StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

POboost asio with ECDSA certificate issue
primarykey
Id
18929049
data
AcceptedAnswerId
19219673
AnswerCount
2
ClosedDate
CommentCount
2
CommunityOwnedDate
CreationDate
2013-09-21T04:55:57.037
FavoriteCount
1
LastActivityDate
2013-10-07T08:00:53.277
LastEditDate
LastEditorUserId
0
OwnerUserId
1668475
ParentId
0
PostTypeId
1
Score
3
ViewCount
1186
LastEditorDisplayName
text
Body
I am implementing SSL server using boost::asio. The context initialization is shown in below code <pre><code> boost::asio::ssl::context_base::method SSL_version = static_cast<boost::asio::ssl::context_base::method>(param_values[ID_PROTOCOL_VERSION].int32_value); // load certificate files boost::shared_ptr<boost::asio::ssl::context> context_ = boost::shared_ptr<boost::asio::ssl::context>( new boost::asio::ssl::context(SSL_version)); p_ctx = boost::static_pointer_cast<void>(context_); context_->set_options(boost::asio::ssl::context::default_workarounds); context_->use_certificate_chain_file(cert_chain_file); context_->use_certificate_file(cert_file, boost::asio::ssl::context::pem); context_->use_private_key_file(cert_file, boost::asio::ssl::context::pem); context_->set_verify_mode(boost::asio::ssl::verify_peer | boost::asio::ssl::verify_fail_if_no_peer_cert); context_->set_verify_callback(boost::bind(&verify_certificate_cb, _1, _2)); if (param_values[ID_CIPHER_LIST].int32_value != 0) { std::string cipher_list = ""; generate_cipher_list(param_values[ID_CIPHER_LIST].int32_value, cipher_list); MA5G_logger::log(PRIORITY_INFO, "Supported cipher list %s", cipher_list.c_str()); SSL_CTX_set_cipher_list((reinterpret_cast<boost::asio::ssl::context*>(p_ctx.get()))->native_handle(), cipher_list.c_str()); } </code></pre> in the <code>cipher_list</code>, I am supporting below list <pre><code>AES128-SHA:AES256-SHA:AES128-SHA256:AES256-SHA256:AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA </code></pre> With <code>ECDSA</code> certificates if I use <code>cipher_list</code> given above then client can not connect to the server and gives error <code>"No shared cipher"</code>. But if I do not give <code>cipher_list</code> then the client can successfully connect to the server. The same cipher list works fine with <code>RSA</code> certificates. The same ECDSA certificates work fine if I use <code>openssl s_server</code> with <code>-cipher</code> option to provide supported <code>cipher_list</code> Can anyone help with this issue?
Tags
<linux><boost><ssl><openssl><boost-asio>
Title
boost asio with ECDSA certificate issue
singulars
PostAcceptedAnswerId
1. PO
 singulars
 PostTypePostTypeId
 PTAnswer
PostParentId
1. This table or related slice is empty.
PostTypePostTypeId
1. PTQuestion
UserLastEditorUserId
1. This table or related slice is empty.
UserOwnerUserId
1. USChirag Desai
plurals
PostLinksPostIdRelatedPostId
1. This table or related slice is empty.
PostLinksRelatedPostIdPostId
1. This table or related slice is empty.
PostsAcceptedAnswerId
1. This table or related slice is empty.
PostsParentIdCreationDate
1. PO
 singulars
 PostTypePostTypeId
 PTAnswer
2. PO
 singulars
 PostTypePostTypeId
 PTAnswer
VotesPostIdCreationDate
1. VO
 singulars
 PostPostId
 POboost asio with ECDSA certificate issue
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
2. VO
 singulars
 PostPostId
 POboost asio with ECDSA certificate issue
 UserUserId
 USChirag Desai
 VoteTypeVoteTypeId
 VTBountyStart
3. VO
 singulars
 PostPostId
 POboost asio with ECDSA certificate issue
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTBountyClose
CommentsPostId
1. COWhat does `SSL_CTX_set_cipher_list` return when you try setting the cipher list?
 singulars
 PostPostId
 POboost asio with ECDSA certificate issue
 UserUserId
 USrkyser
2. COit always returns 1.
 singulars
 PostPostId
 POboost asio with ECDSA certificate issue
 UserUserId
 USChirag Desai

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.