[openssl-users] Can SSL_CTX_set_tmp_ecdh_callback be used to set ECDHstatic ciphers ?

krish krrishh7 at gmail.com
Wed Dec 28 08:28:03 UTC 2016

I am a beginer to the openssl world :)

I was coding a simple TLS client/server C code for simulating a ECDH* key
exchange scenario.

In the server code, after creating the SSL context, i have the
*SSL_CTX_set_tmp_ecdh_callback*() procedure in place to set the EC_KEY from
a named curve.

I was able to make the server choose TLS_ECDHE_* ciphers for RSA and ECDSA
However my doubt is whether *SSL_CTX_set_tmp_ecdh_callback*() api lets the
server choose TLS_ECDH_* ciphers as well ?

If i make the client send only TLS_ECDH_* cipher suites in the clientHello,
the server breaks the connection stating "no shared cipher". With my
repeated tries i was not able to simulate the scenario.

Please give me some insight for the same.


View this message in context: http://openssl.6102.n7.nabble.com/Can-SSL-CTX-set-tmp-ecdh-callback-be-used-to-set-ECDHstatic-ciphers-tp69455.html
Sent from the OpenSSL - User mailing list archive at Nabble.com.

More information about the openssl-users mailing list