From 4cb5f64cd5455f0b6a99bbfc7f6e36b1987a4007 Mon Sep 17 00:00:00 2001
From: Dimitri Staessens <dimitri@ouroboros.rocks>
Date: Mon, 5 Aug 2019 02:28:24 +0200
Subject: lib: Fix swapped ECDH crypt calls

The client and server side were swapped. This wasn't a big issue, but
now we are sure that the flow allocation response for the server has
arrived at the client (packet reordering could cause the server key to
arrive before the flow is allocated at the client).

Signed-off-by: Dimitri Staessens <dimitri@ouroboros.rocks>
Signed-off-by: Sander Vrijders <sander@ouroboros.rocks>
---
 src/lib/crypt.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/lib/crypt.c b/src/lib/crypt.c
index c9129a61..75284676 100644
--- a/src/lib/crypt.c
+++ b/src/lib/crypt.c
@@ -418,7 +418,7 @@ static int crypt_dh_srv(int       fd,
                         uint8_t * s)
 {
 #ifdef HAVE_OPENSSL
-        return openssl_ecdh_clt(fd, s);
+        return openssl_ecdh_srv(fd, s);
 #else
         (void) fd;
 
@@ -432,7 +432,7 @@ static int crypt_dh_clt(int       fd,
                         uint8_t * s)
 {
 #ifdef HAVE_OPENSSL
-        return openssl_ecdh_srv(fd, s);
+        return openssl_ecdh_clt(fd, s);
 #else
         (void) fd;
 
-- 
cgit v1.2.3