Opened 12 years ago

Closed 8 years ago

#36525 closed defect (worksforme)

Problem with connecting to https hosts.

Reported by: Themanwithoutaplan Owned by: larryv (Lawrence Velázquez)
Priority: Normal Milestone:
Component: ports Version: 2.1.2
Keywords: Cc: neverpanic (Clemens Lang)
Port: openssl

Description (last modified by ryandesign (Ryan Carsten Schmidt))

This problem actually hit me in Curl so it took a while and some help figuring it out.

openssl s_client -connect ws.webtrends.com:443

Never gets beyond the initial connection:

CONNECTED(00000003)

write:errno=54

---

no peer certificate available

---

No client certificate CA names sent

---

SSL handshake has read 0 bytes and written 322 bytes

---

New, (NONE), Cipher is (NONE)

Secure Renegotiation IS NOT supported

Compression: NONE

Expansion: NONE
create a new version of this paste
 RAW Paste Data

I've tried the same version of openssl (1.0.1c) on BSD with no problems and also the bundled version which also works fine.

The write error made me think that it might be a permissions problem but I get the same error and timeout when run as sudo.

Change History (5)

comment:1 Changed 12 years ago by mf2k (Frank Schima)

Description: modified (diff)
Owner: changed from macports-tickets@… to mww@…

In the future, please use WikiFormatting and Cc the port maintainer(s).

comment:2 Changed 12 years ago by ryandesign (Ryan Carsten Schmidt)

Description: modified (diff)

comment:3 Changed 12 years ago by jmroot (Joshua Root)

I get different output when I run the command in the description:

% openssl s_client -connect ws.webtrends.com:443
CONNECTED(00000003)
depth=1 C = US, O = "Entrust, Inc.", OU = www.entrust.net/rpa is incorporated by reference, OU = "(c) 2009 Entrust, Inc.", CN = Entrust Certification Authority - L1C
verify error:num=20:unable to get local issuer certificate
verify return:0
---
Certificate chain
 0 s:/C=US/ST=Oregon/L=Portland/O=WebTrends Inc./CN=ws.webtrends.com
   i:/C=US/O=Entrust, Inc./OU=www.entrust.net/rpa is incorporated by reference/OU=(c) 2009 Entrust, Inc./CN=Entrust Certification Authority - L1C
 1 s:/C=US/O=Entrust, Inc./OU=www.entrust.net/rpa is incorporated by reference/OU=(c) 2009 Entrust, Inc./CN=Entrust Certification Authority - L1C
   i:/O=Entrust.net/OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.)/OU=(c) 1999 Entrust.net Limited/CN=Entrust.net Certification Authority (2048)
---
Server certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
subject=/C=US/ST=Oregon/L=Portland/O=WebTrends Inc./CN=ws.webtrends.com
issuer=/C=US/O=Entrust, Inc./OU=www.entrust.net/rpa is incorporated by reference/OU=(c) 2009 Entrust, Inc./CN=Entrust Certification Authority - L1C
---
No client certificate CA names sent
---
SSL handshake has read 2705 bytes and written 632 bytes
---
New, TLSv1/SSLv3, Cipher is RC4-MD5
Server public key is 2048 bit
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
SSL-Session:
    Protocol  : TLSv1
    Cipher    : RC4-MD5
    Session-ID: 87A359CE86F93E179BFD070B38FE201AF5BC091D871EFD57C69703347EFFF30F
    Session-ID-ctx: 
    Master-Key: DA6B1F3D3F1BDB81525EBE9B00A9BDCB8BD19F117B2F56A1E1A6A2FB971DA558F2683DC3987BEAAAC2446546018ABA66
    Key-Arg   : None
    PSK identity: None
    PSK identity hint: None
    SRP username: None
    Start Time: 1351813116
    Timeout   : 300 (sec)
    Verify return code: 20 (unable to get local issuer certificate)
---

comment:4 Changed 10 years ago by jmroot (Joshua Root)

Cc: cal@… added
Owner: changed from mww@… to larryv@…

comment:5 Changed 8 years ago by neverpanic (Clemens Lang)

Resolution: worksforme
Status: newclosed

Can't reproduce, works fine for me.

Note: See TracTickets for help on using tickets.