Hi
I'm the author of curl, a command-line tool for fetching documents using URL
syntax. It supports SSL since a while back, thanks to SSLeay and now OpenSSL.
I've come to notice a problem I have with SSLeay 0.8.0 compared to 0.9.1c
(and other) using the exact same curl sources, which leads me to believe that
I am doing something wrong.
This is the "bad" code:
/* Lets get nice error messages */
SSL_load_error_strings();
/* Setup all the global SSL stuff */
SSLeay_add_ssl_algorithms();
data->ctx = SSL_CTX_new(SSLv23_client_method());
if(!data->ctx)
return 1;
/* Lets make a SSL structure */
data->ssl = SSL_new (data->ctx);
SSL_set_connect_state (data->ssl);
data->server_cert = 0x0;
/* pass the raw socket into the SSL layers */
SSL_set_fd (data->ssl, data->firstsocket);
err = SSL_connect (data->ssl);
CHK_SSL(err);
infof (data, "SSL connection using %s\n", SSL_get_cipher (data->ssl));
When I connect to some sites (https://homepage.kingland.com is an example
that causes this "bug" to appear, although I am in no way related to them), a
0.9.1c-version says:
* SSL connection using (NONE)
While a 0.8.0-version outputs:
* SSL connection using RC4-SHA
So, the 0.8.0-version connects find while the newer ones stop right there.
Does anyone have a hint what to do or where to look? I have tried the FAQ and
other online documents without finding any answers to this problem. I'm
afraid I'm not very good in this area!
Curl is available with full source from:
http://www.fts.frontec.se/~dast/curl/
I'm grateful for all the help I can get!
--
Daniel Stenberg - http://www.fts.frontec.se/~dast
ech`echo xiun|tr nu oc|sed 'sx\([sx]\)\([xoi]\)xo un\2\1 is xg'`ol
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
