Hi, I am trying to use an ECDSA certificate as the server cert, basically I created an EC_KEY and loaded it into SSL_CTX using SSL_CTX_use_PrivateKey(), after the cert is loaded using SSL_CTX_use_certificate().
The problem I am facing is that during SSL handshaking, the correct cipher suite is not being chosen (in ssl3_choose_cipher) because the key exchange algorithm (algorithm_mkey) masks is being set based on the value of dh_tmp, ecdh_tmp and their callback functions in the CERT structure, which don't seem to be set anywhere during the SSL_CTX_use calls above. Is some code missing in SSL_CTX_use_PrivateKey() or these dh_tmp, ecdh_tmp values should be set by the application, and how? Any help is greatly appreciated. Regards, -binlu
