projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: cbbe918) | patch
Remove ECDH(E) ciphers from SSLv3
authorTodd Short <tshort@akamai.com>
Tue, 11 Apr 2017 13:02:05 +0000 (09:02 -0400)
committerRich Salz <rsalz@openssl.org>
Tue, 11 Apr 2017 17:25:19 +0000 (13:25 -0400)
commitfe55c4a20f79c77c64a082c5df2c5e8a61317162
tree6e9ca61911249bce6f52a46d911148ccf8e36f72tree | snapshot
parentcbbe9186f3d625f98aecb3f4dd4aaf457066b25ccommit | diff
Remove ECDH(E) ciphers from SSLv3

SSLv3 does not support TLS extensions, and thus, cannot provide any
curves for ECDH(E). With the removal of the default (all) list of curves
being used for connections that didn't provide any curves, ECDHE is no
longer possible.

Reviewed-by: Kurt Roeckx <kurt@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3181)
ssl/s3_lib.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.