[erlang-patches] ssl: don't sent client certificate with anon ciphers

Andreas Schultz <>
Fri Oct 4 18:57:00 CEST 2013


Hi,

I have pushed a second changeset to that branch since it depends
on the first. However, both could also be takes separately.

The new one is:

    ssl: add ECDHE_PSK and PSK_NULL cipher suites

As the commit messages already says, it adds support for some
additional PSK ciphers.

Review URL's are still the same.

singled out:

ssl: don't sent client certificate with anon ciphers:
   https://github.com/RoadRunnr/otp/commit/79ddf94dd2a393b55dceaf4bccafac5fb3d898b0


ssl: add ECDHE_PSK and PSK_NULL cipher suites:
   https://github.com/RoadRunnr/otp/commit/37069f9bff48df88900da73b43b170a84f991b19


Andreas

----- Original Message -----
> Hi,
> 
> ssl: don't sent client certificate with anon ciphers
>     
> whatever the SSL options say, when we negotiated a anonymous,
> PSK or SRP cipher suites, client certificates and certificate
> requests are not permitted.
> 
> git fetch git://github.com/RoadRunnr/otp.git ssl_anon_certs
> 
> https://github.com/RoadRunnr/otp/compare/master...ssl_anon_certs
> https://github.com/RoadRunnr/otp/compare/master...ssl_anon_certs.patch
> 
> 
> Change is against master, but should apply to maint as well.
> 
> Andreas
> _______________________________________________
> erlang-patches mailing list
> 
> http://erlang.org/mailman/listinfo/erlang-patches
> 

-- 
-- 
Dipl. Inform.
Andreas Schultz

email: 
phone: +49-391-819099-224
mobil: +49-170-2226073

------------------- enabling your networks -------------------

Travelping GmbH               phone:         +49-391-819099229
Roentgenstr. 13               fax:           +49-391-819099299
D-39108 Magdeburg             email:       
GERMANY                       web:   http://www.travelping.com

Company Registration: Amtsgericht Stendal Reg No.:   HRB 10578
Geschaeftsfuehrer: Holger Winkelmann | VAT ID No.: DE236673780
--------------------------------------------------------------


More information about the erlang-patches mailing list