HI
Is there any module through which i can control algorithms used in cipher
suites during TLS handshake.

My requirement is like i want to configure my server in such a way that i
can specify list of acceptable cipher suites and also the algorithms used
in cipher suite. Specifying algorithms for individual aspects like key
exchange, authentication, encryption, HKDF would also do.

For example consider ECDHE-ECDSA-AES256-GCM-SHA384 cipher suite.
1) for ECDHE specify the curves like secp256r1, secp384r1.
2) for ECDSA also specify the curves like secp256r1, secp384r1 and also
SHA digest used like SHA256, SHA384

similarly if RSA is used specify key length like 1024, 2048
and algorithms like RSASSA-PSS, RSASSA-PKCS-v1_5

With openssl configuration i can do some of the stuff but i don't want to
use it as it effects other application.

Regards
Raghu
_______________________________________________
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx