On Tue, Oct 05, 1999 at 05:34:09PM +1000, Nicholas Brawn wrote:
> I'm attempting to negotiate a tls session between a client and a server,
> and am getting a strange error.
>
> SSL_accept: error:00000000::lib(0) :func(0) :reason(0)
[...]
> if (SSL_accept(p->tls) <= 0)
> {
> tls_error("SSL_accept", p);
> SSL_CTX_free(p->ctx);
> SSL_free(p->tls);
> exit(1);
> }
>
> The info from the client is as follows:
>
> Server Supports TLS. Attempting to Negotiate Session.
> Negotiated TLS session with the cipher suite DES-CBC3-SHA.
>
> Is it possible for the client to successfuly negotiate a session, yet the
> server to complain about SSL_accept()?
Does it really complain? What value did SSL_accept return (0 or -1),
and what did SSL_get_error tell you about it? That "error" report is
what you get when the OpenSSL error queue told you it's empty (return
value 0 from ERR_get_error... functions) and you try to print the
error message anyway. If SSL_accept returned 0, the client closed the
network connection; if it returned -1, then so did one of the I/O
system calls. SSL_get_error(p->tls, return_value_of_SSL_accept)
returns one of the SSL_ERROR_... constants so that you don't have to
look at the SSL_accept return value yourself.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
