I am trying to setup a docket environment in project idx which supports X25519MLKEM768 curl but every time I do it, the connection fails. What can i do in this situation if anyone knows how to use the docker container in project idx. Project IDX is online developmental environment created by google and it uses nix os for its vm. used the same docker file in my ubuntu virtual machine and it is working absolutley fine. So what’s the matter in Project IDX.
automated-tool-4605221:~/automated-tool$ source /home/user/automated-tool/.venv/bin/activate
(.venv) automated-tool-4605221:~/automated-tool$ docker run -it openquantumsafe/curl
Unable to find image 'openquantumsafe/curl:latest' locally
latest: Pulling from openquantumsafe/curl
1f3e46996e29: Pull complete
c9b340e8c5cd: Pull complete
4f4fb700ef54: Pull complete
f6ee047c8584: Pull complete
61365e2bffa3: Pull complete
2c36706394cb: Pull complete
b7e8964de4bc: Pull complete
a24330819a52: Pull complete
Digest: sha256:d9561abbc4327dc9f8875f029f40af1b4a33ef193b06bda748de9d9b88ee45b8
Status: Downloaded newer image for openquantumsafe/curl:latest
/opt/oqssa/bin $ Using default temp DH parameters
ACCEPT
/opt/oqssa/bin $ ls
CA.crt CA.key CA.srl c_rehash curl curl-config openssl perftest.sh serverstart.sh
/opt/oqssa/bin $ openssl version
OpenSSL 3.4.0 22 Oct 2024 (Library: OpenSSL 3.4.0 22 Oct 2024)
/opt/oqssa/bin $ curl version
curl: (6) Could not resolve host: version
/opt/oqssa/bin $ curl --version
curl 8.11.1 (x86_64-pc-linux-musl) libcurl/8.11.1 OpenSSL/3.4.0
Release-Date: 2024-12-11
Protocols: dict file ftp ftps gopher gophers http https imap imaps ipfs ipns mqtt pop3 pop3s rtsp smb smbs smtp smtps telnet tftp ws wss
Features: alt-svc AsynchDNS HSTS HTTPS-proxy IPv6 Largefile NTLM SSL threadsafe TLS-SRP UnixSockets
/opt/oqssa/bin $ openssl s_client -connect fonts.google.com:443 -groups X25519MLKEM768 -provider oqsprovider
Connecting to 74.125.203.100
CONNECTED(00000003)
287B4EF74C7F0000:error:0A000410:SSL routines:ssl3_read_bytes:ssl/tls alert handshake failure:ssl/record/rec_layer_s3.c:908:SSL alert number 40
---
no peer certificate available
---
No client certificate CA names sent
---
SSL handshake has read 7 bytes and written 1599 bytes
Verification: OK
---
New, (NONE), Cipher is (NONE)
Protocol: TLSv1.3
This TLS version forbids renegotiation.
Compression: NONE
Expansion: NONE
No ALPN negotiated
Early data was not sent
Verify return code: 0 (ok)
---
/opt/oqssa/bin $ curl --curves kyber768 https://www.google.com:443
curl: (35) TLS connect error: error:0A000410:SSL routines::ssl/tls alert handshake failure
/opt/oqssa/bin $ curl --curves X25519MLKEM768 https://www.google.com:443
curl: (35) TLS connect error: error:0A000410:SSL routines::ssl/tls alert handshake failure
/opt/oqssa/bin $