Michael Ströder wrote: > HI! > > I have issues with OpenSSL ciphers on my openSUSE Tumbleweed and release > 2.5.4 when connecting to an 2.4 provider: > > TLS: can't connect: error:141A90B5:SSL > routines:ssl_cipher_list_to_bytes:no ciphers available. > > An 2.4.58 consumer replica works just fine. > > There is this commit in RE25 and I'm not sure whether that introduces a > regression on my system: > > b72bce2400ce303766f355a1dd37f4012754c942 > ITS#9521 Set TLSv1.3 cipher suites for OpenSSL 1.1 > > BTW: openSUSE has implemented something like a crypto policy configuration: > > https://build.opensuse.org/package/view_file/security:tls/openssl-1_1/openssl-1.1.1-system-cipherlist.patch?expand=1 > > Any clue what's going on?
What ciphers have you configured on your client and server? What versions of OpenSSL are running on each? > > Ciao, Michael. > -- -- Howard Chu CTO, Symas Corp. http://www.symas.com Director, Highland Sun http://highlandsun.com/hyc/ Chief Architect, OpenLDAP http://www.openldap.org/project/