|
Hi there,
I am facing a problem while connecting to s_server demo
program provided with the latest OpenSSL 0.9.5-beta2
I am using IE5 browser with ssl version set to
SSLV2.
The Server is running with the option -version=ssl2 and verify =1.
There is a failure in Handshake with the error
182:error:1407D0E5:SSL routines:SSL2_READ:ssl handshake
failure:.\ssl\s2_pkt.c:100:
Here is the complete state output:
-----------------------------------------------------------------------------------------------------------------------------------
OpenSSL> s_server -cert d:\ca-cert.pem -CAfile d:\personal.pfx -verify 1
-ssl2 -www -debug -accept 443 -state
verify depth is 1 Loading 'screen' into random state - done Using default temp DH parameters ACCEPT SSL_accept:before/accept initialization read from 0044B410 [00CC47E8] (5 bytes => 5 (0x5)) 0000 - 80 1f 01 00 02 ..... read from 0044B410 [00CC47ED] (28 bytes => 28 (0x1C)) 0000 - 00 06 00 00 00 10 02 00-80 04 00 80 4f 62 2c ff ............Ob,. 0010 - 21 00 2b a3 b4 53 4e 44-1f cf 57 6d !.+..SND..Wm SSL_accept:SSLv2 read client hello A write to 0044B410 [00CCC801] (589 bytes => 589 (0x24D)) 0000 - 82 4b 04 00 01 00 02 02-2a 00 06 00 10 30 82 02 .K......*....0.. 0010 - 26 30 82 01 8f 02 01 00-30 0d 06 09 2a 86 48 86 &0......0...*.H. 0020 - f7 0d 01 01 04 05 00 30-5c 31 0b 30 09 06 03 55 .......0\1.0...U 0030 - 04 06 13 02 41 55 31 13-30 11 06 03 55 04 08 13 ....AU1.0...U... 0040 - 0a 51 75 65 65 6e 73 6c-61 6e 64 31 1a 30 18 06 .Queensland1.0.. 0050 - 03 55 04 0a 13 11 43 72-79 70 74 53 6f 66 74 20 .U....CryptSoft 0060 - 50 74 79 20 4c 74 64 31-1c 30 1a 06 03 55 04 03 Pty Ltd1.0...U.. 0070 - 13 13 54 65 73 74 20 50-43 41 20 28 31 30 32 34 ..Test PCA (1024 0080 - 20 62 69 74 29 30 1e 17-0d 39 37 30 36 30 39 31 bit)0...9706091 0090 - 33 35 37 34 33 5a 17 0d-30 31 30 36 30 39 31 33 35743Z..01060913 00a0 - 35 37 34 33 5a 30 5b 31-0b 30 09 06 03 55 04 06 5743Z0[1.0...U.. 00b0 - 13 02 41 55 31 13 30 11-06 03 55 04 08 13 0a 51 ..AU1.0...U....Q 00c0 - 75 65 65 6e 73 6c 61 6e-64 31 1a 30 18 06 03 55 ueensland1.0...U 00d0 - 04 0a 13 11 43 72 79 70-74 53 6f 66 74 20 50 74 ....CryptSoft Pt 00e0 - 79 20 4c 74 64 31 1b 30-19 06 03 55 04 03 13 12 y Ltd1.0...U.... 00f0 - 54 65 73 74 20 43 41 20-28 31 30 32 34 20 62 69 Test CA (1024 bi 0100 - 74 29 30 81 9f 30 0d 06-09 2a 86 48 86 f7 0d 01 t)0..0...*.H.... 0110 - 01 01 05 00 03 81 8d 00-30 81 89 02 81 81 00 a3 ........0....... 0120 - bb a3 cb 75 d7 a5 4f e9-c8 32 6d 3b 19 0c 26 61 ...u..O..2m;..&a 0130 - af de 67 62 56 6e c9 ad-da 0a 2d 48 2a 8c ed ab ..gbVn....-H*... 0140 - 05 a7 8d b9 83 14 8a e2-3a a1 85 3e b6 50 fa 6a ........:..>.P.j 0150 - 0c 11 30 bd 0f 9f 62 45-6f dd 15 74 af d4 5e b9 ..0...bEo..t..^. 0160 - 91 af d7 63 68 4b 87 d7-b1 08 2a 3b 5e e5 1c 0e ...chK....*;^... 0170 - ce 77 42 9d db 23 70 26-32 a1 e3 83 31 3c a0 ed .wB..#p&2...1<.. 0180 - da 8f 22 40 cc 99 13 4c-e5 1e 71 05 36 9b 0f e0 .."@...L..q.6... 0190 - 23 8b 4c 33 42 ea 58 c4-12 ee 5b 93 cb 8f b1 02 #.L3B.X...[..... 01a0 - 03 01 00 01 30 0d 06 09-2a 86 48 86 f7 0d 01 01 ....0...*.H..... 01b0 - 04 05 00 03 81 81 00 33-b6 9c 86 fd ef 84 b4 09 .......3........ 01c0 - 72 ff fa e5 e1 84 a4 15-cc e3 46 43 56 81 50 14 r.........FCV.P. 01d0 - 52 56 69 8e 69 f3 cd c7-4e a2 c1 d7 1e 05 77 3b RVi.i...N.....w; 01e0 - 17 1c 7d 10 28 14 dc 2a-95 b0 ab 2b b8 60 39 b7 ..}.(..*...+.`9. 01f0 - 7d bf 28 0e e8 30 ef 66-c2 cd fc 99 2b fc d5 64 }.(..0.f....+..d 0200 - f4 7f 85 59 6a 23 f7 ef-53 5d 3d 42 87 3e ee 83 ...Yj#..S]=B.>.. 0210 - ef 21 75 a4 cb bd 47 7d-c2 ba 64 10 80 ab 7d 0a .!u...G}..d...}. 0220 - 22 a1 8c fe ea 0c eb 42-0d ab de ea 8c 39 82 25 "......B.....9.% 0230 - aa 5a 81 c3 41 19 0b 02-00 80 04 00 80 e5 78 a9 .Z..A.........x. 0240 - 34 c0 ec d3 06 2d 72 20-d3 42 60 37 c4 4....-r .B`7. SSL_accept:SSLv2 write server hello A read from 0044B410 [00CC47E8] (2 bytes => 2 (0x2)) 0000 - 80 95 .. read from 0044B410 [00CC47EA] (149 bytes => 149 (0x95)) 0000 - 02 02 00 80 00 0b 00 80-00 00 61 16 fc d5 a5 56 ..........a....V 0010 - ad e7 3c cb 4e 22 6e 6a-07 89 d1 28 e5 d5 c3 d8 ..<.N"nj...(.... 0020 - 2c 38 8b 02 b1 47 e8 61-41 7a b3 00 07 67 0e 7f ,8...G.aAz...g.. 0030 - d2 a9 a2 18 94 0d c8 d3-b9 0e 84 f4 74 87 ab be ............t... 0040 - e5 c7 9e 60 2b 30 8d 33-20 65 92 22 c1 b6 ff 9c ...`+0.3 e.".... 0050 - 2a dd d3 f9 49 53 fe d4-16 10 5c 1b 65 67 7f cd *...IS....\.eg.. 0060 - 63 39 be 23 1f 9d 08 69-fb cc 0a 0d 79 98 2a 3d c9.#...i....y.*= 0070 - 82 b2 8c d6 52 8a ed fb-3a d8 e8 e3 70 7b 7a 45 ....R...:...p{zE 0080 - c7 55 f4 f5 ed a8 73 69-d8 f1 58 f3 28 d8 a5 2f .U....si..X.(../ 0090 - 93 66 da f0 96 .f... SSL_accept:SSLv2 read client master key A SSL_accept:SSLv2 server start encryption write to 0044B410 [00CCC801] (35 bytes => 35 (0x23)) 0000 - 80 21 8f 51 3d bd 34 16-a4 9a c0 1f 3c 46 ff 40 .!.Q=.4.....<F.@ 0010 - 60 fd 69 c2 f8 03 47 57-d6 5a 79 c4 0b 22 a5 49 `.i...GW.Zy..".I 0020 - 2f 00 9d /.. SSL_accept:SSLv2 write server verify A read from 0044B410 [00CC47E8] (2 bytes => 2 (0x2)) 0000 - 80 21 .! read from 0044B410 [00CC47EA] (33 bytes => 33 (0x21)) 0000 - 11 07 1a df f8 6a 1f 47-11 a7 7d a6 d1 bb 2c 62 .....j.G..}...,b 0010 - 1a 68 75 90 77 2d a4 2e-87 cc da 3e 9a 5e 72 33 .hu.w-.....>.^r3 0020 - 02 . SSL_accept:SSLv2 read client finished A write to 0044B410 [00CCC801] (36 bytes => 36 (0x24)) 0000 - 80 22 e9 b6 13 20 ac 57-df c3 6c d1 11 3b 96 43 ."... .W..l..;.C 0010 - 9c 0e ec 7a e1 60 60 6a-89 7b b0 ad 30 0a ad cd ...z.``j.{..0... 0020 - c0 c5 e5 1f .... read from 0044B410 [00CC47E8] (2 bytes => 0 (0x0)) SSL_accept:failed in SSLv2 write request certificate C 182:error:1407D0E5:SSL routines:SSL2_READ:ssl handshake failure:.\ssl\s2_pkt.c:1 00: ACCEPT ---------------------------------------------------------------------------------------------------------------------
Can anbody please tell me what is going wrong ?
Is this a bug in Openssl?
I am facing similar problem with the Security layer I have
implemented by using OpenSSL APIs.
Please let me know if anybody could able to reproduce the same problem.
Regards
Rajesh |
