Buy commercial curl support from WolfSSL. We help you work
out your issues, debug your libcurl applications, use the API, port to new
platforms, add new features and more. With a team lead by the curl founder
himself.
Re: code: 35 (SSL connect error) issue when using newer curl version(?)
- Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]
From: Daniel Stenberg via curl-library <curl-library_at_lists.haxx.se>
Date: Fri, 9 Dec 2022 16:09:32 +0100 (CET)
On Tue, 6 Dec 2022, Daniel Hallberg wrote:
> I've found out that I don't set memory callbacks with curl_global_init_mem,
> but should/must I..?
No.
> One problem for me is that I don't know how curls debug output *should* look,
> so I don't know if what I see is expected or not.
run 'curl -v https://example.com' and you will see.
> 2022-12-06 08:24:58.367237 [ Thread: 140072316313728 ] INFO: -> ssl_version:
> OpenSSL/3.0.2
You should consider bumping that to 3.0.7 for security if nothing else.
> 2022-12-06 08:25:15.186235 [ Thread: 140070963050048 ] INFO: ssl_lock_cb
> locking 0x5566a5dadb60
What lock is this?
> [140071189587520] == Info: OpenSSL SSL_connect: Connection reset by peer in
> connection to xxx.xxx.se:443
If you wireshark the connection you might be able to see that this is really a
RST of the TCP connection or something. This is OpenSSL reporting this error
while doing the TLS handshake.
It looks like it could be a problem in the server end.
Date: Fri, 9 Dec 2022 16:09:32 +0100 (CET)
On Tue, 6 Dec 2022, Daniel Hallberg wrote:
> I've found out that I don't set memory callbacks with curl_global_init_mem,
> but should/must I..?
No.
> One problem for me is that I don't know how curls debug output *should* look,
> so I don't know if what I see is expected or not.
run 'curl -v https://example.com' and you will see.
> 2022-12-06 08:24:58.367237 [ Thread: 140072316313728 ] INFO: -> ssl_version:
> OpenSSL/3.0.2
You should consider bumping that to 3.0.7 for security if nothing else.
> 2022-12-06 08:25:15.186235 [ Thread: 140070963050048 ] INFO: ssl_lock_cb
> locking 0x5566a5dadb60
What lock is this?
> [140071189587520] == Info: OpenSSL SSL_connect: Connection reset by peer in
> connection to xxx.xxx.se:443
If you wireshark the connection you might be able to see that this is really a
RST of the TCP connection or something. This is OpenSSL reporting this error
while doing the TLS handshake.
It looks like it could be a problem in the server end.
-- / daniel.haxx.se | Commercial curl support up to 24x7 is available! | Private help, bug fixes, support, ports, new features | https://curl.se/support.html
-- Unsubscribe: https://lists.haxx.se/listinfo/curl-library Etiquette: https://curl.se/mail/etiquette.htmlReceived on 2022-12-09