> From: owner-openssl-us...@openssl.org On Behalf Of Richard Levenberg > Sent: Sunday, 02 September, 2012 13:30
> The error with both OpenSSL 1.0.0e 6 Sep 2011 and OpenSSL > 1.0.1c 10 May 2012 is: > > 3076311816:error:14094438:SSL routines:SSL3_READ_BYTES:tlsv1 alert > internal error:s3_pkt.c:1251:SSL alert number 80 > 3076311816:error:1409E0E5:SSL routines:SSL3_WRITE_BYTES:ssl handshake > failure:s3_pkt.c:592: > > Both OpenSSL 0.9.8k 25 Mar 2009 on FreeBSD and OpenSSL 0.9.8r > 8 Feb 2011 on OSX work fine with this server <snip> > but the server is Apache Tomcat/6.0.28, <snip> Even if there's something in the ClientHello from newer OpenSSL the server dislikes -- and there are some new things it might -- it should give a more specific error code than 80 internal error. Check the server log(s?) for any more helpful information. One possibly important factor -- is this instance of tomcat using the Java implementation of SSL, or the "native" aka "APR" implementation (which is really OpenSSL, and if so which)? I'm not a tomcat expert, but my understanding is it will automatically switch to "native" if it finds a suitable dll/so/whatever at startup. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
