> From: owner-openssl-us...@openssl.org On Behalf Of Odomae Bro
> Sent: Thursday, 01 December, 2011 20:59
> I used the built in s_server and s_client (command line) as follows
> and the ssl connection is established.
> openssl s_server -nocert -cipher aNULL
> openssl s_client -cipher aNULL
> However when I add the dtls1 option , this fails i.e
> openssl s_server -nocert -cipher aNULL - dtls1
> openssl s_client -cipher aNULL -dtls1
> Any idea why anon DH wont work for dtls?
No. I don't normally use DTLS myself and am not familiar with
any differences from normal TLS, but I tried exactly what you show
(except your mistyped space between - dtls1) on my current dev
build (vanilla 1.0.0e) and it works (selecting AECDH-AES256-SHA).
Falling back on my usual protocol debugging:
add -msg on s_client. How far in the handshake do you get,
and then how does it vary from what should happen?
Is there an alert either direction and what is it?
Exactly what error does s_client and/or s_server show?
What version, and how was it built (e.g. options)?
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org
