Can OpenSSL handle multiple authentication mechanisms on the same SSL context?

Revestual, Raffy [AUTOSOL/PSS/MNL] Raffy.Revestual at Emerson.com
Tue Jun 22 04:18:25 UTC 2021


Also asked this question in stackoverflow.com

https://stackoverflow.com/questions/68077419/can-openssl-handle-multiple-authentication-mechanisms-on-the-same-ssl-context

We are trying to support a server that would support PSK and SRP authentication mechanisms. However, when we run to try to run callbacks for both on the same context, only the PSK callbacks are being detected:

SSL_CTX_set_psk_server_callback(m_ctx, psk_out_of_bound_serv_cb);

SSL_CTX_set_srp_username_callback(m_ctx, srp_server_param_cb);

SRP and PSK works currently in our code if you only set one callback or the other. I tried to register SRP first but doing this didn't change the fact the only PSK was working. So an alternative would be to set these individually on the SSL context. I have also confirmed that SRP and PSK cipher suites when combined when being set is a non-issue.

Would multiple callbacks for different mechanisms work simultaneously on the same SSL context?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mta.openssl.org/pipermail/openssl-users/attachments/20210622/7da55f81/attachment-0001.html>


More information about the openssl-users mailing list