From owner-freebsd-bugs@FreeBSD.ORG Tue Mar 30 06:40:04 2010 Return-Path: Delivered-To: freebsd-bugs@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 8B3AA106566C for ; Tue, 30 Mar 2010 06:40:04 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 6381B8FC1F for ; Tue, 30 Mar 2010 06:40:04 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.4/8.14.4) with ESMTP id o2U6e48q072113 for ; Tue, 30 Mar 2010 06:40:04 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.4/8.14.4/Submit) id o2U6e4te072112; Tue, 30 Mar 2010 06:40:04 GMT (envelope-from gnats) Resent-Date: Tue, 30 Mar 2010 06:40:04 GMT Resent-Message-Id: <201003300640.o2U6e4te072112@freefall.freebsd.org> Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer) Resent-To: freebsd-bugs@FreeBSD.org Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org, Jens Kassel Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 366DB106564A for ; Tue, 30 Mar 2010 06:37:23 +0000 (UTC) (envelope-from nobody@FreeBSD.org) Received: from www.freebsd.org (www.freebsd.org [IPv6:2001:4f8:fff6::21]) by mx1.freebsd.org (Postfix) with ESMTP id 0C8BD8FC1E for ; Tue, 30 Mar 2010 06:37:23 +0000 (UTC) Received: from www.freebsd.org (localhost [127.0.0.1]) by www.freebsd.org (8.14.3/8.14.3) with ESMTP id o2U6bM8R001997 for ; Tue, 30 Mar 2010 06:37:22 GMT (envelope-from nobody@www.freebsd.org) Received: (from nobody@localhost) by www.freebsd.org (8.14.3/8.14.3/Submit) id o2U6bMfe001996; Tue, 30 Mar 2010 06:37:22 GMT (envelope-from nobody) Message-Id: <201003300637.o2U6bMfe001996@www.freebsd.org> Date: Tue, 30 Mar 2010 06:37:22 GMT From: Jens Kassel To: freebsd-gnats-submit@FreeBSD.org X-Send-Pr-Version: www-3.1 Cc: Subject: misc/145190: SSL hangs when running curl X-BeenThere: freebsd-bugs@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Bug reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 Mar 2010 06:40:04 -0000 >Number: 145190 >Category: misc >Synopsis: SSL hangs when running curl >Confidential: no >Severity: serious >Priority: medium >Responsible: freebsd-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: current-users >Arrival-Date: Tue Mar 30 06:40:03 UTC 2010 >Closed-Date: >Last-Modified: >Originator: Jens Kassel >Release: FreeBSD 7.3 >Organization: Servicefactory AB >Environment: FreeBSD h158.servicefactory.com 7.3-RELEASE FreeBSD 7.3-RELEASE #0: Sun Mar 21 06:15:01 UTC 2010 root@walker.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC i386 >Description: I have been testing to download with curl from Apache 1.3 server running on FreeBSD 7.2 from machine running different versions of FreeBSD/curl and I can not get to to work when running from machine with FreeBSD 7.3. It just hangs. Same version of curl works when running on FreeBSD 7.2 or FreeBSD 8.0. It seems to be some kind of SSL problem i FreeBSD 7.3 curl output curl -v -k -u bpuser:secret https://217.13.255.179/bp/homerun_payex_latest > test * About to connect() to 217.13.255.179 port 443 (#0) * Trying 217.13.255.179... connected * Connected to 217.13.255.179 (217.13.255.179) port 443 (#0) * successfully set certificate verify locations: * CAfile: /usr/local/share/certs/ca-root-nss.crt CApath: none * SSLv3, TLS handshake, Client hello (1): } [data not shown] * SSLv3, TLS handshake, Server hello (2): { [data not shown] * SSLv3, TLS handshake, CERT (11): { [data not shown] * SSLv3, TLS handshake, Server finished (14): { [data not shown] * SSLv3, TLS handshake, Client key exchange (16): } [data not shown] * SSLv3, TLS change cipher, Client hello (1): } [data not shown] * SSLv3, TLS handshake, Finished (20): } [data not shown] * SSLv3, TLS change cipher, Client hello (1): { [data not shown] * SSLv3, TLS handshake, Finished (20): { [data not shown] * SSL connection using AES256-SHA * Server certificate: * subject: C=SE; ST=Stockholm; L=Stockholm; O=ServiceFactory; OU=DEV; CN=login; emailAddress=blomman@servicefactory.com * start date: 2000-03-08 16:37:56 GMT * expire date: 2002-03-08 16:37:56 GMT * common name: login (does not match '217.13.255.179') * issuer: C=SE; ST=Stockholm; L=Stockholm; O=ServiceFactory; OU=CA; CN=ServiceFactory CA; emailAddress=blomman@servicefactory.com * SSL certificate verify result: unable to get local issuer certificate (20), continuing anyway. * Server auth using Basic with user 'bpuser' > GET /bp/homerun_payex_latest HTTP/1.1 > Authorization: Basic YnB1c2VyOnNlY3JldA== > User-Agent: curl/7.19.7 (i386-portbld-freebsd7.3) libcurl/7.19.7 OpenSSL/0.9.8e zlib/1.2.3 > Host: 217.13.255.179 > Accept: */* > * SSLv3, TLS handshake, Hello request (0): { [data not shown] % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 0 0 0 0 0 0 0 0 --:--:-- 0:00:06 --:--:-- 0^C >How-To-Repeat: >Fix: >Release-Note: >Audit-Trail: >Unformatted: