this post was submitted on 16 Jul 2023
1 points (100.0% liked)

openssl

1 readers
0 users here now

openssl.

founded 1 year ago
MODERATORS
[email protected]
1
Having an issue with Client/Server Negotiation 'no shared cipher' despite having shared ciphers! (zerobytes.monster)
submitted 1 year ago by [email protected] to c/[email protected]
0 comments fedilink hide all child comments
 
This is an automated archive.

The original was posted on /r/openssl by /u/thekobaz on 2023-05-18 15:54:09+00:00.

Having an issue...

Server is reporting:

SSL_ERROR_SSL (Handshake): Level: 0 err: <337092801> <SSL routines-tls\_post\_process\_client\_hello-no shared cipher>

Flow:

Client (voip phone) successfully makes the TCP connection and starts with a TLS Client Hello. Certificates are not exchanged at this point

https://dpaste.com/FS4YHL9TQ

Server Responds with

TLS Handshake Failure

Here is a session going the other way: Server sending a Client Hello

https://dpaste.com/CQAPFU5MP

You can see there are plenty of overlaps with ciphers and signature algorithims.

Here's the Server Certificate:

https://dpaste.com/4EMXFYC3M

I'm baffled why the Server rejects the Client Hello due to 'no shared cipher'

no comments (yet)
sorted by: hot top controversial new old
there doesn't seem to be anything here