Hello everybody. I have an apache 1.32 running with mod_ssl and php3. And I am having a strange and undetectable (by me) error. The way a WAP device stablish a secure connection is using a WTLS (Wireles Transport Layer S....? ). But becouse these wap-alone protocol, the phone companies made it possible to convert it to SSL with a gateway. That is. Phone w/WAP --> Phone Co. Gateway --> SSL Server Stablish de connection Deencrypt WTLS with WTLS Stablish SSL Conenection Connection Stablished Data <--- WTLS/SSL ---> Data Well, I am having a strange problem wen the gateway connects to my apache and performs de SSL HandShake. I put the logging flag to debug and got the followings mistakes and my theories of what is happenning. Heres is what I get [05/Aug/2000 12:03:16 05089] [info] Connection to child 1 established (server :443, client <ip client>) [05/Aug/2000 12:03:16 05089] [info] Seeding PRNG with 1160 bytes of entropy [05/Aug/2000 12:03:16 05089] [trace] OpenSSL: Handshake: start [05/Aug/2000 12:03:16 05089] [trace] OpenSSL: Loop: before/accept initialization [05/Aug/2000 12:03:16 05089] [debug] OpenSSL: read 11/11 bytes from BIO#082B7320 [mem: 082E7198] (BIO dump follows) +-------------------------------------------------------------------------+ | 0000: 80 31 01 03 00 00 18 00-00 00 10 .1......... | +-------------------------------------------------------------------------+ [05/Aug/2000 12:03:16 05089] [debug] OpenSSL: read 40/40 bytes from BIO#082B7320 [mem: 082E71A3] (BIO dump follows) +-------------------------------------------------------------------------+ | 0000: 00 00 0a 00 00 05 00 00-04 00 00 09 00 00 03 00 ................ | | 0010: 00 08 01 00 80 02 00 80-11 19 4f d6 31 ee c1 9b ..........O.1... | | 0020: 47 1d a8 92 1e a6 10 58- G......X | +-------------------------------------------------------------------------+ [05/Aug/2000 12:03:16 05089] [trace] OpenSSL: Loop: SSLv3 read client hello A [05/Aug/2000 12:03:16 05089] [trace] OpenSSL: Loop: SSLv3 write server hello A [05/Aug/2000 12:03:16 05089] [trace] OpenSSL: Loop: SSLv3 write certificate A [05/Aug/2000 12:03:16 05089] [trace] OpenSSL: Loop: SSLv3 write server done A [05/Aug/2000 12:03:16 05089] [debug] OpenSSL: write 721/721 bytes to BIO#082B7320 [mem: 082B8F00] (BIO dump follows) +-------------------------------------------------------------------------+ | 0000: 16 03 00 00 4a 02 00 00-46 03 00 39 8c 3a c4 f1 ....J...F..9.:.. | .... | 02c0: 44 c1 95 4e 7a d4 8c 1d-16 03 00 00 04 0e D..Nz......... | | 02d1 - <SPACES/NULS> +-------------------------------------------------------------------------+ [05/Aug/2000 12:03:16 05089] [trace] OpenSSL: Loop: SSLv3 flush data [05/Aug/2000 12:03:16 05089] [debug] OpenSSL: read 5/5 bytes from BIO#082B7320 [mem: 082E7198] (BIO dump follows) +-------------------------------------------------------------------------+ | 0000: 15 03 00 00 02 ..... | +-------------------------------------------------------------------------+ [05/Aug/2000 12:03:16 05089] [debug] OpenSSL: read 2/2 bytes from BIO#082B7320 [mem: 082E719D] (BIO dump follows) +-------------------------------------------------------------------------+ | 0000: 02 . | | 0002 - <SPACES/NULS> +-------------------------------------------------------------------------+ [05/Aug/2000 12:03:16 05089] [trace] OpenSSL: Read: SSLv3 read client certificate A [05/Aug/2000 12:03:16 05089] [trace] OpenSSL: Exit: failed in SSLv3 read client certificate A [05/Aug/2000 12:03:16 05089] [error] SSL handshake failed (server wapito:443, client 63.237.56.17) (OpenSSL library error follows) [05/Aug/2000 12:03:16 05089] [error] OpenSSL: error:140943E8::lib(20) :func(148) :reason(1000) Well, this is all what is happenning. Somebody know what is those 15 03 00 00 02 command, I looked at the protocol and it semms to be Client Verify ( 2 bytes ), I found the 15, but no idea about the 03. And then the length of the data ( 00 00 02 ) 2 bytes. Thats why I receive 2 bytes. But the question is: What's going on with the Gateway that he is sending me that. Why not just an error message or something??? Then, someboyd knows, or explain we how and where to find these error and info [05/Aug/2000 12:03:16 05089] [error] OpenSSL: error:140943E8::lib(20) :func(148) :reason(1000) Well, if you can help me with the it gonne be great, thanks a lot!!! ARiel. Wireless solutions developer Movilogic SA www.movilogic.com ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
