1 Topic by andersanxiley (edited by andersanxiley 2015-09-10 12:55:10)

  • Registered: 2015-09-10
  • Posts: 2

Topic: WolfSSL communication between FreeRTOS and Linux

I'm trying to establish a secure communication between the FreeRTOS (client) and Linux (server) using the WolfSSL library.

I'm getting the error -501 that indicates that cipher suites list doesn't match.

CyaSSL_read error = -501
error = -501, can't match cipher suite

The table below show the supported cipher suites from server and client:

PunBB bbcode test


How can I enable one of those cipher suite on Linux to enable the communication?

Complete debug log:

received record layer msg
wolfSSL Entering DoHandShakeMsg()
wolfSSL Entering DoHandShakeMsgType
processing client hello
wolfSSL Entering MatchSuite
wolfSSL Leaving DoHandShakeMsgType(), return -501
wolfSSL Leaving DoHandShakeMsg(), return -501
wolfSSL error occured, error = -501
wolfSSL Leaving wolfSSL_negotiate, return -1
wolfSSL Leaving wolfSSL_read_internal(), return -1
wolfSSL Entering SSL_get_error
wolfSSL Leaving SSL_get_error, return -501
CyaSSL_read error = -501
wolfSSL Entering SSL_get_error
wolfSSL Leaving SSL_get_error, return -501
wolfSSL Entering ERR_error_string
error = -501, can't match cipher suite
wolfSSL Entering SSL_free
CTX ref count not 0 yet, no free
Shrinking input buffer

Best regards,

Share

  • Jacob
  • Moderator
  • Offline
  • Registered: 2014-08-21
  • Posts: 78

Re: WolfSSL communication between FreeRTOS and Linux

Hi andersanxily,

Does having a specific suite set on the linux server have the same issue. For example starting the server with
./examples/server/server -l DHE-RSA-AES256-SHA256 -b
Setting the example server to have only the preferred suite the client wants available. (TLS_DHE_RSA_WITH_AES256_SHA256) This suite should be enabled with the default wolfSSL configuration
./configure
make

Regards,
Jacob

Share