|
Hi All,
I have an echo server (a C
application) which uses SSL.
In the serve, calling SSL_get_cipher() and
SSL_get_cipher_version() after SSL_accept() returns this:
======
SSL cipher is : DES-CBC3-SHA
SSL cipher version is : TLSv1/SSLv3 ======
I would like to know how this default cipher
suite is selected?
Is there any parameter in some configuration
file?
Is it related to the certificate that the
server/client uses? I used openssl's s_client utility to test the server. The initial output of
the s_client is in the file attached.
Here is the sequence of function calls in the
server:
*Initialize ssl environment*
SSL_load_error_strings()
SSL_library_init()
SSL_CTX_new()
SSL_CTX_use_certificate_file()
SSL_CTX_use_PrivateKey_file()
SSL_CTX_check_private_key()
*Create a TCP socket and accept TCP
connection*
socket()
bind()
listen()
accept()
*SSL'ize the socket*
SSL_new()
SSL_set_fd()
SSL_accept()
SSL_get_cipher()
SSL_get_cipher_version()
SSL_read()
SSL_write()
SSL_shutdown()
Please let me know if you need any more
information regarding this scenario.
Thanks in advance.
~ Urjit
|
s_client.out
Description: Binary data
