Hello,
I'm having quite weird problem with openssl (head version). I'm doing
following test:
Step 1:
./openssl s_client -connect some.server.org:443 -cipher "DEFAULT"
I'm getting following error:
CONNECTED(00000003)
140453250619072:error:140790E5:SSL routines:ssl23_write:ssl handshake
failure:s23_lib.c:177:
In the tcpdump I see that ClientHello is sent and then server closes
connection (FIN, FIN-ACK, ACK)
Then I try
./openssl s_client -connect some.server.org:443 -cipher "ALL"
This works perfectly, I get certificate & following session details:
Protocol : TLSv1.2
Cipher : DHE-RSA-AES256-GCM-SHA384
As you can see above, server accepts cipher DHE-RSA-AES256-GCM-SHA384.
But when I try to specify this cipher on command line:
./openssl s_client -connect some.server.org:443 -cipher
"DHE-RSA-AES256-GCM-SHA384"
... again remote server closes remote connection.
Unfortunately I don't know what kind of software is running on server
side and it seems like problem is there.
I've tried to reproduce such problem with few old versions of openssl
but with no success. Also I've checked gnutls-cli and it works OK.
Does anybody has any guess what could potentially cause this problem?
PS: my version of openssl s_client has patch for PR#2771 (the one
committed today)
Kris
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org
