curl-library
[RE][RE]Re: [Urgent] Curl library not picking up OpenSSL
From: Parthiv Dave <daveparthiv_at_lycos.com>
Date: Thu, 28 Sep 2006 21:16:05 -0400 (EDT)
Received on 2006-09-29
Date: Thu, 28 Sep 2006 21:16:05 -0400 (EDT)
| Hi All, I am using libcurl as follows: static CURLcode sslctxfun (CURL *curl, void *sslctx, void *parm) { SSL_CTX *ctx = (SSL_CTX *) sslctx; SSL_CTX_set_quiet_shutdown(ctx,1); SSL_CTX_set_cipher_list(ctx, "RC4-MD5:AES256-SHA:ALL"); SSL_CTX_set_mode(ctx, SSL_MODE_AUTO_RETRY); } curl_easy_setopt(curl, CURLOPT_SSL_CTX_FUNCTION, sslctxfun); curl_easy_setopt(curl, CURLOPT_SSL_CTX_DATA, &ca); Please help me to proceed further. Thanks & Regards, Parthiv. ---------[ Received Mail Content ]---------- >Subject : [RE]Re: [Urgent] Curl library not picking up OpenSSL >Date : Thu, 28 Sep 2! 006 21:13:00 -0400 (EDT) >From : "Parthiv Dave" >To : "libcurl development" >Cc : > > p {margin-top:0px;margin-bottom:0px;} Hi All, > >The issue is resolved now and I built libcurl for Solaris 9. > >But, when I use the CURL library to transfer files using SSL, the program coredumps due to Segmentation Error. I debugged and found that SSL Handshake is not happening. Probably, this could be due to absence of SSL Cipher suites. > >Any idea to proceed further or set a default cipher suite? > >Regards, >Parthiv. >P.S.: The library libssl.a and libcrypto.a is linked in the makefile. > >Please find the debug output taken for the process: >* About to connect() to x.x.x.x port 21 >* Trying x.x.x.x... * connected >* Connected to x.x.x.x (x.x.x.x) port 21 >< 220-FileZilla Se! rver version 0.9.18 beta >< 220-written by Tim Kosse (Tim.Kos se@gmx.de) >< 220 Please visit http://sourceforge.net/projects/filezilla/ >> AUTH SSL >< 234 Using authentication type SSL >* error setting certificate verify locations, continuing anyway: >* CAfile: /home/somebody/libcurl/curl-7.15.5/share/curl/curl-ca-bundle.crt > CApath: none >Segmentation fault(coredump) > >From curl command line, the file transfer happens as: >[maint@wcary023 maint]$ curl -k -3 -u parthiv:somebody --ftp-ssl --upload-file /home/maint/ftp_proxy_pasv_retest.html -v ftp://x.x.x.x/ftp_proxy_pasv_retest.html --disable-epsv >* About to connect() to x.x.x.x port 21 >* Trying x.x.x.x... * connected >* Connected to x.x.x.x (x.x.x.x) port 21 >< 220-FileZilla Server version 0.9.18 beta >< 220-written by Tim Kosse (Tim.Kosse@gmx.de) >< 220 Please visit http://sourceforge.net/projects/filezilla/ >> AUTH SSL >< 234 Using authenticati! on type SSL >* successfully set certificate verify locations: >* CAfile: /usr/share/curl/curl-ca-bundle.crt > CApath: none >* SSL connection using AES256-SHA >* Server certificate: >* subject: /CN=x.x.x.x/C=CA/ST=ON/L=OTTAWA/O=xxxOU=yyyy >* start date: 2006-09-25 18:02:37 GMT >* expire date: 2007-09-25 18:02:37 GMT >* common name: x.x.x.x (matched) >* issuer: /CN=x.x.x.x/C=CA/ST=ON/L=OTTAWA/O=xxx/OU=yyyy >* SSL certificate verify result: error number 1 (18), continuing anyway. >> USER parthiv >< 331 Password required for parthiv >> PASS somebody >< 230 Logged on >* We have successfully logged in >> PBSZ 0 >< 200 PBSZ=0 >> PROT P >< 200 Protection level set to P >> PWD >< 257 "/" is current directory. >* Entry path is '/' >... > >---------[ Received Mail ! Content ]---------- >>Subject : Re: [Urgent] Curl library not picking up OpenSSL >>Date : Sat, 23 Sep 2006 15:17:09 -0700 >>From : Dan Fandrich >>To : curl-library@cool.haxx.se >> >>On Sat, Sep 23, 2006 at 02:29:10PM -0400, Parthiv Dave wrote: >>> The same command for configuring libcurl fails to enable OpenSSL support in >>> Solaris compile server. This is perhaps because the OpenSSL is not installed on >>> the compile server and pkg-config fails to set LIBS path. But, I am not sure >>> why it doesn't pickup libraries as I am setting LDFLAGS and ssl libraries >>> (libssl.a and libcrypto.a) are available in the specified directory. >> >>It can't compile in OpenSSL unless configure finds the include files. >>Setting LDFLAGS and pointing exactly to the libraries isn't sufficient. >> >>>>> Dan >>-- >>http://www.MoveAnnouncer.com The web change of address service! >> Let webmasters know that your web site has moved >> >> > |