cURL / Mailing Lists / curl-users / Single Mail

curl-users

Endless loop when using cURL in multi command shells

From: Fitzner, Christoph (dit) <Christoph.Fitzner_at_dit.de>
Date: Wed, 22 Feb 2006 18:55:22 +0100

Hi,

I'm using cURL 7.15.1 on Windows Server 2003 to send password-changes
from a Domain Controller to a servlet via https. For security reasons
I'm using a server and a client certificate. The call looks like this:

curl -v -E certificate.pem:KeyPW --cacert curl-ca-bundle.crt --cert-type PEM
https://myhost.net/appl/Servlet?uid=ab

Everything works fine.

For stresstests I'm letting it run parallel in multi command shells
and I get sooner or later into the following endless loop:
* SSL read: error:140940F5:SSL routines:SSL3_READ_BYTES:unexpected record,
errno 0
* SSLv3, TLS alert, Server hello (2):

For me it seems to be that the server is sending data to the client
while the client requests a renegotiation, and the client fails because
he gets unexpected data.

Is there any chance to retry, instead of getting into the endless loop?
Unfortunately the --retry <num> parameter doesn't help.

Thanks for any respond.
-Chris

Here is the full output:
===========================================================================
* About to connect() to myhost.net port 443
* Trying 183.59.01.01... connected
* Connected to myhost.net (183.59.01.01) port 443
* successfully set certificate verify locations:
* CAfile: curl-ca-bundle.crt
  CApath: none
* SSLv3, TLS handshake, Client hello (1):
SSLv3, TLS handshake, Server hello (2):
SSLv3, TLS handshake, CERT (11):
SSLv3, TLS handshake, Server finished (14):
SSLv3, TLS handshake, Client key exchange (16):
SSLv3, TLS change cipher, Client hello (1):
SSLv3, TLS handshake, Finished (20):
SSLv3, TLS change cipher, Client hello (1):
SSLv3, TLS handshake, Finished (20):
SSL connection using DES-CBC3-SHA
* Server certificate:
* subject: /C=DE/O=XY Group/CN=myhost.net
* start date: 2005-04-08 09:27:15 GMT
* expire date: 2007-04-08 09:27:15 GMT
* common name: myhost.net (matched)
* issuer: /C=DE/O=XY Group/CN=Group Network CA
* SSL certificate verify ok.
> GET /secure/Servlet?uid=ab HTTP/1.1
> User-Agent: curl/7.15.1 (i586-pc-mingw32msvc) libcurl/7.15.1
OpenSSL/0.9.7e zlib/1.2.2
> Host: myhost.net
> Accept: */*
>
* SSLv3, TLS handshake, Hello request (0):
SSLv3, TLS handshake, Client hello (1):
  % Total % Received % Xferd Average Speed Time Time Time
Current
                                 Dload Upload Total Spent Left
Speed
  0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:--
0SS
Lv3, TLS handshake, Server hello (2):
SSLv3, TLS handshake, CERT (11):
SSLv3, TLS handshake, Request CERT (13):
SSLv3, TLS handshake, Server finished (14):
SSLv3, TLS handshake, CERT (11):
SSLv3, TLS handshake, Client key exchange (16):
SSLv3, TLS handshake, CERT verify (15):
SSLv3, TLS change cipher, Client hello (1):
SSLv3, TLS handshake, Finished (20):
SSLv3, TLS alert, Server hello (2):
* SSL read: error:140940F5:SSL routines:SSL3_READ_BYTES:unexpected record,
errno 0
* SSLv3, TLS alert, Server hello (2):
* SSL read: error:140940F5:SSL routines:SSL3_READ_BYTES:unexpected record,
errno 0
* SSLv3, TLS alert, Server hello (2):
* SSL read: error:140940F5:SSL routines:SSL3_READ_BYTES:unexpected record,
errno 0
* SSLv3, TLS alert, Server hello (2):
* SSL read: error:140940F5:SSL routines:SSL3_READ_BYTES:unexpected record,
errno 0
* SSLv3, TLS alert, Server hello (2):
*
...etc.
Received on 2006-02-22