From owner-freebsd-questions@FreeBSD.ORG Thu Nov 17 06:00:10 2011 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D6DA41065674 for ; Thu, 17 Nov 2011 06:00:10 +0000 (UTC) (envelope-from invalid.pointer@gmail.com) Received: from mail-wy0-f182.google.com (mail-wy0-f182.google.com [74.125.82.182]) by mx1.freebsd.org (Postfix) with ESMTP id 538C88FC0A for ; Thu, 17 Nov 2011 06:00:10 +0000 (UTC) Received: by wyf23 with SMTP id 23so2127592wyf.13 for ; Wed, 16 Nov 2011 22:00:09 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject :content-type:content-transfer-encoding; bh=jyzeNUvPTTomV61jXgVrXpFvMiTW/gZ/CDe9bRGJSVw=; b=RKysdziUp0PJXXmcRLoWEDs5wp5at77KASM2kn4o3Go8CDSXOVbY+lmFJtBp0cEBxD sMZRcTWISKchdtAxMg/DAzyyDVyBuUhjojiu++R/toYxCk9Es7diqtPEwRhLqdrv4AQo X6qVaVBQKGv3IHb7KOdeNR1M6KbsY7TDzL9r4= Received: by 10.182.207.67 with SMTP id lu3mr7482522obc.79.1321507891162; Wed, 16 Nov 2011 21:31:31 -0800 (PST) Received: from [127.0.0.1] ([223.190.236.84]) by mx.google.com with ESMTPS id l7sm948444obo.0.2011.11.16.21.31.27 (version=SSLv3 cipher=OTHER); Wed, 16 Nov 2011 21:31:29 -0800 (PST) Message-ID: <4EC49C72.3080401@gmail.com> Date: Thu, 17 Nov 2011 11:02:34 +0530 From: Manish Jain User-Agent: Mozilla/5.0 (Windows NT 5.1; rv:5.0) Gecko/20110624 Thunderbird/5.0 MIME-Version: 1.0 To: freebsd-questions@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: SSL server refusing connection : ECONNREFUSED X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Nov 2011 06:00:10 -0000 Hello, I am new to openssl and trying to create a demo client and server which use SSL v3. But the server, for some reason I cannot figure out, always refuses connections with the client reporting errno as ECONNREFUSED. Can somebody please help me out with what might be the problem ? Relevant portions of sources for server and client are available below. Thank you & Regards Manish Jain invalid.pointer@gmail.com //server SSL_METHOD * lpmethod = SSLv3_method(); SSL_CTX * lpctx = SSL_CTX_new(lpmethod); int result = SSL_CTX_use_certificate_chain_file(lpctx, CERT_FILE); assert(result > 0); result = SSL_CTX_use_PrivateKey_file(lpctx, KEY_FILE, SSL_FILETYPE_PEM); assert(result > 0); result = SSL_CTX_check_private_key(lpctx); assert(result != 0); sockaddr_in addr; int sock = socket(AF_INET, SOCK_STREAM, 0); sockaddr_in sin; int val = 1; memset((char *)&addr, 0, sizeof(addr)); addr.sin_addr.s_addr=INADDR_ANY; addr.sin_family = AF_INET; addr.sin_port = htons(PORT); setsockopt(sock, SOL_SOCKET, SO_REUSEADDR, &val, sizeof(val)); bind(sock, (sockaddr *) &sin, sizeof(sin)); result = listen(sock,5); std::cout << "listen returned " << result << std::endl; int new_sock = accept(sock, 0, 0); //client : SSL_library_init(); SSL_load_error_strings(); SSL_METHOD * lpmethod = SSLv3_method(); SSL_CTX * lpctx = SSL_CTX_new(lpmethod); int result = SSL_CTX_use_certificate_chain_file(lpctx, CERT_FILE); assert(result > 0); result = SSL_CTX_use_PrivateKey_file(lpctx, KEY_FILE, SSL_FILETYPE_PEM); assert(result > 0); result = SSL_CTX_check_private_key(lpctx); assert(result != 0); SSL_CTX_set_verify(lpctx, SSL_VERIFY_PEER, 0); sockaddr_in addr; memset((char *) &addr, 0, sizeof(addr)); addr.sin_addr.s_addr = inet_addr("127.0.0.1"); addr.sin_family = AF_INET; addr.sin_port = htons(8888); int sock = socket(AF_INET, SOCK_STREAM, IPPROTO_TCP); assert(sock > 0); result = connect(sock, (struct sockaddr *)&addr, sizeof(addr));