From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Original-To: poffice@blade.nagaokaut.ac.jp Delivered-To: poffice@blade.nagaokaut.ac.jp Received: from kankan.nagaokaut.ac.jp (kankan.nagaokaut.ac.jp [133.44.2.24]) by blade.nagaokaut.ac.jp (Postfix) with ESMTP id ABA6A19E0032 for ; Mon, 7 Dec 2015 16:02:20 +0900 (JST) Received: from voscc.nagaokaut.ac.jp (voscc.nagaokaut.ac.jp [133.44.1.100]) by kankan.nagaokaut.ac.jp (Postfix) with ESMTP id 9AF14B5D890 for ; Mon, 7 Dec 2015 16:33:57 +0900 (JST) Received: from neon.ruby-lang.org (neon.ruby-lang.org [221.186.184.75]) by voscc.nagaokaut.ac.jp (Postfix) with ESMTP id 31A4018CC7D1 for ; Mon, 7 Dec 2015 16:33:58 +0900 (JST) Received: from [221.186.184.76] (localhost [IPv6:::1]) by neon.ruby-lang.org (Postfix) with ESMTP id 0D9081204D0; Mon, 7 Dec 2015 16:33:58 +0900 (JST) X-Original-To: ruby-core@ruby-lang.org Delivered-To: ruby-core@ruby-lang.org Received: from o2.heroku.sendgrid.net (o2.heroku.sendgrid.net [67.228.50.55]) by neon.ruby-lang.org (Postfix) with ESMTPS id 0E57B12049A for ; Mon, 7 Dec 2015 16:33:53 +0900 (JST) DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sendgrid.me; h=from:to:references:subject:mime-version:content-type:content-transfer-encoding:list-id; s=smtpapi; bh=4ox8yxrzP+YbRvVSGpdx9LawoHQ=; b=ybKWld3holhlN77SMr BICd9Uq7CkEOcWndgGyBHFZ+zRLIQT/VRw9P5Flul1KzwMZ1+3p+rqHoXhRsfD/A Canzxs+JWlUfmKvz5cOuy7pIKxGm1LvsEOMpNaoiVFc4X/nllGRgBCGKDbAVf/tQ mscKvW83nBD1Pr58mf6DbpNyU= Received: by filter0800p1mdw1.sendgrid.net with SMTP id filter0800p1mdw1.812.5665365E21 2015-12-07 07:33:50.326701279 +0000 UTC Received: from herokuapp.com (ec2-54-197-84-115.compute-1.amazonaws.com [54.197.84.115]) by ismtpd0001p1iad1.sendgrid.net (SG) with ESMTP id mJsEGVOJSEe2UWE8bkiffg for ; Mon, 07 Dec 2015 07:33:50.342 +0000 (UTC) Date: Mon, 07 Dec 2015 07:33:50 +0000 From: ko1@atdot.net To: ruby-core@ruby-lang.org Message-ID: References: Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-Redmine-MailingListIntegration-Message-Ids: 46584 X-Redmine-Project: ruby-trunk X-Redmine-Issue-Id: 11739 X-Redmine-Issue-Author: weeks X-Redmine-Issue-Assignee: X-Redmine-Sender: ko1 X-Mailer: Redmine X-Redmine-Host: bugs.ruby-lang.org X-Redmine-Site: Ruby Issue Tracking System X-Auto-Response-Suppress: All Auto-Submitted: auto-generated X-SG-EID: ync6xU2WACa70kv/Ymy4QrNMhiuLXJG8OTL2vJD1yS4ZKbtOTEbJxNUo2FSVVROf7qqU7/RiTQQrGR RmPQX/oOsJnpg8cuoXxSTyKpxAfCpGYaPIJbmudRDDRV7ve3n0xLlAt/BaVos1H6xuxBs0tkL7fAi9 kWhbXGKWF0ayOcY= X-ML-Name: ruby-core X-Mail-Count: 71887 Subject: [ruby-core:71887] [Ruby trunk - Bug #11739] OpenSSL::SSL::SSLServer doesn't negotiate ECDHE-* ciphersuites X-BeenThere: ruby-core@ruby-lang.org X-Mailman-Version: 2.1.15 Precedence: list Reply-To: Ruby developers List-Id: Ruby developers List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Errors-To: ruby-core-bounces@ruby-lang.org Sender: "ruby-core" Issue #11739 has been updated by Koichi Sasada. Assignee set to openssl ---------------------------------------- Bug #11739: OpenSSL::SSL::SSLServer doesn't negotiate ECDHE-* ciphersuites https://bugs.ruby-lang.org/issues/11739#change-55293 * Author: Branodn Weeks * Status: Open * Priority: Normal * Assignee: openssl * ruby -v:=20 * Backport: 2.0.0: UNKNOWN, 2.1: UNKNOWN, 2.2: UNKNOWN ---------------------------------------- I'm trying to configure an instance of OpenSSL::SSL::SSLServer that support= s Elliptic curve Diffie=E2=80=93Hellman. No matter what combination of Ruby= and OpenSSL versions I try the negotiation with the client fails.=20 Proof of concept: https://gist.github.com/brandonweeks/e26414cc1e9eea9453a8 Then run: >openssl s_client -connect localhost:8443 Also attaching a pcap file of the failed handshake. ---Files-------------------------------- tls_handshake.pcap (4.93 KB) --=20 https://bugs.ruby-lang.org/