From 93e0e8cc641ad879d97cc0c548ba3a6fc7b0e02b Mon Sep 17 00:00:00 2001
From: Bruno Silvestre <bruno.silvestre@gmail.com>
Date: Thu, 26 Jul 2018 11:22:24 -0300
Subject: [PATCH] Force a cipher that use DH parameter

---
 samples/dhparam/client.lua | 3 ++-
 samples/dhparam/server.lua | 1 +
 2 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/samples/dhparam/client.lua b/samples/dhparam/client.lua
index 48bc0bb..fb299ec 100644
--- a/samples/dhparam/client.lua
+++ b/samples/dhparam/client.lua
@@ -6,12 +6,13 @@ local ssl    = require("ssl")
 
 local params = {
    mode = "client",
-   protocol = "tlsv1_2",
+   protocol = "any",
    key = "../certs/clientAkey.pem",
    certificate = "../certs/clientA.pem",
    cafile = "../certs/rootA.pem",
    verify = {"peer", "fail_if_no_peer_cert"},
    options = "all",
+   ciphers = "EDH+AESGCM"
 }
 
 local peer = socket.tcp()
diff --git a/samples/dhparam/server.lua b/samples/dhparam/server.lua
index 37661d5..1fbbbaa 100644
--- a/samples/dhparam/server.lua
+++ b/samples/dhparam/server.lua
@@ -38,6 +38,7 @@ local params = {
    verify = {"peer", "fail_if_no_peer_cert"},
    options = "all",
    dhparam = dhparam_cb,
+   ciphers = "EDH+AESGCM"
 }