<div dir="ltr">Hi,<div>How to check the default ciphers? We are not setting any ciphers in our code.</div><div>Below is the configuration output.</div><div><br></div><div><div>CC =gcc</div><div>CFLAG =-Wall -O3 -pthread -m64 -DL_ENDIAN -udp -Wa,--noexecstack</div><div>SHARED_CFLAG =-fPIC -DOPENSSL_USE_NODELETE</div><div>DEFINES =DSO_DLFCN HAVE_DLFCN_H NDEBUG OPENSSL_THREADS OPENSSL_NO_STATIC_ENGINE OPENSSL_PIC OPENSSL_IA32_SSE2 OPENSSL_BN_ASM_MONT OPENSSL_BN_ASM_MONT5 OPENSSL_BN_ASM_GF2m SHA1_ASM SHA256_ASM SHA512_ASM RC4_ASM MD5_ASM AES_ASM VPAES_ASM BSAES_ASM GHASH_ASM ECP_NISTZ256_ASM PADLOCK_ASM POLY1305_ASM</div><div>LFLAG =</div><div>PLIB_LFLAG =</div><div>EX_LIBS =-ldl</div><div>APPS_OBJ =</div><div>CPUID_OBJ =x86_64cpuid.o</div><div>UPLINK_OBJ =</div><div>BN_ASM =asm/x86_64-gcc.o x86_64-mont.o x86_64-mont5.o x86_64-gf2m.o rsaz_exp.o rsaz-x86_64.o rsaz-avx2.o</div><div>EC_ASM =ecp_nistz256.o ecp_nistz256-x86_64.o</div><div>DES_ENC =des_enc.o fcrypt_b.o</div><div>AES_ENC =aes-x86_64.o vpaes-x86_64.o bsaes-x86_64.o aesni-x86_64.o aesni-sha1-x86_64.o aesni-sha256-x86_64.o aesni-mb-x86_64.o</div><div>BF_ENC =bf_enc.o</div><div>CAST_ENC =c_enc.o</div><div>RC4_ENC =rc4-x86_64.o rc4-md5-x86_64.o</div><div>RC5_ENC =rc5_enc.o</div><div>MD5_OBJ_ASM =md5-x86_64.o</div><div>SHA1_OBJ_ASM =sha1-x86_64.o sha256-x86_64.o sha512-x86_64.o sha1-mb-x86_64.o sha256-mb-x86_64.o</div><div>RMD160_OBJ_ASM=</div><div>CMLL_ENC =cmll-x86_64.o cmll_misc.o</div><div>MODES_OBJ =ghash-x86_64.o aesni-gcm-x86_64.o</div><div>PADLOCK_OBJ =e_padlock-x86_64.o</div><div>CHACHA_ENC =chacha-x86_64.o</div><div>POLY1305_OBJ =poly1305-x86_64.o</div><div>BLAKE2_OBJ =</div><div>PROCESSOR =</div><div>RANLIB =ranlib</div><div>ARFLAGS =</div><div>PERL =/usr/bin/perl</div><div><br></div><div>Thanks,</div><div>Grace</div><div><br></div></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Wed, Nov 15, 2017 at 8:12 PM, Grace Priscilla Jero <span dir="ltr"><<a href="mailto:grace.priscilla@gmail.com" target="_blank">grace.priscilla@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">Thankyou Matt.<div>Some of them that we tried does not work. Is there any additional criteria for it to work.</div><div>I read about some PSK ciphers which I am not sure depends on something else.</div><div><br></div><div>Thanks,</div><div>Grace</div></div><div class="HOEnZb"><div class="h5"><div class="gmail_extra"><br><div class="gmail_quote">On Wed, Nov 15, 2017 at 3:03 PM, Matt Caswell <span dir="ltr"><<a href="mailto:matt@openssl.org" target="_blank">matt@openssl.org</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><span><br>
<br>
On 15/11/17 06:08, Grace Priscilla Jero wrote:<br>
> Hi All,<br>
> Do we have the exact list of cipher suites supported by default in<br>
> openssl for each of the below in 1.1.0g version of openSSL.<br>
><br>
> TLS 1.0<br>
> TLS 1.1<br>
> TLS 1.2<br>
> DTLS 1.0<br>
> DTLS 1.2<br>
<br>
</span>You can use the command line "ciphers" command for this information, i.e.<br>
<br>
$ openssl ciphers -s -v -tls1<br>
$ openssl ciphers -s -v -tls1_1<br>
$ openssl ciphers -s -v -tls1_2<br>
<br>
DTLS1.0 is the same list as for TLS1.1 and DTLS1.2 is the same as for<br>
TLS1.2.<br>
<span class="m_2335425508284054123HOEnZb"><font color="#888888"><br>
Matt<br>
<br>
--<br>
openssl-users mailing list<br>
To unsubscribe: <a href="https://mta.openssl.org/mailman/listinfo/openssl-users" rel="noreferrer" target="_blank">https://mta.openssl.org/mailma<wbr>n/listinfo/openssl-users</a><br>
</font></span></blockquote></div><br></div>
</div></div></blockquote></div><br></div>