Mailing Lists

curl-tracker Archives

[curl:bugs] #1481 Erroneous debug text when paired with OpenSSL 1.0.2

From: Daniel Stenberg <bagder_at_users.sf.net>
Date: Wed, 15 Apr 2015 09:26:28 +0000

- **status**: pending --> closed
- **Comment**:

Now being tracked here: https://github.com/bagder/curl/issues/219

Thanks!

---
** [bugs:#1481] Erroneous debug text when paired with OpenSSL 1.0.2**
**Status:** closed
**Created:** Wed Feb 04, 2015 07:22 AM UTC by Jay Satiro
**Last Updated:** Wed Apr 15, 2015 08:32 AM UTC
**Owner:** Daniel Stenberg
I'm currently using curl commit cfc6d46 2014-02-04 with OpenSSL 1.0.2 x86 on Windows 7 x64 in configuration 'DLL Debug - DLL OpenSSL'. When I enable verbose output in the curl tool I get a lot of '* SSLv2, Unknown (2x)' during the handshake and once or twice after. For example:
curl -v https://ssllabs.com
* SSLv2, Unknown (22):
* TLSv1.2, TLS handshake, Server hello (2):
* SSLv2, Unknown (22):
* TLSv1.2, TLS handshake, CERT (11):
* SSLv2, Unknown (22):
* TLSv1.2, TLS handshake, Server key exchange (12):
* SSLv2, Unknown (22):
* TLSv1.2, TLS handshake, Server finished (14):
* SSLv2, Unknown (22):
* TLSv1.2, TLS handshake, Client key exchange (16):
* SSLv2, Unknown (20):
* TLSv1.2, TLS change cipher, Client hello (1):
* SSLv2, Unknown (22):
* TLSv1.2, TLS handshake, Finished (20):
* SSLv2, Unknown (20):
* TLSv1.2, TLS change cipher, Client hello (1):
* SSLv2, Unknown (22):
* TLSv1.2, TLS handshake, Finished (20):
* SSL connection using TLSv1.2 / ECDHE-RSA-AES128-GCM-SHA256
Same but using OpenSSL 1.0.1j:
* TLSv1.2, TLS handshake, Server hello (2):
* TLSv1.2, TLS handshake, CERT (11):
* TLSv1.2, TLS handshake, Server key exchange (12):
* TLSv1.2, TLS handshake, Server finished (14):
* TLSv1.2, TLS handshake, Client key exchange (16):
* TLSv1.2, TLS change cipher, Client hello (1):
* TLSv1.2, TLS handshake, Finished (20):
* TLSv1.2, TLS change cipher, Client hello (1):
* TLSv1.2, TLS handshake, Finished (20):
* SSL connection using TLSv1.2 / ECDHE-RSA-AES128-GCM-SHA256
I looked in openssl.c at ssl_tls_trace which makes the output and is a callback function passed to OpenSSL's SSL_CTX_callback_ctrl, but there's nothing on that:
https://www.openssl.org/docs/ssl/SSL_callback_ctrl.html
---
Sent from sourceforge.net because curl-tracker@cool.haxx.se is subscribed to https://sourceforge.net/p/curl/bugs/
To unsubscribe from further messages, a project admin can change settings at https://sourceforge.net/p/curl/admin/bugs/options.  Or, if this is a mailing list, you can unsubscribe from the mailing list.

Received on 2015-04-15

This message: [ Message body ]
Next message: Tigzy: "[curl:bugs] #612 Stack overwrite under 64-bit Windows"
Previous message: Daniel Stenberg: "[curl:bugs] #1452 sftp upload not creating directories"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

These mail archives are generated by hypermail.