Install/Build openssl with following ciphers - TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
Matt Caswell
matt at openssl.org
Mon May 10 09:08:59 UTC 2021
On 10/05/2021 06:38, Mario Ds Briggs wrote:
> In the openssl libs that i have installed on ubuntu/rhel/mac-os, i dont
> find the following ciphers when i run 'openssl ciphers' command
> TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,
> TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,
> TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,
> TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
These are the standard IETF names for these ciphersuites. OpenSSL calls
them something slightly different. So for example
"TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384" is known as
"ECDHE-ECDSA-AES256-GCM-SHA384" in OpenSSL.
Most likely you are using a version of OpenSSL that does have support
for these ciphersuites, but you are not seeing it in the "ciphers"
output because of the above. You can get "ciphers" to display the
standard name as well as the OpenSSL name using the command below:
$ openssl ciphers -v -stdname
Matt
More information about the openssl-users
mailing list