Re: ECDHE problem with 1.0.2-dev

2013-11-04 Thread Piotr Sikora
Hey Steve,

 It picks the highest preference curve supported by both sides, which is
 usually the strongest curve but it doesn't have to be.

Oh, cool! Thanks for clarifying that, I somehow missed the new
functions to set the curves list before.

Best regards,
Piotr Sikora
__
OpenSSL Project http://www.openssl.org
Development Mailing List   openssl-dev@openssl.org
Automated List Manager   majord...@openssl.org


ECDHE problem with 1.0.2-dev

2013-11-01 Thread Rob Stradling
Hi.  When I build the latest development version of httpd or nginx 
against the OpenSSL_1_0_2-stable branch, the ECDHE-RSA and ECDHE-ECDSA 
ciphers don't work.  With both webservers, I can get these ciphers to 
work by either...

  1. Deleting: SSL_CTX_set_options(ctx, SSL_OP_SINGLE_ECDH_USE);
  or
  2. Adding: SSL_CTX_set_ecdh_auto(ctx, 1);

Should it still be possible to manually configure ECDH keys using 
SSL_CTX_set_tmp_ecdh() in 1_0_2?
If so, any ideas why it isn't working?  Is there a bug in 
OpenSSL_1_0_2-stable?  Or are both httpd and nginx doing something wrong?


Or, is SSL_CTX_set_ecdh_auto(ctx, 1); the only supported way of doing 
it in 1_0_2?


Thanks.

--
Rob Stradling
Senior Research  Development Scientist
COMODO - Creating Trust Online
__
OpenSSL Project http://www.openssl.org
Development Mailing List   openssl-dev@openssl.org
Automated List Manager   majord...@openssl.org


Re: ECDHE problem with 1.0.2-dev

2013-11-01 Thread Dr. Stephen Henson
On Fri, Nov 01, 2013, Rob Stradling wrote:

 Hi.  When I build the latest development version of httpd or nginx
 against the OpenSSL_1_0_2-stable branch, the ECDHE-RSA and
 ECDHE-ECDSA ciphers don't work.  With both webservers, I can get
 these ciphers to work by either...
   1. Deleting: SSL_CTX_set_options(ctx, SSL_OP_SINGLE_ECDH_USE);
   or
   2. Adding: SSL_CTX_set_ecdh_auto(ctx, 1);
 
 Should it still be possible to manually configure ECDH keys using
 SSL_CTX_set_tmp_ecdh() in 1_0_2?
 If so, any ideas why it isn't working?  Is there a bug in
 OpenSSL_1_0_2-stable?  Or are both httpd and nginx doing something
 wrong?
 

I think it's a bug in OpenSSL 1.0.2. It shouldn't break anything that works in
previous versions, at least not without a very good reason.

I'll look into it.

 Or, is SSL_CTX_set_ecdh_auto(ctx, 1); the only supported way of
 doing it in 1_0_2?
 

It's the preferred way as it just does the right thing.

Steve.
--
Dr Stephen N. Henson. OpenSSL project core developer.
Commercial tech support now available see: http://www.openssl.org
__
OpenSSL Project http://www.openssl.org
Development Mailing List   openssl-dev@openssl.org
Automated List Manager   majord...@openssl.org


Re: ECDHE problem with 1.0.2-dev

2013-11-01 Thread Piotr Sikora
Hey,

 I think it's a bug in OpenSSL 1.0.2. It shouldn't break anything that works in
 previous versions, at least not without a very good reason.

 I'll look into it.

I already reported / patched this a while ago (with no response):
https://rt.openssl.org/Ticket/Display.html?id=3103

 It's the preferred way as it just does the right thing.

It always choses the strongest curve supported by both sides, which
isn't always preferred (IMHO).

Best regards,
Piotr Sikora
__
OpenSSL Project http://www.openssl.org
Development Mailing List   openssl-dev@openssl.org
Automated List Manager   majord...@openssl.org


Re: ECDHE problem with 1.0.2-dev

2013-11-01 Thread Dr. Stephen Henson
On Fri, Nov 01, 2013, Piotr Sikora wrote:

 Hey,
 
  I think it's a bug in OpenSSL 1.0.2. It shouldn't break anything that works 
  in
  previous versions, at least not without a very good reason.
 
  I'll look into it.
 
 I already reported / patched this a while ago (with no response):
 https://rt.openssl.org/Ticket/Display.html?id=3103
 

Oops sorry missed that.

  It's the preferred way as it just does the right thing.
 
 It always choses the strongest curve supported by both sides, which
 isn't always preferred (IMHO).
 

It picks the highest preference curve supported by both sides, which is
usually the strongest curve but it doesn't have to be.

Steve.
--
Dr Stephen N. Henson. OpenSSL project core developer.
Commercial tech support now available see: http://www.openssl.org
__
OpenSSL Project http://www.openssl.org
Development Mailing List   openssl-dev@openssl.org
Automated List Manager   majord...@openssl.org