connecting to proxy using SSL

Sat, 11 Dec 2004 18:33:31 -0800 

I'm trying to connect to a proxy server using openssl for debugging,
here is the output of the command 'openssl s_client -key
etc/stunnel/stunnel.pem -state -msg -bugs -debug -connect
208.31.142.11:80'

---------------------------------------------------------
CONNECTED(00000003)
SSL_connect:before/connect initialization
write to 080AEC88 [080AF1C8] (126 bytes => 126 (0x7E))
0000 - 80 7c 01 03 01 00 63 00-00 00 10 00 00 39 00 00   .|....c......9..
0010 - 38 00 00 35 00 00 16 00-00 13 00 00 0a 07 00 c0   8..5............
0020 - 00 00 33 00 00 32 00 00-2f 03 00 80 00 00 66 00   ..3..2../.....f.
0030 - 00 05 00 00 04 01 00 80-08 00 80 00 00 63 00 00   .............c..
0040 - 62 00 00 61 00 00 15 00-00 12 00 00 09 06 00 40   b..a...........@
0050 - 00 00 65 00 00 64 00 00-60 00 00 14 00 00 11 00   ..e..d..`.......
0060 - 00 08 00 00 06 04 00 80-00 00 03 02 00 80 23 bd   ..............#.
0070 - 6c f3 07 90 b7 2d e7 18-3e db e3 73 6a ab         l....-..>..sj.
>>> SSL 2.0 [length 007c], CLIENT-HELLO
    01 03 01 00 63 00 00 00 10 00 00 39 00 00 38 00
    00 35 00 00 16 00 00 13 00 00 0a 07 00 c0 00 00
    33 00 00 32 00 00 2f 03 00 80 00 00 66 00 00 05
    00 00 04 01 00 80 08 00 80 00 00 63 00 00 62 00
    00 61 00 00 15 00 00 12 00 00 09 06 00 40 00 00
    65 00 00 64 00 00 60 00 00 14 00 00 11 00 00 08
    00 00 06 04 00 80 00 00 03 02 00 80 23 bd 6c f3
    07 90 b7 2d e7 18 3e db e3 73 6a ab
SSL_connect:SSLv2/v3 write client hello A
read from 080AEC88 [080B4728] (7 bytes => 7 (0x7))
0000 - 48 54 54 50 2f 31 2e                              HTTP/1.
SSL_connect:error in SSLv2/v3 read server hello A
4364:error:140770FC:SSL routines:SSL23_GET_SERVER_HELLO:unknown
protocol:s23_clnt.c:475:
---------------------------------------------------------

Then, if I add the -ssl3 option, it hangs at 

---------------------------------------------------------
...
SSL_connect:SSLv2 write client hello A
---------------------------------------------------------

With the -tls1 and -ssl2

---------------------------------------------------------
...
SSL_connect:SSLv3 write client hello A
read from 080AEC88 [080B4688] (5 bytes => 5 (0x5))
0000 - 48 54 54 50 2f                                    HTTP/
write to 080AEC88 [080C27B0] (7 bytes => 7 (0x7))
0000 - 15 54 54 00 02 02 46                              .TT...F
>>> ??? [length 0002]
    02 46
SSL3 alert write:fatal:protocol version
SSL_connect:error in SSLv3 read server hello A
4367:error:1408F10B:SSL routines:SSL3_GET_RECORD:wrong version
number:s3_pkt.c:286:
---------------------------------------------------------

Other such combinations yield similar results, none resulting in a
successful connection.

Please, this has been driving me crazy. What's the deal here? What
could this be indicitive of?

>From reading the SSL/TLS specs, it seems that the client and server
just can't agree on the same protocol to use. Please, Some help here
would be great!

Thanks in advance,
Justin
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [EMAIL PROTECTED]
Automated List Manager                           [EMAIL PROTECTED]

Reply via email to