[issue26254] ssl should raise an exception when trying to load an unusable key (ECC key not using a named curve)
Evgeny Kapun
report at bugs.python.org
Mon Feb 1 19:52:41 EST 2016
Evgeny Kapun added the comment:
So, it looks like OpenSSL doesn't support keys using arbitrary curves at all. Then why don't I get an exception when trying to load such a key? Instead it just quietly disables all authenticated ciphersuites (anonymous ciphersuites still work) and then I get a confusing exception about lack of shared ciphers. I think that if it can't use a key, it should raise an exception right away.
----------
resolution: not a bug ->
status: closed -> open
title: ssl server doesn't work with ECC certificates -> ssl should raise an exception when trying to load an unusable key (ECC key not using a named curve)
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue26254>
_______________________________________
More information about the Python-bugs-list
mailing list