Hi We are in the process of adding support for ECDSA-ECDHE cipher suites and hence ECDSA certificates to our server.
Right now, the server does the following: 1) Assign the ECDSA certificate to the SSL_CTX. 2) Set the callback for ECDH parameter generation using SSL_CTX_set_tmp_ecdh_callback. In ssl3_send_server_key_exchange, when this callback is called, the value of 'keylength' parameter is always either 512 or 1024. Shouldnt 'keylength' have the curve name or id in the case of ECDH? Are we doing something wrong here? Thanks Varma
