OpenSSL 1.0.1 and TLSv1.2

Mon, 26 Mar 2012 07:30:25 -0700 

Hi,

I am doing some testing with openssl 1.0.1 and I am trying to find the
proper syntax to display only TLSv1.1+ ciphers.

When I look in ./ssl/ssl.h, I see
#define SSL_TXT_TLSV1_2         "TLSv1.2"
but what ever I try, I always get:
Error in cipher list
error:140E6118:SSL routines:SSL_CIPHER_PROCESS_RULESTR:invalid
command:ssl_ciph.c:1164:

-bash-3.2$ ./openssl version
OpenSSL 1.0.1 14 Mar 2012

-bash-3.2$ ./openssl ciphers -v 'TLSv1.2'
Error in cipher list
3086808716:error:140E6118:SSL
routines:SSL_CIPHER_PROCESS_RULESTR:invalid command:ssl_ciph.c:1164:

-bash-3.2$ ./openssl ciphers -v "TLSv1.2"
Error in cipher list
3086939788:error:140E6118:SSL
routines:SSL_CIPHER_PROCESS_RULESTR:invalid command:ssl_ciph.c:1164:

-bash-3.2$ ./openssl ciphers -v -TLS1.2
Error in cipher list
3086755468:error:1410D0B9:SSL routines:SSL_CTX_set_cipher_list:no cipher
match:ssl_lib.c:1312:

-bash-3.2$ ./openssl ciphers -v -tls1.2
Error in cipher list
3086632588:error:1410D0B9:SSL routines:SSL_CTX_set_cipher_list:no cipher
match:ssl_lib.c:1312:

-bash-3.2$ ./openssl ciphers -v -tls1_2
Error in cipher list
3086866060:error:1410D0B9:SSL routines:SSL_CTX_set_cipher_list:no cipher
match:ssl_lib.c:1312:

Any help would be really appreciated.

Thanks.

Martin

____
 
This message and any files transmitted with it are legally privileged and 
intended for the sole use of the individual(s) or entity to whom they are 
addressed. If you are not the intended recipient, please notify the sender by 
reply and delete the message and any attachments from your system. Any 
unauthorised use or disclosure of the content of this message is strictly 
prohibited and may be unlawful.
 
Nothing in this e-mail message amounts to a contractual or legal commitment on 
the part of EUROCONTROL, unless it is confirmed by appropriately signed hard 
copy.
 
Any views expressed in this message are those of the sender.
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    openssl-users@openssl.org
Automated List Manager                           majord...@openssl.org

Reply via email to