Hi,
As discovered 7 months ago, OpenSSL wrongly returns an error if the
ServerHello is missing the Supported Point Format extension. This
contradicts RFC 4492 that clearly states that in this case the client
should interpret it as only uncompressed format is supported.
For the moment, the patch I sent for this at the time under ticket #2240
has not been accepted yet.
As this issue is starting to become more spread than before thanks to
the generalization of ECC support, the correction of this should IMHO be
present on the next release.
Is this already planned for 1.0.0c?
Cheers,
--
Mounir IDRASSI
IDRIX
http://www.idrix.fr
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List openssl-dev@openssl.org
Automated List Manager majord...@openssl.org
