[issue32813] SSL shared_ciphers implementation wrong - returns configured but not shared ciphers

Christian Heimes Sat, 10 Feb 2018 14:39:06 -0800

Christian Heimes <[email protected]> added the comment:

Yeah, looks like I used the wrong API when I ported to Python to OpenSSL 1.1.0, 
because there is no correct API.


For

client_context.set_ciphers("AES128-SHA256:AES256-SHA256")
server_context.set_ciphers("AES128-SHA:AES256-SHA256")

I'm getting:

client_ciphers = {'AES128-SHA256', 'AES256-SHA256'}
server_ciphers = {'AES256-SHA256', 'AES128-SHA'}
shared_ciphers = {'AES128-SHA256', 'AES256-SHA256'}  # SSL_get_client_ciphers()
shared_ciphers = {'AES256-SHA256', 'AES128-SHA'}  # SSL_get_ciphers()

which are clearly both wrong. The only shared cipher is {'AES256-SHA256'}.

----------

_______________________________________
Python tracker <[email protected]>
<https://bugs.python.org/issue32813>
_______________________________________
_______________________________________________
Python-bugs-list mailing list
Unsubscribe: 
https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com

[issue32813] SSL shared_ciphers implementation wrong - returns configured but not shared ciphers

Reply via email to