Re: ssl_connect fails Windows Non-blocking
Hi Stephan, I didn't handle properly fd_write and fd_read events after ssl_accept returning WANT_READ or WANT_WRITE. So sometimes SSL handshake didn't complete succesfully. I use plain socket descriptors with some WSA functions for selecting events, instead of MFC-Windows AsyncSocket classes. -- View this message in context: http://openssl.6102.n7.nabble.com/ssl-connect-fails-Windows-Non-blocking-tp45348p45482.html Sent from the OpenSSL - User mailing list archive at Nabble.com. __ OpenSSL Project http://www.openssl.org User Support Mailing Listopenssl-users@openssl.org Automated List Manager majord...@openssl.org
Re: ssl_connect fails Windows Non-blocking
Solved! -- View this message in context: http://openssl.6102.n7.nabble.com/ssl-connect-fails-Windows-Non-blocking-tp45348p45480.html Sent from the OpenSSL - User mailing list archive at Nabble.com. __ OpenSSL Project http://www.openssl.org User Support Mailing Listopenssl-users@openssl.org Automated List Manager majord...@openssl.org
Re: ssl_connect fails Windows Non-blocking
Hi Titonus, would you care to share the solution? I am interested too. Cheers, Stephan On Tue, Jun 11, 2013 at 12:07 PM, titonus tito...@gmail.com wrote: Solved! -- View this message in context: http://openssl.6102.n7.nabble.com/ssl-connect-fails-Windows-Non-blocking-tp45348p45480.html Sent from the OpenSSL - User mailing list archive at Nabble.com. __ OpenSSL Project http://www.openssl.org User Support Mailing Listopenssl-users@openssl.org Automated List Manager majord...@openssl.org
Re: ssl_connect fails Windows Non-blocking
More info: Client SSL log: [SSL_connect:before/connect initialization] [SSL_connect:SSLv2/v3 write client hello A] [SSL_connect:Error en SSLv2/v3 read server hello A] [SSL_connect:SSLv3 read server hello A] [SSL_connect:SSLv3 read server certificate A] [SSL_connect:SSLv3 read server key exchange A] [SSL_connect:SSLv3 read server done A] [SSL_connect:SSLv3 write client key exchange A] [SSL_connect:SSLv3 write change cipher spec A] [SSL_connect:SSLv3 write finished A] [SSL_connect:SSLv3 flush data] [SSL_connect:Error en SSLv3 read finished A] [SSL_connect:Error en SSLv3 read finished A] ***ERROR: ssl_connect - error 5 - here it's the problem Server SSL log: [SSL_accept:before/accept initialization] [SSL_accept:SSLv3 read client hello A] [SSL_accept:SSLv3 write server hello A] [SSL_accept:SSLv3 write certificate A] [SSL_accept:SSLv3 write key exchange A] [SSL_accept:SSLv3 write server done A] [SSL_accept:SSLv3 flush data] [SSL_accept:Error en SSLv3 read client certificate A] Client SSL works with same certificate in another server, and Server SSL works with same certificate being attacked by another client. -- View this message in context: http://openssl.6102.n7.nabble.com/ssl-connect-fails-Windows-Non-blocking-tp45348p45463.html Sent from the OpenSSL - User mailing list archive at Nabble.com. __ OpenSSL Project http://www.openssl.org User Support Mailing Listopenssl-users@openssl.org Automated List Manager majord...@openssl.org
ssl_connect fails Windows Non-blocking
OpenSSL latest version I use. This is the bad sequence, client and server are already connected at TCP level: Client -- ssl_connect returns WANT_READ, so I've wait for next select/WSAEventSelect --- SSLv2/v3 read server hello A Server -- ssl_accept returns WANT_READ, same wait --- SSLv3 read client certificate A Client -- READ event arrives, call again ssl_connect which now returns -1 (error:0005:lib(0):func(0):DH lib) Server -- WRITE event arrives and must wait READ event, however Client disconnects Sometimes it connects well, with this sequence: Client -- ssl_connect returns WANT_READ, so I've wait for next select/WSAEventSelect --- SSLv2/v3 read server hello A Server -- ssl_accept returns WANT_READ, same wait --- SSLv3 read client certificate A Client -- READ event arrives Client -- call again ssl_connect returns -1 (error:0002:lib(0):func(0):system lib) == wants more READ --- SSLv3 read server session ticket A Server -- WRITE event arrives Server -- READ event arrives Server -- call again ssl_accept returns succesfully Client -- READ event arrives Client -- call ssl_connect returns succesfully Any ideas? Thanks in advance. -- View this message in context: http://openssl.6102.n7.nabble.com/ssl-connect-fails-Windows-Non-blocking-tp45348.html Sent from the OpenSSL - User mailing list archive at Nabble.com. __ OpenSSL Project http://www.openssl.org User Support Mailing Listopenssl-users@openssl.org Automated List Manager majord...@openssl.org