Hi, I'm trying to debug a handshake failure between clients using the system openssl just released OpenSUSE 13.2 , and a server. The handshake always fails with a somewhat cryptic error message:
error:1200AE081:elliptic curve routines:EC_GROUP_new_by_curve_name:unknown group. error:1408D010:SSL routines:SSL3_GET_KEY_EXCHANGE:EC lib My main question is whether that points to a bug in the _client_, or the _server_. I'm trying to get in contact with the admins of the server, but so far don't know what openssl they are using. So I've concentrated on the client... The client openssl version is a patched version of 1.0.1i. By taking openSUSE's build configuration and stripping down the configure flags & patches bit by bit, I could reproduce it though also with a custom openssl 1.0.1j and the following configure arguments: ./config threads shared no-rc5 no-idea no-ssl2 no-ec2m The no-ec2m is at least part of the problem ... I understand it's disabled in openSUSE's build to allow fips (that I've left out from above though to keep things simple). Has anybody any insights into this? Is it expected that above configure line leads to problems? What would you do to debug this further? Regards, Kai Koehne -------- Kai Köhne, Senior Software Engineer | The Qt Company Digia Germany GmbH, Rudower Chaussee 13, D-12489 Berlin Geschäftsführer: Mika Pälsi, Juha Varelius, Tuula Haataja Sitz der Gesellschaft: Berlin, Registergericht: Amtsgericht Charlottenburg, HRB 144331 B Email: kai.koe...@theqtcompany.com | Mobile: + 49 151 55155601 | Phone: +49 30 63 92 3255 www.qt.io |Qt Blog: http://blog.qt.digia.com/ | Twitter: @QtbyDigia, @Qtproject | Facebook: www.facebook.com/qt ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
