[OpenWrt-Tickets] [OpenWrt] #19621: curl / polarssl handshake error

Fri, 08 May 2015 10:20:07 -0700 

#19621: curl / polarssl handshake error
---------------------------+----------------------------------
 Reporter:  anonymous      |      Owner:  developers
     Type:  defect         |     Status:  new
 Priority:  normal         |  Milestone:  Chaos Calmer (trunk)
Component:  base system    |    Version:  Trunk
 Keywords:  curl polarssl  |
---------------------------+----------------------------------
 Trying to download a zeustracker domain blocklist with curl (ca-
 certificates installed) failed in cc:


 {{{
 curl -v
 https://zeustracker.abuse.ch/blocklist.php?download=domainblocklist
 * ssl_handshake returned - PolarSSL: (-0x7280) SSL - The connection
 indicated an EOF
 curl: (35) ssl_handshake returned - PolarSSL: (-0x7280) SSL - The
 connection indicated an EOF
 }}}

 Same download works fine with curl/debian:
 {{{
 curl -v
 https://zeustracker.abuse.ch/blocklist.php?download=domainblocklist
 *   Trying 104.155.11.149...
 * Connected to zeustracker.abuse.ch (104.155.11.149) port 443 (#0)
 * found 173 certificates in /etc/ssl/certs/ca-certificates.crt
 * ALPN, offering http/1.1
 * SSL connection using TLS1.2 / ECDHE_RSA_AES_256_GCM_SHA384
 *        server certificate verification OK
 *        server certificate status verification SKIPPED
 *        common name: *.abuse.ch (matched)
 *        server certificate expiration date OK
 *        server certificate activation date OK
 *        certificate public key: RSA
 *        certificate version: #3
 *        subject: OU=Domain Control Validated,OU=PositiveSSL
 Wildcard,CN=*.abuse.ch
 *        start date: Sun, 16 Mar 2014 00:00:00 GMT
 *        expire date: Tue, 15 Mar 2016 23:59:59 GMT
 *        issuer: C=GB,ST=Greater Manchester,L=Salford,O=COMODO CA
 Limited,CN=COMODO RSA Domain Validation Secure Server CA
 *        compression: NULL
 * ALPN, server did not agree to a protocol
 > GET /blocklist.php?download=domainblocklist HTTP/1.1
 > Host: zeustracker.abuse.ch
 > User-Agent: curl/7.42.1
 > Accept: */*
 >
 < HTTP/1.1 200 OK
 < Date: Fri, 08 May 2015 16:52:40 GMT
 < Server: Apache/2
 < X-Powered-By: PHP/5.5.9-1ubuntu4.9
 < Content-Disposition: filename=zeus_domainblocklist.txt
 < Strict-Transport-Security: max-age=31536000; includeSubDomains;
 < Last-Modified: Fri, 08 May 2015 13:43:24 GMT
 < Vary: Accept-Encoding
 < X-Content-Type-Options: nosniff
 < X-XSS-Protection: 1; mode=block, 1; mode=block
 < X-Frame-Options: sameorigin
 < Transfer-Encoding: chunked
 < Content-Type: text/plain
 <
 [...]
 }}}

--
Ticket URL: <https://dev.openwrt.org/ticket/19621>
OpenWrt <http://openwrt.org>
Opensource Wireless Router Technology
_______________________________________________
openwrt-tickets mailing list
[email protected]
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-tickets

Reply via email to