Openssl I/o Error 5 Bytes Expected
Contents |
Start here for a quick overview of the site Help Center Detailed answers to any questions you might have Meta Discuss the workings and policies of this site About Us Learn more about
Openssl: I/o Error, 11 Bytes Expected To Read On Bio
Stack Overflow the company Business Learn more about hiring developers or posting ads with ssl_engine_io.c(1908): openssl: i/o error, 5 bytes expected to read on us Server Fault Questions Tags Users Badges Unanswered Ask Question _ Server Fault is a question and answer site for system and
Ssl_engine_io.c(1950): Openssl: I/o Error, 5 Bytes Expected To Read On Bio
network administrators. Join them; it only takes a minute: Sign up Here's how it works: Anybody can ask a question Anybody can answer The best answers are voted up and rise to the top openssl openssl: exit: error in sslv2/v3 read client hello a giving me errors and apache is not working with https up vote 0 down vote favorite I try to configure apache-tomcat with ssl, but find some issues [root@manage conf]# openssl s_client -state -debug -connect 10.104.1.38:443 -key server.key -cert server.crt CONNECTED(00000003) SSL_connect:before/connect initialization write to 0x80f1e98 [0x811d5e8] (121 bytes => 121 (0x79)) 0000 - 80 77 01 03 01 00 4e 00-00 00 20 00 00 39 00 00 .w....N... ..9.. 0010 openssl: i/o error, 7 bytes expected to read on - 38 00 00 35 00 00 16 00-00 13 00 00 0a 07 00 c0 8..5............ 0020 - 00 00 33 00 00 32 00 00-2f 03 00 80 00 00 05 00 ..3..2../....... 0030 - 00 04 01 00 80 00 00 15-00 00 12 00 00 09 06 00 ................ 0040 - 40 00 00 14 00 00 11 00-00 08 00 00 06 04 00 80 @............... 0050 - 00 00 03 02 00 80 00 00-ff 0a 86 af 23 f2 2f a1 ............#./. 0060 - 4b 2d 9b f3 a9 d9 0e 1b-34 4d 0c e4 1a 06 b6 25 K-......4M.....% 0070 - 76 04 de bd 6f 50 86 a1-9f v...oP... SSL_connect:SSLv2/v3 write client hello A read from 0x80f1e98 [0x8122b48] (7 bytes => 7 (0x7)) 0000 - 3c 21 44 4f 43 54 59 ErrorLog "/usr/local/tomcat/logs/error_log" TransferLog "/usr/local/tomcat/logs/access_log" SSLEngine on SSLProtocol +SSLv3 +TLSv1 SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP+SSLv3: ServerName manage.xyz DocumentRoot /usr/local/tomcat/webapps/xyz ServerAdmin bugs@xxxx.com Alias /backup "/var/backupdata/" Alias /logbackup "/var/logbackupdata/" Alias /autologbackupdata "/var/autologbackupdata/" Alias /client "/usr/local/xxxx/clientfiles/" Alias /syshealth "/usr/local/tomcat/webapps/xyz/syshealth/" Alias
here for a quick overview of the site Help Center Detailed answers to any questions you might have Meta
Openssl: Exit: Error In Sslv3 Read Client Certificate A
Discuss the workings and policies of this site About Us Learn end of file found: ssl handshake interrupted by system [hint: stop button pressed in browser?!] more about Stack Overflow the company Business Learn more about hiring developers or posting ads with us
The Timeout Specified Has Expired: Ssl Input Filter Read Failed.
Stack Overflow Questions Jobs Documentation Tags Users Badges Ask Question x Dismiss Join the Stack Overflow Community Stack Overflow is a community of 6.2 million programmers, just like you, http://serverfault.com/questions/618007/openssl-giving-me-errors-and-apache-is-not-working-with-https helping each other. Join them; it only takes a minute: Sign up client certificates issued by my own CA with Apache up vote 5 down vote favorite Trying to get an HTTPS session working using client certificates from a self-signed CA. The connection should check that all certificates are valid, both client and server side. The process http://stackoverflow.com/questions/19592494/client-certificates-issued-by-my-own-ca-with-apache I followed is roundly as follows: Create Certificate Authority openssl genrsa -out CA.key 4096 openssl req -new -key CA.key -out CA.csr openssl x509 -req -days 365 -in CA.csr -out CA.crt -signkey CA.key Create Server Certificate openssl genrsa -out server.key 4096 openssl req -new -key server.key -out server.csr openssl ca -in server.csr -cert CA.crt -keyfile CA.key -out server.crt Create Client Certificate openssl genrsa -out client.key 4096 openssl req -new -key client.key -out client.csr openssl ca -in client.csr -cert CA.crt -keyfile CA.key -out client.crt Configure Apache
Post #1 of http://www.gossamer-threads.com/lists/apache/dev/265750 2 (4830 views) Permalink OpenSSL: I/O error, 5 bytes expected https://bugzilla.mozilla.org/show_bug.cgi?id=725652 to read on Hi, Apache 2049 for HPUX - Openssl 097d. Some Clients use Internet Explorer 50 and they face "The page cannot be displayed" on SSL pages. At this time messages below appears in Apache log. i/o error What is the problem ? Thanks and best regards, Emre- [Fri Jun 18 14:54:42 2004] [debug] worker.c(1047): the listener thread didn't exit [Fri Jun 18 14:55:06 2004] [info] Connection to child 1 established (server 10.11.91.55:443, client 10.11.91.3) [Fri Jun 18 14:55:06 2004] [info] Seeding PRNG with openssl: i/o error, 136 bytes of entropy [Fri Jun 18 14:55:06 2004] [debug] ssl_engine_kernel.c(1805): OpenSSL: Handshake: start [Fri Jun 18 14:55:06 2004] [debug] ssl_engine_kernel.c(1813): OpenSSL: Loop: before/accept initialization [Fri Jun 18 14:55:06 2004] [debug] ssl_engine_io.c(1498): OpenSSL: read 11/11 bytes from BIO#401d1bc8 [mem: 401e96c8] (BIO dump follows) [Fri Jun 18 14:55:06 2004] [debug] ssl_engine_io.c(1445): +-------------------------------------------------------------------------+ [Fri Jun 18 14:55:06 2004] [debug] ssl_engine_io.c(1470): | 0000: 16 03 01 00 39 01 00 00-35 03 01 ....9...5.. | [Fri Jun 18 14:55:06 2004] [debug] ssl_engine_io.c(1476): +-------------------------------------------------------------------------+ [Fri Jun 18 14:55:06 2004] [debug] ssl_engine_io.c(1498): OpenSSL: read 51/51 bytes from BIO#401d1bc8 [mem: 401e96d3] (BIO dump follows) [Fri Jun 18 14:55:06 2004] [debug] ssl_engine_io.c(1445): +-------------------------------------------------------------------------+ [Fri Jun 18 14:55:06 2004] [debug] ssl_engine_io.c(1470): | 0000: 2e b6 1f e4 ad 87 d1 97-63 f5 56 d5 a1 e0 d7 95 ........c.V..... | [Fri Jun 18 14:55:06 2004] [debug]
BMO. For more details see Persona Deprecated. Last Comment Bug725652 - SSL client auth broken on Apache, when a directory of CA certificates is specified Summary: SSL client auth broken on Apache, when a directory of CA certificates is spec... Status: RESOLVED INVALID Whiteboard: Keywords: Product: Core Classification: Components Component: Security: PSM (show other bugs) Version: 10 Branch Platform: All All Importance: -- normal (vote) TargetMilestone: --- Assigned To: Nobody; OK to take it and work on it QA Contact: TriageOwner: David Keeler [:keeler] (use needinfo?) Mentors: URL: https://issues.apache.org/bugzilla/sh... Depends on: Blocks: Show dependency tree /graph Reported: 2012-02-09 07:07 PST by Christoph Anton Mitterer Modified: 2016-03-30 12:52 PDT (History) CC List: 2 users (show) andrei dkeeler See Also: Crash Signature: (edit) QA Whiteboard: Iteration: --- Points: --- Has Regression Range: --- Has STR: --- Tracking Flags: Attachments Add an attachment (proposed patch, testcase, etc.) Description Christoph Anton Mitterer 2012-02-09 07:07:40 PST User Agent: Mozilla/5.0 (X11; Linux x86_64; rv:10.0) Gecko/20100101 Firefox/10.0 Iceweasel/10.0 Build ID: 20120205110156 Steps to reproduce: I have a Apache HTTPD Server 2.2.16 running, compiled against OpenSSL 0.9.8o. There are name based virtual hosts configured on it. SNI is enabled. There is a default name based virtual host, which is actually never used (it's ServerName is set to localhost) and several further name based virtual hosts. The CA certs are added to Firefox and enabled. I try to access one of the later. When SSL client authentication is disabled, accessing the SNI host works. When I however configure the server to demand SSL client authentication accessing fails. I get the certificate selection dialog (even with the correct subset of certificates proposed). But when I choose one, Firefox aborts with: SSL peer cannot verify your certificate. (Error code: ssl_error_bad_cert_alert) The server log shows: [Thu Feb 09 15:54:43 2012] [