cURL / Mailing Lists / curl-users / Single Mail

curl-users

Re: ECDSA certificate with curl

From: Daniel Stenberg <daniel_at_haxx.se>
Date: Sat, 1 Nov 2014 15:10:11 +0100 (CET)

On Fri, 31 Oct 2014, Ram Koppu -X (ramkoppu - ALTO at Cisco) wrote:

> I tried to use ECDHE-ECDSA-AES128-GCM-SHA256 cipher in the openssl using
> curl. But curl seems to be not liking ECDSA certificate for server identity
> when it tried to make https connection. The curl version is latest 7.38.0 Is
> there any fix for the curl to make it work with ECDSA certificates?

I don't know which specific ciphers which OpenSSL version supports or not, so
you're probably better off investigating that in the openssl code or asking
openssl developers for details.

curl simply passes a list of desired ciphers to openssl
(ALL!EXPORT!EXPORT40!EXPORT56!aNULL!LOW!RC4 by default) so that it will pick
the "best" one after it has gotten a list of supported ciphers from the server
in the TLS handshake AFAIK.

-- 
  / daniel.haxx.se
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-users
FAQ:        http://curl.haxx.se/docs/faq.html
Etiquette:  http://curl.haxx.se/mail/etiquette.html

Received on 2014-11-01

This message: [ Message body ]
Next message: Jeremy Nicoll - ml curl users: "Can a request from curl look as if it came from a browser?"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]