The message on the client side reads as follows:
SSL connect using (NONE)
So the client is not selecting any cipher suite at all. Why would that be ?
I have dh parameters attached to the client certificate as well. Also I am
doing SSL_CTC_set_cipher_list(ctx, "DSS+DH") in both client and server. Why
would the client not pick any ciphersuite inspite of explicitly using
SSL_CTX_set_cipher_list ?
-----Original Message-----
From: Lutz Jaenicke [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, July 12, 2000 10:28 AM
To: '[EMAIL PROTECTED]'
Subject: Re: DHE with DSS certificates
On Wed, Jul 12, 2000 at 10:07:31AM -0700, Shrikrishna Karandikar wrote:
> Hi Lutz,
>
> I am doing that. I am using the same function which s_server uses to load
> the DH parameters. But I still get this error message. Can anything else
be
> wrong?
Actually, it's hard to say on the distance.
The no-shared cipher message applies when the cipher itself or other
required things are missing.
For DSS ciphers you do need the key and certificate and the DH parameters.
Then, if you don't supply an RSA key, a DSS cipher should automatically
be chosen from the list.
Of course, you don't have any other messages (besides the "no shared
ciphers")?
What does the client say?
Best regards,
Lutz
--
Lutz Jaenicke [EMAIL PROTECTED]
BTU Cottbus http://www.aet.TU-Cottbus.DE/personen/jaenicke/
Lehrstuhl Allgemeine Elektrotechnik Tel. +49 355 69-4129
Universitaetsplatz 3-4, D-03044 Cottbus Fax. +49 355 69-4153
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
