针对 OpenSSL 1.0.0 服务器使用 OpenSSL 0.9.8 运行 curl 会导致握手错误吗? [英] Running curl with OpenSSL 0.9.8 against OpenSSL 1.0.0 server causes handshake error?

问题描述

如果我对运行 OpenSSL 1.0.0e 的机器运行 curl，例如:

If I run curl against a machine that is running OpenSSL 1.0.0e for example:

curl -v https://shumaker.flexrentalsolutions.com

在运行 OpenSSL 0.9.8r 的机器上，我收到以下错误:

on a machine that is running OpenSSL 0.9.8r I get the following error:

About to connect() to shumaker.flexrentalsolutions.com port 443 (#0)
*   Trying 50.112.122.15... connected
* Connected to shumaker.flexrentalsolutions.com (50.112.122.15) port 443 (#0)
* SSLv3, TLS handshake, Client hello (1):
* error:14077458:SSL routines:SSL23_GET_SERVER_HELLO:reason(1112)
* Closing connection #0

如果我在运行 OpenSSL 1.0.0e 的机器上运行相同的 curl 命令，该命令将毫无问题地完成.

If I run the same curl command on a machine that is running OpenSSL 1.0.0e the command completes without any problem.

握手似乎没有正确完成，显然是由于两个 OpenSSL 版本之间的某些不兼容.

It appears the handshake is not completing properly, apparently due to some incompatibility between the two OpenSSL versions.

知道如何解决这个问题吗?

Any idea how to fix this?

推荐答案

这是一个仍然存在的 (OpenSSL) 错误.详细信息已发布在此 curl 错误报告中.

This is an (OpenSSL) bug that's still open. Details have been posted in this curl bug report.

更多细节由发布到 OpenSSL-dev曼查".

这篇关于针对 OpenSSL 1.0.0 服务器使用 OpenSSL 0.9.8 运行 curl 会导致握手错误吗?的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！