ECDHE key exchange with TLSv1
Adrian Kotelba
adrian.kotelba at barbasyn.org
Fri Jan 7 16:28:55 MSK 2011
Hi again,
To be on the safe side, its better to do
[code]
SSL_CTX_set_tmp_ecdh(ssl->ctx, ecdh);
SSL_CTX_set_options(ssl->ctx, SSL_OP_SINGLE_ECDH_USE);
EC_KEY_free(ecdh);
[/code]
Updated patch is attached.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://nginx.org/pipermail/nginx-devel/attachments/20110107/64f4be42/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: patch.eccurve1
Type: application/octet-stream
Size: 7151 bytes
Desc: not available
URL: <http://nginx.org/pipermail/nginx-devel/attachments/20110107/64f4be42/attachment.obj>
More information about the nginx-devel
mailing list