From 9262f9e7deec54e0e802e5d6313d3c222f13249a Mon Sep 17 00:00:00 2001
From: Paul Aurich <paul@darkrain42.org>
Date: Sat, 7 Sep 2013 14:51:30 -0700
Subject: [PATCH] ssl.lua: Comment subtle DH/ECDH ordering caveat

---
 src/ssl.lua | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/src/ssl.lua b/src/ssl.lua
index 1b062f6..6a4b240 100644
--- a/src/ssl.lua
+++ b/src/ssl.lua
@@ -82,6 +82,11 @@ function newcontext(cfg)
       succ, msg = context.setdepth(ctx, cfg.depth)
       if not succ then return nil, msg end
    end
+
+   -- NOTE: Setting DH parameters and elliptic curves needs to come after
+   -- setoptions(), in case the user has specified the single_{dh,ecdh}_use
+   -- options.
+
    -- Set DH parameters
    if cfg.dhparam then
       if type(cfg.dhparam) ~= "function" then