New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
TLS Handshake failed error w/ OpenSSL 1.1.x #11975
Comments
The client and server have failed to find a common set of ciphersuites that they both support.
This suggests you are using ADH based ciphersuites which are not available in the default security level in 1.1.1. This was not the case in 1.0.2, so my guess is that this is probably your problem. I can demonstrate a similar problem using s_server/s_client in OpenSSL 1.1.1. Start s_server like this:
And s_client like this:
And you will see s_server complain with this error message:
Modifying the s_server command line args so that they look like this:
And then retrying the s_client command should result in a successful connection. The difference is in the ciphersuite configuration where we explicitly specify a lower security level. I am not familiar with VNC configuration, but you will need to do one of the following things:
|
@mattcaswell Thanks for the help. I lowered the security level of ADH to ADH@SECLEVEL=0 in x11vnc server code & it worked. |
Great. Glad you got it working. Closing this. |
I'm trying to connect x11vnc server through VncViewer (TigerVnc). I'm giving following command to start vnc server with -ssl option
$ x11vnc -ssl -rfbauth /home/root/.vnc/passwd
When I'm trying to connect the vnc server, I'm getting TLS handshake failed error.
Following is the vncserver log
This was working properly without error. Only change is openssl version, It changed from OpenSSL 1.0.2p 14 Aug 2018 to OpenSSL 1.1.1d 10 Sep 2019.
What could be the reason for failure?
The text was updated successfully, but these errors were encountered: