Do you mean SSL/TLS the protocols and OpenSSL the implementation?
For SSL when an ADH or EDH aka DHE suite is negotiated, the server must send
DH parameters
and its (nominally one-time) public key, and the client uses or at least
matches the parameters
and sends its (ditto) public key. Simi
> From: owner-openssl-users On Behalf Of Dave Mitchell
> Sent: Thursday, October 24, 2013 06:25
> On Sun, Oct 20, 2013 at 09:29:53PM +0100, Dave Mitchell wrote:
> > The man page for SSL_get_error() lists the SSL_* functions it can be
used
> > with, and it doesn't mention SSL_shutdown().
> >
> > O
Hi,
When using SSL is it mandatory to specify along with the certificate (chain)
and the private key, also the DH parameters ?
What's the use for DH parameters when specified to OpenSSL ?
Thank you!
On Sun, Oct 20, 2013 at 09:29:53PM +0100, Dave Mitchell wrote:
> The man page for SSL_get_error() lists the SSL_* functions it can be used
> with, and it doesn't mention SSL_shutdown().
>
> On the other hand, the man page for SSL_shutdown() says that for
> non-blocking I/O, you should call SSL_get
