Mail

TLS negotiation fails when IMAP server presents ECC certificate

Bug #1567709 reported by Seth
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
Mail
New
Undecided
Unassigned

Bug Description

environment:
Client-
Freya 3.4.2
pantheon-mail 0.10.0
Server-
Dovecot 2.2.23
Libressl 2.2.6

pantheon-mail fails to connect when the server is using a ECC (Eliptic Curve Cryptography) certificates.

error message that appear in the dovecot log when pantheon-mail tries to connect is:
Error: SSL: Stacked error: error:1408A0C1:SSL routines:SSL3_GET_CLIENT_HELLO:no shared cipher

Please add support to pantheon-mail for ECC certs!

The History and Benefits of ECC Certificates
https://www.digicert.com/ecc.htm

Reasons you might want to use ECC/ECDSA certs
https://blog.cloudflare.com/ecdsa-the-digital-signature-algorithm-of-a-better-internet/

Related Dovecot mailing list thread
http://www.dovecot.org/list/dovecot/2011-October/061487.html

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.