On 27/05/2016 18:29, Matt Caswell wrote:
On 27/05/16 16:20, counterpoint wrote:
Thanks Matt, good points. Not easy to implement though!
In the problem case, my code is the server (it is a proxy), and the standard
MariaDB command line client is the client. Yes, it does look as if
everything is happening as it should, except that the process stops before
all the data has been handled.
The client is sending a large query (about 500 KB, using "load data local
infile '/root/bigdata.txt' into table upload;").
If the client is connected directly to the database, using SSL, the query
runs successfully.
If the client is connected through the proxy without SSL (most of the logic
exactly the same), the query runs successfully.
If a shorter query is chosen, it works with SSL.
Looking at the data flows with Wireshark, it looks about right, but I can't
see the data in detail because of the SSL :)
Perhaps using an eNULL ciphersuite might help?
Matt
For future reference, another way is to load your private
key into WireShark. This works for all but the EDH/ECDH
suites that provide PFS security against enemies who steal
your private key and then decrypt previously recorded
TLS/SSL sessions.
Enjoy
Jakob
--
Jakob Bohm, CIO, Partner, WiseMo A/S. https://www.wisemo.com
Transformervej 29, 2860 Søborg, Denmark. Direct +45 31 13 16 10
This public discussion message is non-binding and may contain errors.
WiseMo - Remote Service Management for PCs, Phones and Embedded
--
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
