[openssl-dev] [openssl.org #4089] NULL ciphersuites do not work in master
Dmitry Belyavsky via RT
rt at openssl.org
Sun Oct 11 17:54:16 UTC 2015
Hello!
I use the command lines for s_client ans s_server (built from master):
openssl s_server -www -cert cert.pem -key seckey.pem -cipher NULL-SHA256
-tls1
openssl s_client -connect localhost:4433 -CAfile sslCA/cacert.pem
-verify_return_error -verify 1 -state -cipher NULL-SHA256 -ign_eof
Client STDERR is
verify depth is 1
SSL_connect:before/connect initialization
SSL_connect:error in error
47960945916616:error:140830B5:SSL routines:ssl3_client_hello:no ciphers
available:s3_clnt.c:865:
SSL3 alert write:warning:close notify
When I debug, I see that the cipher is forbidden by
the ssl_security_default_callback function because of not enough security
bits.
Is it a bug or feature?
--
SY, Dmitry Belyavsky
-------------- next part --------------
_______________________________________________
openssl-bugs-mod mailing list
openssl-bugs-mod at openssl.org
https://mta.openssl.org/mailman/listinfo/openssl-bugs-mod
More information about the openssl-dev
mailing list