Hi all,
I'm having a problem where ssl_handshake returns with the alert "No shared cipher". After debugging a little more I have following questions:
1. What is s->certs and s->certs->pkeys? What is their role and who/what sets these?
2. In my case all (x509, privatekeys) values are null. Is this a valid condition? What can be wrong?
Please let me know if I'm missing something obvious. I'm not very conversant with certificates.
Thanks in advance,
Vinay Jha
Background:
The configuration is
Server side: ClientRoot, Server Cert, ServerKey
Client Side: ServerRoot, Client cert, client key
Client Authentication is on.
Keeping the client side cert config same and changing "Servercert and serverKey" to other pair, the connection works.
I can see the value of x509 and privatekey for pkeys[SSL_PKEY_RSA_ENC].
While using the problematic server cert, if rsa_enc and rsa_enc_export in function ssl_set_cert_masks is forced to 1 manually during debugging, shared cipher suit is found.
This leads me to believe that some attribute of server certificate is missing, and hence the problem.
Quote of the day:
"To be intoxicated is to feel sophisticated, but not be able to say it."
