RE: DHE with DSS certificates

2000-07-12 Thread Shrikrishna Karandikar
>>>Did you say you were writing a custom client? RANDFILE and .rnd are used by the openssl application, not the library itself. So you will need to seed the PRNG in your application too. I am using the functions RAND_filename and RAND_load_file t seed the PRNG. Everything worked fine when I wa

Re: DHE with DSS certificates

2000-07-12 Thread Dr Stephen Henson
Shrikrishna Karandikar wrote: > > -Original Message- > From: Dr Stephen Henson [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, July 12, 2000 10:46 AM > To: [EMAIL PROTECTED] > Subject: Re: DHE with DSS certificates > > Shrikrishna Karandikar wrote: > > >

RE: DHE with DSS certificates

2000-07-12 Thread Shrikrishna Karandikar
-Original Message- From: Dr Stephen Henson [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 12, 2000 10:46 AM To: [EMAIL PROTECTED] Subject: Re: DHE with DSS certificates Shrikrishna Karandikar wrote: > > The message on the client side reads as follows: > > SSL connect

RE: DHE with DSS certificates

2000-07-12 Thread Shrikrishna Karandikar
What do you mean by wrong private key? I generated the certficates and the keys afresh, but I still see the same problem. -Original Message- From: Dale Peakall [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 12, 2000 10:47 AM To: [EMAIL PROTECTED] Subject: RE: DHE with DSS certificates

Re: DHE with DSS certificates

2000-07-12 Thread Dr Stephen Henson
Shrikrishna Karandikar wrote: > > The message on the client side reads as follows: > > SSL connect using (NONE) > > So the client is not selecting any cipher suite at all. Why would that be ? > I have dh parameters attached to the client certificate as well. Also I am > doing SSL_CTC_set_cipher

RE: DHE with DSS certificates

2000-07-12 Thread Dale Peakall
> I am doing that. I am using the same function which s_server uses to load > the DH parameters. But I still get this error message. Can anything else be > wrong? The "no shared ciphers" message can occur for at least one reason that has nothing to do with cipher suite negotiation per se. One I

RE: DHE with DSS certificates

2000-07-12 Thread Shrikrishna Karandikar
and server. Why would the client not pick any ciphersuite inspite of explicitly using SSL_CTX_set_cipher_list ? -Original Message- From: Lutz Jaenicke [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 12, 2000 10:28 AM To: '[EMAIL PROTECTED]' Subject: Re: DHE with DSS certifica

Re: DHE with DSS certificates

2000-07-12 Thread Lutz Jaenicke
On Wed, Jul 12, 2000 at 10:07:31AM -0700, Shrikrishna Karandikar wrote: > Hi Lutz, > > I am doing that. I am using the same function which s_server uses to load > the DH parameters. But I still get this error message. Can anything else be > wrong? Actually, it's hard to say on the distance. The

RE: DHE with DSS certificates

2000-07-12 Thread Shrikrishna Karandikar
EMAIL PROTECTED]' Subject: Re: DHE with DSS certificates On Tue, Jul 11, 2000 at 06:47:56PM -0700, Shrikrishna Karandikar wrote: > > I am trying to use Diffie Hellman key exchange with DSS certificates. I have > DH parameters appended to both the client and server certifcate files. Al