Subject: [Boost-bugs] [Boost C++ Libraries] #9261: ssl alert are not being sent during handshake failure
From: Boost C++ Libraries (noreply_at_[hidden])
Date: 2013-10-18 09:24:28
#9261: ssl alert are not being sent during handshake failure
----------------------------------------+----------------------------
Reporter: Joakim Goldkuhl <joakim@…> | Owner: chris_kohlhoff
Type: Bugs | Status: new
Milestone: To Be Determined | Component: asio
Version: Boost 1.54.0 | Severity: Problem
Keywords: alert, ssl |
----------------------------------------+----------------------------
According to the SSL protocol alert messages should (and must) be sent
under certain circumstances if SSL-handshake fails. When inspecting the
network traffic with wireshark during SSL-handshake failure it seems like
these messages are being sent.
When debugging asio and OpenSSL one can see that OpenSSL do indeed write
alert messages (as expected) to the buffers asio has set up, but asio do
not write them to the socket.
If SSL-handshake fails, OpenSSL writes alert message to asio buffers AND
sets error code to SSL_ERROR_SSL. The function perform in the source code
file asio/ssl/detail/impl/engine.ipp returns want_nothing if error is
SSL_ERROR_SSL, which causes asio not to write data to the socket.
This is tested on CentOS 6.4 x86_64.
-- Ticket URL: <https://svn.boost.org/trac/boost/ticket/9261> Boost C++ Libraries <http://www.boost.org/> Boost provides free peer-reviewed portable C++ source libraries.
This archive was generated by hypermail 2.1.7 : 2017-02-16 18:50:14 UTC