On Thu, Aug 07, 2014, Jeffrey Walton wrote: > I'm trying to track down a client side issue with the use of HTTPS. I > suspect it has something to do with a server misconfiguration and > client side certificates. > > When running s_client: > > $ echo -e "GET / HTTP/1.1\nHost:example.com\n" | \ > openssl s_client -connect example.com:443 -ssl3 -ign_eof -CAfile > ca-cert.pem > > Is there a message displayed that documents the server requesting a > client certificate?
If the server disconnects without completing the handshake you wont actually see the certificate request and session details. Try the -prexit option which tries to print out session details even if the handshake doesn't complete. OpenSSL 1.0.2 has a trace output to available if you compile OpenSSL with enable-ssl-trace and use the -trace option to s_client. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
