Back to bug 1044401
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Tomas Mraz | 2013-12-30 08:56:35 UTC | CC | antti | |
| Flags | needinfo?(antti) | |||
| Antti Siira | 2013-12-30 10:10:27 UTC | Flags | needinfo?(antti) | |
| Tomas Mraz | 2013-12-30 21:42:00 UTC | Flags | needinfo?(antti) | |
| Antti Siira | 2013-12-31 07:04:04 UTC | Flags | needinfo?(antti) | |
| John Wagner | 2014-01-03 21:12:08 UTC | CC | john.a.wagner | |
| Gabe Fahl | 2014-01-15 21:09:15 UTC | CC | gabe.fahl | |
| Deepak Das | 2014-01-17 06:58:59 UTC | CC | ddas | |
| Tomas Mraz | 2014-01-17 09:41:32 UTC | Flags | needinfo?(ddas) | |
| Tomas Mraz | 2014-02-07 12:41:03 UTC | Comment 16 is private | 1 | 0 |
| Deepak Das | 2014-02-27 08:45:44 UTC | Flags | needinfo?(ddas) | |
| Tomas Mraz | 2014-02-27 09:49:01 UTC | CC | ppisar, psabata, tmraz | |
| Component | openssl | perl-Net-SSLeay | ||
| Assignee | tmraz | perl-maint-list | ||
| Petr Pisar | 2014-02-27 10:22:43 UTC | Comment 18 is private | 1 | 0 |
| Comment 17 is private | 1 | 0 | ||
| Status | NEW | ASSIGNED | ||
| Petr Pisar | 2014-03-18 13:12:39 UTC | Flags | needinfo?(ddas) | |
| Deepak Das | 2014-03-18 13:20:44 UTC | Flags | needinfo?(ddas) | |
| Petr Pisar | 2014-03-18 13:49:58 UTC | Flags | needinfo?(ddas) | |
| Deepak Das | 2014-03-19 06:26:44 UTC | Flags | needinfo?(ddas) | |
| Petr Pisar | 2014-03-19 06:54:38 UTC | Summary | Perl LDAPS connection fails | Perl TLS does not support ECDHE |
| Petr Pisar | 2014-03-19 07:02:54 UTC | Blocks | 1078084 | |
| Petr Pisar | 2014-03-19 10:05:43 UTC | URL | http://cpansearch.perl.org/src/MIKEM/Net-SSLeay-1.56/Changes | |
| Petr Pisar | 2014-03-19 11:10:30 UTC | Keywords | Patch | |
| Petr Pisar | 2014-03-19 13:55:34 UTC | Attachment #876322 Attachment description | Upstream fix ported to 1.35 | Upstream ECDHE support ported to 1.35 |
| Ondrej Vasik | 2014-04-02 10:42:56 UTC | Blocks | 1070830 | |
| John Wagner | 2014-04-10 21:33:12 UTC | CC | john.a.wagner | |
| John Wagner | 2014-04-10 22:24:16 UTC | CC | john.a.wagner | |
| Tomas Mraz | 2014-04-24 09:03:10 UTC | CC | perl-maint-list | |
| Flags | needinfo?(perl-maint-list) | |||
| Petr Pisar | 2014-04-24 12:40:14 UTC | Flags | needinfo?(perl-maint-list) | |
| Matthew Slowe | 2014-07-10 12:52:12 UTC | CC | m.slowe | |
| Jiri Herrmann | 2014-09-02 09:58:33 UTC | CC | jherrman | |
| Doc Text | In TLS client applications that use SSLv2 ClientHello requests, the support for Elliptic Curve Cryptography (ECC)-based cipher suites was previously advertised, but the TLS extension giving the list of supported elliptic curves could not be sent. This caused a TLS connection to a server which used an elliptic curve not supported by the OpenSSL client to abort. With this update, the ECC-based cipher suites are not sent in the SSLv2 ClientHello request, and TLS connections are no longer aborted in the above circumstances. | |||
| Chris Williams | 2014-10-09 18:43:26 UTC | Blocks | 1075802 | |
| Petr Pisar | 2014-10-22 06:51:21 UTC | Keywords | FutureFeature | |
| Ondrej Vasik | 2014-11-03 12:38:06 UTC | Blocks | 1159820 | |
| Chris Williams | 2015-07-28 18:37:32 UTC | Blocks | 1172231 | |
| Chris Williams | 2015-07-31 21:45:55 UTC | Blocks | 1002711 | |
| Jitka Plesnikova | 2015-08-20 11:20:46 UTC | CC | jplesnik | |
| Blocks | 1254457 | |||
| Joe Orton | 2015-10-13 12:59:20 UTC | Blocks | 1269913 | |
| Joe Orton | 2015-10-15 10:30:52 UTC | CC | jorton | |
| Joe Orton | 2015-10-15 16:39:34 UTC | Blocks | 1078084 | |
| Petr Pisar | 2015-10-16 08:21:51 UTC | Blocks | 1078084 | |
| Petr Pisar | 2015-10-16 08:25:19 UTC | Summary | Perl TLS does not support ECDHE | Net::SSLeay does not support setting elliptic curve parameters |
| Steve Almy | 2015-11-11 13:21:06 UTC | Priority | unspecified | high |
| CC | salmy | |||
| Petr Pisar | 2015-11-13 11:11:03 UTC | Status | ASSIGNED | MODIFIED |
| Fixed In Version | perl-Net-SSLeay-1.35-10.el6 | |||
| Assignee | perl-maint-list | ppisar | ||
| Doc Text | In TLS client applications that use SSLv2 ClientHello requests, the support for Elliptic Curve Cryptography (ECC)-based cipher suites was previously advertised, but the TLS extension giving the list of supported elliptic curves could not be sent. This caused a TLS connection to a server which used an elliptic curve not supported by the OpenSSL client to abort. With this update, the ECC-based cipher suites are not sent in the SSLv2 ClientHello request, and TLS connections are no longer aborted in the above circumstances. | Feature: Elliptic curve parameters support in Perl Net:SSLeay binding to OpenSSL library. Reason: This is required for ECDHE key exchange support in IO::Socket::SSL Perl module. Result: EC_KEY_new_by_curve_name(), EC_KEY_free*(), SSL_CTX_set_tmp_ecdh(), and OBJ_txt2nid() subroutines were ported from upstream. | ||
| Doc Type | Bug Fix | Enhancement | ||
| errata-xmlrpc | 2015-11-13 11:13:53 UTC | Status | MODIFIED | ON_QA |
| Stanislav Zidek | 2015-12-15 14:16:17 UTC | CC | szidek | |
| QA Contact | qe-baseos-security | szidek | ||
| errata-xmlrpc | 2016-02-05 17:17:18 UTC | Status | ON_QA | VERIFIED |
| Petr Pisar | 2016-03-08 14:05:08 UTC | Doc Text | Feature: Elliptic curve parameters support in Perl Net:SSLeay binding to OpenSSL library. Reason: This is required for ECDHE key exchange support in IO::Socket::SSL Perl module. Result: EC_KEY_new_by_curve_name(), EC_KEY_free*(), SSL_CTX_set_tmp_ecdh(), and OBJ_txt2nid() subroutines were ported from upstream. | X Feature: Elliptic curve parameters support in Perl Net:SSLeay binding to OpenSSL library. Reason: This is required for ECDHE key exchange support in IO::Socket::SSL Perl module. Result: EC_KEY_new_by_curve_name(), EC_KEY_free*(), SSL_CTX_set_tmp_ecdh(), and OBJ_txt2nid() subroutines were ported from upstream. |
| Doc Type | Enhancement | Release Note | ||
| Petr Pisar | 2016-03-08 14:05:37 UTC | Doc Text | X Feature: Elliptic curve parameters support in Perl Net:SSLeay binding to OpenSSL library. Reason: This is required for ECDHE key exchange support in IO::Socket::SSL Perl module. Result: EC_KEY_new_by_curve_name(), EC_KEY_free*(), SSL_CTX_set_tmp_ecdh(), and OBJ_txt2nid() subroutines were ported from upstream. | Feature: Elliptic curve parameters support in Perl Net:SSLeay binding to OpenSSL library. Reason: This is required for ECDHE key exchange support in IO::Socket::SSL Perl module. Result: EC_KEY_new_by_curve_name(), EC_KEY_free*(), SSL_CTX_set_tmp_ecdh(), and OBJ_txt2nid() subroutines were ported from upstream. |
| Lenka Špačková | 2016-03-08 16:01:11 UTC | Docs Contact | lkuprova | |
| Doc Text | Feature: Elliptic curve parameters support in Perl Net:SSLeay binding to OpenSSL library. Reason: This is required for ECDHE key exchange support in IO::Socket::SSL Perl module. Result: EC_KEY_new_by_curve_name(), EC_KEY_free*(), SSL_CTX_set_tmp_ecdh(), and OBJ_txt2nid() subroutines were ported from upstream. | Perl *Net:SSLeay* now supports elliptic curve parameters Support for elliptic-curve parameters has been added to the Perl *Net:SSLeay* module, which contains bindings to the OpenSSL library. Namely, the `EC_KEY_new_by_curve_name()`, `EC_KEY_free*()`, `SSL_CTX_set_tmp_ecdh()`, and `OBJ_txt2nid()` subroutines have been ported from upstream. This is required for the support of the Elliptic Curve Diffie–Hellman Exchange (ECDHE) key exchange in the *IO::Socket::SSL* Perl module. |
||
| Dan Ragle | 2016-03-21 14:33:36 UTC | CC | it | |
| John Wagner | 2016-03-21 14:34:25 UTC | CC | john.a.wagner | |
| mithun kalyat | 2016-03-25 23:29:35 UTC | CC | mkalyat | |
| errata-xmlrpc | 2016-05-09 17:52:01 UTC | Status | VERIFIED | RELEASE_PENDING |
| errata-xmlrpc | 2016-05-10 20:06:03 UTC | Status | RELEASE_PENDING | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2016-05-10 16:06:03 UTC |
Back to bug 1044401