openssl: TLS regression

Server:

openssl s_server -www -cert localhost_rsa_1024/cert.pem -key localhost_rsa_1024/seckey.pem -cipher ECDHE-RSA-AES256-SHA -tls1

Client:

openssl s_client -connect localhost:4433 -CAfile sslCA/cacert.pem -verify_return_error -verify 1 -state -cipher ECDHE-RSA-AES256-SHA

Server stderr:

0071BFB54D7F0000:error::SSL routines::no suitable signature algorithm:ssl/t1_lib.c:3329:

Client stderr:

verify depth is 1
CONNECTED(00000003)
SSL_connect:before SSL initialization
SSL_connect:SSLv3/TLS write client hello
SSL3 alert read:fatal:internal error
SSL_connect:error in error
0071ECDD2E7F0000:error::SSL routines::tlsv1 alert internal error:ssl/record/rec_layer_s3.c:1615:SSL alert number 80

Previous tests were against alpha2

About this issue

  • Original URL
  • State: closed
  • Created 4 years ago
  • Comments: 23 (23 by maintainers)

Most upvoted comments

This will not be the first time I disagreed with the OMC. 😃

+1
richsalz on Aug 11, 2020
Read more comments on GitHub
← openssl: tls connection fails when server uses brainpool certificate
openssl: tls_construct_server_key_exchange:internal error / tls_process_server_certificate:length mismatch →