From adc5506adf4f4cb2719026354a8512e3a7807f8a Mon Sep 17 00:00:00 2001
From: "Dr. Stephen Henson" <steve@openssl.org>
Date: Sun, 28 Jun 2015 17:01:52 +0100
Subject: [PATCH] Make auto DH work with DHEPSK

Reviewed-by: Matt Caswell <matt@openssl.org>
---
 ssl/t1_lib.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ssl/t1_lib.c b/ssl/t1_lib.c
index a91e152cb9..47abf2b9f9 100644
--- a/ssl/t1_lib.c
+++ b/ssl/t1_lib.c
@@ -4165,7 +4165,7 @@ DH *ssl_get_auto_dh(SSL *s)
     int dh_secbits = 80;
     if (s->cert->dh_tmp_auto == 2)
         return DH_get_1024_160();
-    if (s->s3->tmp.new_cipher->algorithm_auth & SSL_aNULL) {
+    if (s->s3->tmp.new_cipher->algorithm_auth & (SSL_aNULL | SSL_aPSK)) {
         if (s->s3->tmp.new_cipher->strength_bits == 256)
             dh_secbits = 128;
         else
-- 
2.25.1