Steve, thanks for getting back!
Since I could not reproduce this using s_client and s_server I set out to
take the code I am using into a sample project.
Doing so I believe I have found the issue, SSL_CTX_set_cipher(ctx,
SSL_TXT_PSK) returns an error ("SSL routines:SSL_CTX_set_cipher_list:no
cipher match") if I have called FIPS_mode_set(1) first.
My original code did not check the return value of SSL_CTX_set_cipher so
that may very well be the cause of the subsequent crash.
Now my question becomes why I cannot select SSL_TXT_PSK when in FIPS mode?
Best regards,
Fredrik
On Sun, Nov 3, 2013 at 4:15 PM, Dr. Stephen Henson <st...@openssl.org>wrote:
> On Fri, Oct 25, 2013, Fredrik Jansson wrote:
>
> >
> > I am trying to use DTLS with PSK (cipher: SSL_TXT_PSK). Everything works
> > well if I don't set OpenSSL in FIPS mode (FIPS_mode_set(1)).
> >
>
> Can you reproduce this using s_client and s_server? If so can you give
> details
> of the command lines you used?
>
> Steve.
> --
> Dr Stephen N. Henson. OpenSSL project core developer.
> Commercial tech support now available see: http://www.openssl.org
> ______________________________________________________________________
> OpenSSL Project http://www.openssl.org
> User Support Mailing List openssl-users@openssl.org
> Automated List Manager majord...@openssl.org
>
