Boost Users :

Date view	Thread view	Subject view	Author view

Subject: [Boost-users] using ssl::context in boost 1.53 versions
From: dipti Burli (diptiburli21_at_[hidden])
Date: 2017-07-27 09:49:17

Next message: Edward Diener: "Re: [Boost-users] [filesystem] Strange "Function not implemented" exception from directory_iterator"
Previous message: Robert Dailey: "Re: [Boost-users] [filesystem] Strange "Function not implemented" exception from directory_iterator"

Hi ,

I am currently using boost 1.53 version. cannot upgrade to latest version.

Using ssl asio.

Here is my requirement.

I need to support tls1.1.and tls1.2 protocol in the server, but not tls1.0
.
As there are no options for tls1.1. and tls1.2 ,and context is not present
with relevant tls1.1 and tls1.2 versions,

I created the ssl::context with tlsv1 method and used

long ssl_disallowed = SSL_OP_NO_SSLv2 | SSL_OP_NO_SSLv3 | SSL_OP_NO_TLSv1 |
SSL_OP_NO_TLSv1_1 | SSL_OP_NO_TLSv1_2;
ssl_disallowed &= ~SSL_OP_NO_TLSv1_2;
ssl_disallowed &= ~SSL_OP_NO_TLSv1_1;

SSL_CTX_set_options(myBoostSslcontext.native_handle(),
ssl_disallowed|SSL_OP_SINGLE_DH_USE);

But handshake seems to be failing for any other versions other than tlsv1.

Can you please let me know how to I set the options so that my sserver can
accept tls connections on tls1.1 and tls1.2 with boost version 1.53.

Thanks in advance.
Dipti

text/html attachment: attachment

Next message: Edward Diener: "Re: [Boost-users] [filesystem] Strange "Function not implemented" exception from directory_iterator"
Previous message: Robert Dailey: "Re: [Boost-users] [filesystem] Strange "Function not implemented" exception from directory_iterator"

Date view	Thread view	Subject view	Author view

Boost-users list run by williamkempf at hotmail.com, kalb at libertysoft.com, bjorn.karlsson at readsoft.com, gregod at cs.rpi.edu, wekempf at cox.net