相关文章推荐
博学的企鹅  ·  有关加密的技术参考详情 | ...·  2 周前    · 
痴情的硬盘  ·  检测到目标服务支持SSL弱加密算法怎么修复 ...·  2 周前    · 
文雅的海龟  ·  创建 TLS 客户端 ...·  1 周前    · 
低调的饭盒  ·  Microsoft Entra ...·  1 周前    · 
玩命的汉堡包  ·  关于2023-2024年度崔钟贤学术院国际学 ...·  4 月前    · 
阳刚的核桃  ·  陈凯歌杜可风亲密照被曝光 ...·  4 月前    · 
酒量小的创口贴  ·  有哪些高质量高智商宅斗文?·  1 年前    · 
憨厚的茶壶  ·  最后生还者真人版全剧情解说_最后生还者1剧情 ...·  1 年前    · 
想出国的豆腐  ·  【威马E.5】威马E.5报价,威马E.5图片_易车·  1 年前    · 
Code  ›  ssl - TLS 1.2 set cipher list - Stack Overflow
tls
https://stackoverflow.com/questions/69272898/tls-1-2-set-cipher-list
痴情的板凳
1 年前
Collectives™ on Stack Overflow

Find centralized, trusted content and collaborate around the technologies you use most.

Learn more about Collectives

Teams

Q&A for work

Connect and share knowledge within a single location that is structured and easy to search.

Learn more about Teams

I would like to set the TLS 1.2 configuration as below in my linux application. 

ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
ECDHE_ECDSA_WITH_AES_128_GCM_SHA256

I know of the API SSL_CTX_set_cipher_list(SSL *ssl, const char *str); My question is how do I set more than one cipher using this API. Should I call this API twice or how else?


Currently I am setting only one configuration like this:


SSL_CTX_set_cipher_list(ctx, ECDHE-RSA-AES256-GCM-SHA384)

How do I set both the configurations as listed above?


Based on https://www.openssl.org/docs/man1.0.2/man1/ciphers.html  "The cipher list consists of one or more cipher strings separated by colons. Commas or spaces are also acceptable separators but colons are normally used."


I would say 'ECDHE_ECDSA_WITH_AES_256_GCM_SHA384:ECDHE_ECDSA_WITH_AES_128_GCM_SHA256'

                Thanks. I have a follow up question. I have been advised to use the method TLS_server_method( ) instead of fixing the method to TLS v1.2 considering the various clients that can connect. How do I then set the cipher suite in case the client connects in TLSv1.2 mode to ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ECDHE_ECDSA_WITH_AES_128_GCM_SHA256.
– Embedded Enthusiast
                Oct 2, 2021 at 15:26
        
Thanks for contributing an answer to Stack Overflow!
  • Please be sure to answer the question. Provide details and share your research!
But avoid
  • Asking for help, clarification, or responding to other answers.
  • Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
 
推荐文章
博学的企鹅  ·  有关加密的技术参考详情 | Microsoft Learn
2 周前
痴情的硬盘  ·  检测到目标服务支持SSL弱加密算法怎么修复 - CSDN文库
2 周前
文雅的海龟  ·  创建 TLS 客户端 凭据时出现严重错误。内部错误状态为 10013 - 博讯科技工作室 - 博客园
1 周前
低调的饭盒  ·  Microsoft Entra Connect: TLS 1.2 enforcement for Microsoft Entra Connect - Microsoft Entra ID | Micr
1 周前
玩命的汉堡包  ·  关于2023-2024年度崔钟贤学术院国际学术交流资助项目(ISEF)的通知
4 月前
阳刚的核桃  ·  陈凯歌杜可风亲密照被曝光 相互搂抱贴面(图)-搜狐娱乐
4 月前
酒量小的创口贴  ·  有哪些高质量高智商宅斗文?
1 年前
憨厚的茶壶  ·  最后生还者真人版全剧情解说_最后生还者1剧情简介_最后的生还者真人版 - 抖音
1 年前
想出国的豆腐  ·  【威马E.5】威马E.5报价,威马E.5图片_易车
1 年前
今天看啥   ·   Py中国   ·   codingpro   ·   藏经阁   ·   小百科   ·   link之家   ·   卧龙AI搜索
删除内容请联系邮箱 2879853325@qq.com
Code - 代码工具平台
© 2024 ~ 沪ICP备11025650号