My bad - needed to initialize SSL_CTX_set_tmp_dh() BEFORE calling SSL_new().
From: openssl-users [mailto:openssl-users-boun...@openssl.org] On Behalf Of
Jim Carroll
Sent: Saturday, August 06, 2016 6:59 AM
To: openssl-users@openssl.org
Subject: [openssl-users] 'no shared cipher', TLS_method on
O
OpenSSL behavior is pretty consistent, when reading a PEM file, everything
before the first PEM marker (of the right type!) is ignored.
--
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
since 0.9.6 or before, five (5) example PEM files have been included in the
'crypto/dh' directory of the pkg. these represent bit-sizes from 192 to 4096.
certainly 192-/512-/1024-bits are hardly applicable today and that leaves the
2048-/4096-bit files subject to current interest. at that, i am
Using OpenSSL 1.1.0-pre7-dev, our SSL server app is reporting:
10308:error:1417A0C1:SSL routines:tls_post_process_client_hello:no shared
cipher:ssl\statem\statem_srvr.c:1420:
Client & server both set to use TLS_method() with default ciphers. With
-DCIPHER_DEBUG enabled in our OpenSSL buil
Matt
Complete mis-read on my part, there is nothing wrong with SSL_new() and
BIO_s_mem(). I neglected to recall I was debugging a unittest with a client
thread was using the simpler bio_s_connect() to test our non-blocking
server.
The debugger was showing us the other thread.
-- thanks much.
On 06/08/16 02:32, Jim Carroll wrote:
> We have a non-blocking windows app that we are migrating to from OpenSSL
> 1.0.2i to 1.1.0-pre7-dev. We move data from sockets to SSL via
> BIO_s_mem() objects.
>
>
>
> rbio = BIO_new(BIO_s_mem());
>
> wbio = BIO_new(BIO_s_mem());
>
>
>
>