Need understanding of SSLv23_xxx_method() API.. It is failing when SSLv23_client_method() connects to TLSv1_2_server_method()

classic Classic list List threaded Threaded
3 messages Options
Reply | Threaded
Open this post in threaded view
|

Need understanding of SSLv23_xxx_method() API.. It is failing when SSLv23_client_method() connects to TLSv1_2_server_method()

Nayna Jain

Hi,

I had asked few questions related to SSLv23_xxx_method API to understand
its internals.

I am putting those questions here again..

How is it able to handle all the protocols SSLv3, TLSv1.x

How does it decide which one to handshake with ? What is the first
protocol_version sent in ClientHello Request ?

Also, when I tried to connecting client using SSLv23_client_method() API to
server using TLSv1_2_server_method() ,

I am getting this error


 SSL negotiation failed: error:14077410:SSL
 routines:SSL23_GET_SERVER_HELLO:sslv3 alert handshake failure

However, I am suddently getting this error. earliar I was getting "Digest
to big in size for rsa"

Can someone please explain this ?


Thanks & Regards,
Nayna Jain

______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [hidden email]
Automated List Manager                           [hidden email]
Reply | Threaded
Open this post in threaded view
|

Re: Need understanding of SSLv23_xxx_method() API.. It is failing when SSLv23_client_method() connects to TLSv1_2_server_method()

Viktor Dukhovni
On Wed, Feb 27, 2013 at 11:18:19PM +0530, Nayna Jain wrote:

> I had asked few questions related to SSLv23_xxx_method API to understand
> its internals.

http://stackoverflow.com/questions/3938824/what-books-will-help-me-learn-everything-i-can-about-ssl-pki

--
        Viktor.
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [hidden email]
Automated List Manager                           [hidden email]
Reply | Threaded
Open this post in threaded view
|

Re: Need understanding of SSLv23_xxx_method() API.. It is failing when SSLv23_client_method() connects to TLSv1_2_server_method()

Nayna Jain
Hi Viktor,

Thanks for the link. I will look at it.

I thought SSLv23_xxx_method() design is specific to openssl, and also error
messages are specific to openssl.

Also, can you give an idea on the cause for this error -
"SSLV23_GET_SERVER_HELLO:SSLv3 handshake failure" ?

Thanks & Regards,
Nayna Jain




From: Viktor Dukhovni <[hidden email]>
To: [hidden email]
Date: 02/27/2013 11:27 PM
Subject: Re: Need understanding of SSLv23_xxx_method() API.. It is
            failing when SSLv23_client_method() connects to
            TLSv1_2_server_method()
Sent by: [hidden email]



On Wed, Feb 27, 2013 at 11:18:19PM +0530, Nayna Jain wrote:

> I had asked few questions related to SSLv23_xxx_method API to understand
> its internals.

http://stackoverflow.com/questions/3938824/what-books-will-help-me-learn-everything-i-can-about-ssl-pki


--
                 Viktor.
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [hidden email]
Automated List Manager                           [hidden email]



______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [hidden email]
Automated List Manager                           [hidden email]