I figured out the variant issue and built, but the tests are failing - see
https://gist.github.com/sf-mrichter/2c5c653b3800708c1a67ba41e4992129.
Still not sure how to link an app to the new ssl that uses libraries that were
built with the default.
-Original Message-
From: openssl-users
>>> Configuration file difference?
>
>> which config file are you referring to?
>
> The default OpenSSL configuration file. openssl.cnf, in the directory
> displayed by "openssl version -d". But I can't think offhand of anything in
> the configuration file that I'd expect to have this sort of
> Works for me:
> $ openssl ciphers -stdname -s -V
> 'TTLS13-CHACHA20-POLY1305-SHA256:TLS13-AES-128-GCM-SHA256:TLS13-AES-256-GCM-SHA384'
simplifying to build defaults
./config -v \
--prefix=/usr/local/ssl-test \
--openssldir=/usr/local/ssl-test \
--libdir=lib
[Apologies if the formatting here is a little screwy. For the moment I have to
use Outlook Web Interface, which is even more problematic than the standalone
Outlook client.]
> > Different OpenSSL release?
> yes
> openssl version
> OpenSSL 1.1.1c 28 May 2019
Eh, that's probably it.
> Works for me:
heh. of COURSE it does!
sanity check here,
openssl ciphers -stdname -s -V
'TTLS13-CHACHA20-POLY1305-SHA256:TLS13-AES-128-GCM-SHA256:TLS13-AES-256-GCM-SHA384'
Error in cipher list
140042399306176:error:1410D0B9:SSL routines:SSL_CTX_set_cipher_list:no
cipher
> From: openssl-users [mailto:openssl-users-boun...@openssl.org] On Behalf Of
> PGNet Dev
> Sent: Friday, July 19, 2019 11:38
>
> Checking cipherlist for just TLSv1.3 ciphers FAILs here,
>
> openssl ciphers -stdname -s -V 'TTLS13-CHACHA20-POLY1305-
> SHA256:TLS13-AES-128-GCM-SHA256:TLS13-AES
MacOS Mojave 10.14.5, OpenSSL-1.1.1c (Macports-installed).
Engines defined in the openssl.cnf file:
#
[engine_section]
pkcs11 = pkcs11_section
gost = gost_section
[pkcs11_section]
engine_id = pkcs11
dynamic_path = /opt/local/lib/engines-1.1/libpkcs11.so
MODULE_PATH = /Library/Open
I've been poking around in the Configurations/* and all the README* files, and
on the web, and it is not at all clear to me how/where to specify the
inherit_from and shlib_variant options (probably not the right term, but...) or
how the resulting libraries are distinguished from the system defau
I suspect I've misunderstood usage of TLSv1.3 @
https://www.openssl.org/blog/blog/2018/02/08/tlsv1.3/
Checking cipherlist for just TLSv1.3 ciphers FAILs here,
openssl ciphers -stdname -s -V
'TTLS13-CHACHA20-POLY1305-SHA256:TLS13-AES-128-GCM-SHA256:TLS13-AES-256-GCM-SHA384'
