Hang on SSL_connect
Brought to you by:
ivwhiting
Using Ubuntu 10.04 LTS (Lucid Lynx), sslscan hangs after printing its banner a host information. Specifically, the hang occurs in SSL_connect(). No ciphers appear to be checked, and Wireshark does not appear to trace network traffic.
jeffrey@studio:~$ uname -a
Linux studio 2.6.32-28-generic #55-Ubuntu SMP Mon Jan 10 23:42:43 UTC 2011 x86_64 GNU/Linux
jeffrey@studio:~$ openssl version
OpenSSL 0.9.8k 25 Mar 2009
View and moderate all "bugs Discussion" comments posted by this user
Mark all as spam, and block user from posting to "Bugs"
Same for me:
Linux localhost.localdomain 3.4.4-3.fc17.i686 #1 SMP Tue Jun 26 21:32:03 UTC 2012 i686 i686 i386 GNU/Linux
OpenSSL 1.0.0j-fips 10 May 2012
View and moderate all "bugs Discussion" comments posted by this user
Mark all as spam, and block user from posting to "Bugs"
It may be due to a problem with OpenSSL hanging.
I tried with ssl-cipher-check.pl by unspecific.com
Adding some trace to the Perl program, I can reproduce the problem with OpenSSL alone:
/usr/bin/openssl s_client -ssl2 -no_tls1 -no_ssl3 -debug -msg -cipher DES-CBC-MD5 -connect 192.168.11.1:443
CONNECTED(00000003)
write to 0x8d95228 [0x8da9dd9] (30 bytes => 30 (0x1E))
0000 - 80 1c 01 00 02 00 03 00-00 00 10 06 00 40 70 ac .............@p.
0010 - ac 71 6e 41 23 30 41 7c-d7 98 74 dc c7 56 .qnA#0A|..t..V
>>> SSL 2.0 [length 001c], CLIENT-HELLO
01 00 02 00 03 00 00 00 10 06 00 40 70 ac ac 71
6e 41 23 30 41 7c d7 98 74 dc c7 56
read from 0x8d95228 [0x8da1dd0] (2 bytes => 2 (0x2))
0000 - 15 03 ..
read from 0x8d95228 [0x8da1dd2] (5380 bytes => 5 (0x5))
0000 - 00 00 02 02 ....
0005 - <SPACES/NULS>