[issue13627] Python SSL stack doesn't support Elliptic Curve ciphers
Meador Inge
report at bugs.python.org
Wed Dec 21 06:18:26 CET 2011
Meador Inge <meadori at gmail.com> added the comment:
ECC is *not* available in the OpenSSL package provided on RedHat systems. RedHat intentionally strips it due to patent concerns (http://en.wikipedia.org/wiki/ECC_patents). Therefore committing this work made it much more difficult to build the ssl module on RedHat systems.
I couldn't find a clear statement of this in any RedHat documentation, but I did find a few references to the stripping in these places:
* https://bugzilla.redhat.com/show_bug.cgi?format=multiple&id=623483
* https://www.martineve.com/2011/07/22/using-elliptical-curve-cryptography-in-openssh/
* https://bugzilla.redhat.com/show_bug.cgi?id=615372
Perhaps we should make these algorithms build conditional? Are these patent issues of concern to us?
----------
nosy: +meador.inge
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue13627>
_______________________________________
More information about the Python-bugs-list
mailing list