Bug #54511 [Com]: Failure in socket open to some SSL server

Tue, 12 Apr 2011 01:04:17 -0700 

Edit report at http://bugs.php.net/bug.php?id=54511&edit=1

 ID:                 54511
 Comment by:         dbpalan at hotmail dot com
 Reported by:        dbpalan at hotmail dot com
 Summary:            Failure in socket open to some SSL server
 Status:             Open
 Type:               Bug
 Package:            OpenSSL related
 Operating System:   Debian Squeeze
 PHP Version:        5.3.6
 Block user comment: N
 Private report:     N

 New Comment:

1. The function call is located in ext/openssl/xp_ssl.c



2. A workaround is replace the line fsockopen() with:



    $context = stream_context_create(array(

        'ssl' => array('SNI_server_name' => 'smtpb.scig.gov.hk'),

    ));

    $fp = stream_socket_client("tcp://smtpb.scig.gov.hk:465", $errno,
$errstr, 30, STREAM_CLIENT_CONNECT, $context);


Previous Comments:
------------------------------------------------------------------------
[2011-04-12 09:51:12] dbpalan at hotmail dot com

Description:
------------
fsockopen() connect to a server always failed.  After some tests it is
confirmed due to a bug in a SSL function call which only occur in new
version:



5.2.6  - passed

5.2.17 - passed

5.3.0  - passed

5.3.1  - passed

5.3.2  - failed

5.3.3  - failed

5.3.6  - failed



The bug was introduced from svn revision #291493 "merge from trunk:
openssl sni support" from the function call to
SSL_set_tlsext_host_name(sslsock->ssl_handle, sslsock->sni).



If I remark this function, everything works fine.



I have no further idea what is this function do, and what side effect
without this function.  Please advice and hope a fix would be available.
 Thank you.



Test script:
---------------
<?

$fp = fsockopen("ssl://smtpb.scig.gov.hk", 465, $errno, $errstr, 30);

if (!$fp) {

    echo "fail: $errstr ($errno)\n";

} else {

    echo "success";

}

?>



Expected result:
----------------
$fp is a non-zero handle, the screen will show "success"

Actual result:
--------------
$fp is EMPTY, the screen will show:



Warning: fsockopen() [function.fsockopen]: SSL operation failed with
code 1. OpenSSL Error messages: error:14094417:SSL
routines:func(148):reason(1047) in /www/test.php on line 2



Warning: fsockopen() [function.fsockopen]: Failed to enable crypto in
/www/test.php on line 2



Warning: fsockopen() [function.fsockopen]: unable to connect to
ssl://smtpb.scig.gov.hk:465 (Unknown error) in /www/test.php on line 2



fail: 0


------------------------------------------------------------------------



-- 
Edit this bug report at http://bugs.php.net/bug.php?id=54511&edit=1

Reply via email to