Michael S. Fischer
2008-Jan-04 19:55 UTC
[Eventmachine-talk] Server-side TLS connection cannot send_data
Hey Francis,
Why doesn''t this code work?
module SslTest
def post_init
start_tls
send_data "hi there\n" # Causes the problem
end
def receive_data(data)
send_data data
end
end
EventMachine::run {
EventMachine::start_server ''127.0.0.1'', 4321, SslTest
}
$ openssl s_client -connect localhost:4321
CONNECTED(00000003)
2131:error:140790E5:SSL routines:SSL23_WRITE:ssl handshake
failure:s23_lib.c:226:
If I remove the send_data call in the post_init method, the handshake
completes successfully.
Best regards,
--Michael
Francis Cianfrocca
2008-Jan-04 20:10 UTC
[Eventmachine-talk] Server-side TLS connection cannot send_data
On Jan 4, 2008 10:55 PM, Michael S. Fischer <michael at dynamine.net> wrote:> Hey Francis, > > Why doesn''t this code work? > > module SslTest > def post_init > start_tls > send_data "hi there\n" # Causes the problem > end > > def receive_data(data) > send_data data > end > end > > EventMachine::run { > EventMachine::start_server ''127.0.0.1'', 4321, SslTest > } >Reproduced the error, will let you know as soon as i figure it out. Thanks. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://rubyforge.org/pipermail/eventmachine-talk/attachments/20080104/7996a0f3/attachment-0001.html
Francis Cianfrocca
2008-Jan-04 20:34 UTC
[Eventmachine-talk] Server-side TLS connection cannot send_data
On Jan 4, 2008 10:55 PM, Michael S. Fischer <michael at dynamine.net> wrote:> Hey Francis, > > Why doesn''t this code work? > > module SslTest > def post_init > start_tls > send_data "hi there\n" # Causes the problem > end > > def receive_data(data) > send_data data > end > end > > EventMachine::run { > EventMachine::start_server ''127.0.0.1'', 4321, SslTest > } > > > $ openssl s_client -connect localhost:4321 > CONNECTED(00000003) > 2131:error:140790E5:SSL routines:SSL23_WRITE:ssl handshake > failure:s23_lib.c:226: >Fixed. Please sync to the HEAD revision (which is now in "trunk" rather than "version_0") and let me know if it works for you now. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://rubyforge.org/pipermail/eventmachine-talk/attachments/20080104/0026f282/attachment.html
Michael S. Fischer
2008-Jan-04 21:43 UTC
[Eventmachine-talk] Server-side TLS connection cannot send_data
On Jan 4, 2008 8:34 PM, Francis Cianfrocca <garbagecat10 at gmail.com> wrote:> Fixed. Please sync to the HEAD revision (which is now in "trunk" rather than > "version_0") and let me know if it works for you now.Seems to work so far. Thanks for the fast turnaround! Any chance we''ll see SSL peer certificate verification capability any time soon? Now''s about the time when I really really need it, and I can''t use stunnel on my platform because the transparent proxy feature doesn''t work (i.e., my daemon will log the proxy''s IP address as the endpoint instead of the actual client''s IP address). Best regards, --Michael