go 1.23.4

2025-04-03 20:17:36 +03:00 · 2025-01-07 15:55:09 -07:00 · 2025-01-07 15:55:09 -07:00 · cefe226467
commit cefe226467
parent 23de245734 6b21c9a492
98 changed files with 8089 additions and 4530 deletions
--- a/key_agreement.go
+++ b/key_agreement.go
@ -16,8 +16,8 @@ import (
 	"io"
 )

-// a keyAgreement implements the client and server side of a TLS key agreement
-// protocol by generating and processing key exchange messages.
+// A keyAgreement implements the client and server side of a TLS 1.0–1.2 key
+// agreement protocol by generating and processing key exchange messages.
 type keyAgreement interface {
 	// On the server side, the first two methods are called in order.

@ -126,7 +126,7 @@ func md5SHA1Hash(slices [][]byte) []byte {
 }

 // hashForServerKeyExchange hashes the given slices and returns their digest
-// using the given hash function (for >= TLS 1.2) or using a default based on
+// using the given hash function (for TLS 1.2) or using a default based on
 // the sigType (for earlier TLS versions). For Ed25519 signatures, which don't
 // do pre-hashing, it returns the concatenation of the slices.
 func hashForServerKeyExchange(sigType uint8, hashFunc crypto.Hash, version uint16, slices ...[]byte) []byte {
@ -169,7 +169,7 @@ type ecdheKeyAgreement struct {
 func (ka *ecdheKeyAgreement) generateServerKeyExchange(config *Config, cert *Certificate, clientHello *clientHelloMsg, hello *serverHelloMsg) (*serverKeyExchangeMsg, error) {
 	var curveID CurveID
 	for _, c := range clientHello.supportedCurves {
-		if config.supportsCurve(c) && curveIdToCirclScheme(c) == nil { // [uTLS] ported from cloudflare/go
+		if config.supportsCurve(ka.version, c) {
 			curveID = c
 			break
 		}