On 26/11/14 09:10, Giuseppe D'Angelo wrote: > Hi, > > I'm work on a Qt patch which adds the capability to select which > elliptic curves should be used by a client socket when negotiating an EC > cipher [1]. > > When using some TLS named curves [2], everything seems to work just > fine. The problem arises when some other curve gets (accidentally?) > chosen by the user: as of latest 1.0.2, the connection *hangs* without > even a ClientHello sent... > > Is this a bug -- i.e. should either SSL_CTX_set1_curves or the > subsequent SSL_connect immediately return with an error instead of > hanging? Or is there some other API I'm supposed to use?
Well it shouldn't hang in any event. But I'm not entirely sure I understand your question. Are you saying that there are some named curves that work, and some named curves that do not work? Which curves work, and which ones do not? Are you using the latest beta 3 1.0.2 version? And what config options are you using? Matt ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org