Date: Wed, 10 Mar 2004 09:31:08 -0600 From: "Thomas M. Duffey" <tduffey@homeboyz.com> To: ucspi@list.superscript.com Cc: ports@FreeBSD.org Subject: Re: Problems running ucspi-ssl Message-ID: <404F34BC.9080901@homeboyz.com> In-Reply-To: <404E9504.9060905@homeboyz.com> References: <404E8FDA.5040604@homeboyz.com> <p06020401bc743ff56c02@[192.168.1.22]> <404E9504.9060905@homeboyz.com>
next in thread | previous in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi All, | Eben wrote: | | |I had the same test failures, but success in production, on Solaris. | |What problems, besides the test results, are you seeing? After following the exact same steps on a Linux server it's working fine, so I'm wondering if this is specific to FreeBSD. I'm running FreeBSD 4.7 w/the base OpenSSL package. Has anyone had success with ucspi-ssl on FreeBSD? | | If I install ucspi-ssl as-is and then follow the "poppin' with SSL: | qmail-pop3sd" instructions | (http://www.thedjbway.org/ssl/qmail-pop3sd.html), then I get errors | when I try to connect to the POP3-over-SSL service. Here's the client | side output: | | $ sslconnect <myserver> 995 -a /usr/local/ssl/pop3s.cert | sslclient: fatal: unable to SSL connect: | error:00000005:lib(0):func(0):bad asn1 object header | sslclient: fatal: unable to SSL connect: | error:00000005:lib(0):func(0):bad asn1 object header | | Here's the multilog output: | | 2004-03-10 03:34:03.918113500 sslserver: status: 0/40 | 2004-03-10 03:57:15.527228500 sslserver: cafile 78559 | 2004-03-10 03:57:15.527282500 sslserver: ccafile 78559 | 2004-03-10 03:57:15.527288500 sslserver: cadir 78559 | /usr/local/ssl/certs | 2004-03-10 03:57:15.527295500 sslserver: cert 78559 | /usr/local/ssl/pop3s.cert | 2004-03-10 03:57:15.527300500 sslserver: key 78559 | /usr/local/ssl/private/pop3s.key | 2004-03-10 03:57:15.527305500 sslserver: param 78559 | /usr/local/ssl/pem/dh1024.pem 512 | 2004-03-10 03:57:15.527310500 sslserver: status: 0/40 | (service startup) | | 2004-03-10 03:58:01.472397500 sslserver: status: 1/40 | 2004-03-10 03:58:01.473406500 sslserver: pid 78600 from <client ip> | 2004-03-10 03:58:01.474487500 sslserver: ok 78600 0:<server ip>:995 | :<client ip>::1152 | 2004-03-10 03:58:01.476881500 sslserver: warning: dropping connection, | unable to accept SSL: error:00000001:lib(0):func(0):reason(1) | 2004-03-10 03:58:01.477697500 sslserver: end 78600 status 28416 | 2004-03-10 03:58:01.477702500 sslserver: status: 0/40 | (connection failure) | | The same thing happens if I try to connect using Mozilla Thunderbird. - -- :: t h o m a s d u f f e y :: h o m e b o y z i n t e r a c t i v e :: AB64 0DB9 CAA7 A904 A20A C56F F1F2 9602 9F02 CC30 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFATzS78fKWAp8CzDARAr6pAJ9DF2wDIatNGT0VLkrpNXiahOSIVQCfaCgo sFIrAWq1+GkMvYj/JsKkTlc= =59v5 -----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?404F34BC.9080901>