Perl *Net:SSLeay* now supports elliptic curve parameters
Support for elliptic-curve parameters has been added to the Perl *Net:SSLeay* module, which contains bindings to the OpenSSL library. Namely, the `EC_KEY_new_by_curve_name()`, `EC_KEY_free*()`, `SSL_CTX_set_tmp_ecdh()`, and `OBJ_txt2nid()` subroutines have been ported from upstream. This is required for the support of the Elliptic Curve Diffie–Hellman Exchange (ECDHE) key exchange in the *IO::Socket::SSL* Perl module.
RHEL-7 version doesn't support ECDHE while it is being added to RHEL-6.8
+++ This bug was initially created as a clone of Bug #1044401 +++
This bug report will be used for enabling perl server to set elliptic curve parameters.
The wrong setting cipher list in perl-LDAP what is the root cause if the initial comment will be solved in bug report #1090966.
--- Additional comment from Petr Pisar on 2015-11-13 06:11:03 EST ---
Fixed with commit 22c79946c1d8c09979140c088dedbce00599529b.
--- Additional comment from Petr Pisar on 2015-11-13 06:50:21 EST ---
How to test:
Use perl-IO-Socket-SSL test described in bug #1078084.
Or just verify following 4 subroutines are defined in Net::SSLeay name space:
EC_KEY_free()
EC_KEY_new_by_curve_name()
OBJ_txt2nid()
SSL_CTX_set_tmp_ecdh()
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.
For information on the advisory, and where to find the updated
files, follow the link below.
If the solution does not work for you, open a new bug report.
https://rhn.redhat.com/errata/RHEA-2016-2221.html