hello list,
we're trying to add ECDH/ECDSA support to OpenVPN and we have run into a
question we cannot easily answer ourselves:
we're using SSL_CTX_set_tmp_ecdh to add an ECDH curve to your
server-side SSL CTX object; this is very similar to the DH parameters
which are added using SSL_CTX_set_tmp_dh. We do *not* add a
'set_tmp_dh_callback' to the server SSL CTX , as the DH parameter file
is static.
The question is: does the same apply to the
SSL_CTX_set_tmp_ecdh/SSL_CTX_set_tmp_ecdh_callback function?
Or do we need to add callbacks , similar to the way RSA callbacks are
added, as done in the s_server.c code?
A more general question is where we can read up on all this :) ?
many thanks in advance,
JJK / Jan Just Keijser
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [email protected]
Automated List Manager [email protected]
