[openssl-users] Unexpected behaviors in TLS handshake

Devang Kubavat devang.kubavat at in.abb.com
Wed Jun 20 08:44:03 UTC 2018


Hi all,

I set the signature algorithm using in client,
/* signature algorithm list */
(void)SSL_CTX_set1_client_sigalgs_list(ctx, "RSA+SHA512");

Expected behavior: client only accepts server certificate which has signature algorithm SHA512withRSAencryption during TLS handshake.

But, here even I set "RSA+SHA512" signature algorithm, still client is accepting the server certificate which has signature algorithm SHA256withRSAencryption. Why?

Best Regards,
Devang

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20180620/88edc079/attachment-0001.html>


More information about the openssl-users mailing list