diff options
author | Matt Caswell <matt@openssl.org> | 2015-12-15 10:43:44 +0000 |
---|---|---|
committer | Matt Caswell <matt@openssl.org> | 2015-12-15 11:26:38 +0000 |
commit | 8caab744f5698ed2b55eca20f032540f713327fd (patch) | |
tree | 595b532b5149361b2a71decd6ecafdcbf1964142 /CHANGES | |
parent | 73cd6175b970fa63c9c70d769febd91f3c7b5cdd (diff) |
Fix s_server problem with no-ec
s_server was trying to set the ECDH curve when no-ec was defined. This also
highlighted the fact that the -no_ecdhe option to s_server is broken, and
doesn't make any sense any more (ECDHE is on by default and the only way it
can be disabled is through the cipherstring). Therefore this commit removes
the option.
Reviewed-by: Kurt Roeckx <kurt@openssl.org>
Diffstat (limited to 'CHANGES')
-rw-r--r-- | CHANGES | 3 |
1 files changed, 2 insertions, 1 deletions
@@ -54,7 +54,8 @@ *) SSL_{CTX_}set_ecdh_auto() has been removed and ECDH is support is always enabled now. If you want to disable the support you should - exclude it using the list of supported ciphers. + exclude it using the list of supported ciphers. This also means that the + "-no_ecdhe" option has been removed from s_server. [Kurt Roeckx] *) SSL_{CTX}_set_tmp_ecdh() which can set 1 EC curve now internally calls |