BUG #16815: Unable to use the X448 an X25519 elliptic curves.

Поиск
Список
Период
Сортировка
От PG Bug reporting form
Тема BUG #16815: Unable to use the X448 an X25519 elliptic curves.
Дата
Msg-id 16815-0fde6075fb21923a@postgresql.org
обсуждение исходный текст
Ответы Re: BUG #16815: Unable to use the X448 an X25519 elliptic curves.  (Tom Lane <tgl@sss.pgh.pa.us>)
Re: BUG #16815: Unable to use the X448 an X25519 elliptic curves.  (Tom Lane <tgl@sss.pgh.pa.us>)
Список pgsql-bugs
Дерево обсуждения 
The following bug has been logged on the website:

Bug reference:      16815
Logged by:          - -
Email address:      frank.buettner@mdc-berlin.de
PostgreSQL version: 13.1
Operating system:   CentOS8
Description:

The openssl version that comes with CentOS8 will support both curves.
And using the curves with the apache for example will work, so it is not an
OS related problem.
SSLOpenSSLConfCmd Groups "X448:X25519:secp521r1:secp384r1" will work.
But try the same curves on postgresql 13 will fail.
ssl_ecdh_curve  = 'X448' or
ssl_ecdh_curve  = 'X25519'
will fail with:
FATAL:  ECDH: could not create key
using the lower X it fails with:
FATAL:  ECDH: unrecognized curve name: x25519
Only the NIST ones like secp521r1 will work.

It looks like the curves with the upper X are known, but not correct
initialized.

В списке pgsql-bugs по дате отправления:

Предыдущее
От: Michael Paquier
Дата:
Сообщение: Re: BUG #16813: error to solve the problem "Windows could not stat file - over 4GB"
Следующее
От: PG Bug reporting form
Дата:
Сообщение: BUG #16816: Unexpected escaping of html output