On 26/11/14 09:10, Giuseppe D'Angelo wrote:
> Hi,
> 
> I'm work on a Qt patch which adds the capability to select which
> elliptic curves should be used by a client socket when negotiating an EC
> cipher [1].
> 
> When using some TLS named curves [2], everything seems to work just
> fine. The problem arises when some other curve gets (accidentally?)
> chosen by the user: as of latest 1.0.2, the connection *hangs* without
> even a ClientHello sent...
> 
> Is this a bug -- i.e. should either SSL_CTX_set1_curves or the
> subsequent SSL_connect immediately return with an error instead of
> hanging? Or is there some other API I'm supposed to use?

Well it shouldn't hang in any event. But I'm not entirely sure I
understand your question. Are you saying that there are some named
curves that work, and some named curves that do not work? Which curves
work, and which ones do not?

Are you using the latest beta 3 1.0.2 version? And what config options
are you using?

Matt

______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    openssl-users@openssl.org
Automated List Manager                           majord...@openssl.org

Reply via email to