ssl.SSLError: ('No cipher can be selected') When Trying to Set TLS1.3 Cipher Suites in Python SSL

Question

ssl.SSLError: ('No cipher can be selected') When Trying to Set TLS1.3 Cipher Suites in Python SSL

3.1k views Asked by EladZ At 04 November 2019 at 11:39

I am having a problem when trying to set TLS1.3 ciphers for ssl contexts in python, particularly 'TLS_AES_128_CCM_SHA256'.

OS: Windows 7

Python version: 3.7.4

OpenSSL version: 1.1.1c

By default, when i'm not setting cipher suites, it can be seen in the TLS handshake that the client does offer some TLS1.3 ciphers, but not the ones I need.

import ssl

if __name__ == '__main__':
    ctx = ssl.SSLContext(ssl.PROTOCOL_TLS)
    ctx.set_ciphers('TLS_AES_128_CCM_SHA256')
    print(ctx.get_ciphers())

The error I receive:

ssl.SSLError:('No cipher can be selected.',)

Original Q&A

There are 1 answers

**Julien** · Answer 1 · 2021-11-05T10:52:38+00:00

Julien On 05 November 2021 at 10:52

This is because set_ciphers does not apply to TLSv1.3, so you can't enable nor disable those cipher suite (In your example "TLS_AES_128_CCM_SHA256" is one of them.)

source = https://docs.python.org/3/library/ssl.html#ssl.SSLContext.set_ciphers

TechQA.

ssl.SSLError: ('No cipher can be selected') When Trying to Set TLS1.3 Cipher Suites in Python SSL

There are 1 answers

Related Questions in PYTHON

Related Questions in OPENSSL

Related Questions in PYOPENSSL

Related Questions in TLS1.3

Related Questions in CCM

Popular Questions

Popular Tags

Trending Questions