https://issues.apache.org/bugzilla/show_bug.cgi?id=55915
Bug ID: 55915
Summary: Add EECDH support to tcnative-1.dll
Product: Tomcat Native
Version: 1.1.29
Hardware: All
OS: All
Status: NEW
Severity: normal
Priority: P2
Component: Library
Assignee: dev@tomcat.apache.org
Reporter: ognjen.d.blagoje...@gmail.com
EECDH (Ephemeral elliptic-curve Diffie-Hellman) protocol is useful for enabling
Forward Secrecy and for preventing certain attacks.
EECDH support exists in official OpenSSL since version 1.0.0. Note that RHEL /
CentOS did not include EECDH due to patent concerns until recently [1], but
that issue is now resolved, and EECDH is included since RHEL / CentOS version
6.5.
Tcnative Windows binary seems to lack support for EECDH, also. I don't know
why, but I guess it is due to following RedHat decisions on EECDH support in
OpenSSL for RHEL.
Since RedHat resolved aforementioned issue, and included EECDH support in
OpenSSL RPMs, is it possible that developers/packagers of Tomcat native also
add EECDH support to the Windows binary (tcnative-1.dll)?
-Ognjen
[1] https://bugzilla.redhat.com/show_bug.cgi?id=319901
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org
