Error 400 (Bad Request)!!1

X-Authentication-Warning: delorie.com: mail set sender to djgpp-bounces using -f X-Recipient: djgpp AT delorie DOT com X-Authenticated: #27081556 X-Provags-ID: V01U2FsdGVkX1/Kix0dd/vKw87OQ+bu0v+Qywu6T8G9ebF+N93nU6 UcoHjBER4gh+Os Message-ID: <50F2DC47.2090901@gmx.de> Date: Sun, 13 Jan 2013 17:09:43 +0100 From: Juan Manuel Guerrero User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:16.0) Gecko/20121025 Thunderbird/16.0.2 MIME-Version: 1.0 To: djgpp AT delorie DOT com CC: dosusb AT googlemail DOT com Subject: Re: Openssl problems References: <1b2d3d9b-2d91-40b0-b816-0de2061ea1b2 AT googlegroups DOT com> In-Reply-To: Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 8bit X-Y-GMX-Trusted: 0 Reply-To: djgpp AT delorie DOT com Am 27.12.2012 21:00, schrieb dosusb AT googlemail DOT com: > After reading some OpenSSL documention I started to test with the s_client option. Maybe someone can tell me what should get this working. This is what I get now: > > openssl version 1.0.0d: > > openssl s_client -no_ssl2 -debug -host www.google.com -port 443 -state > WARNING: can't open config file: /dev/env/DJDIR/ssl/openssl.cnf > warning, not much extra random data, consider using the -rand option > > CONNECTED(00000006) > SSL_connect:before/connect initialization > SSL_connect:error in SSLv2/v3 write client hello A > write:errno=0 > > I do not understand why it does not find openssl.cnf, it is available and I do: > > set DJDIR=c:\djgpp > set DJGPP=c:\djgpp\djgpp.env > > I also found openssl 097 on the net: > http://www.filegate.net/utiln/utilnet/ossl097d.zip > > This gets me further: > openssl version 097: > > openssl s_client -no_ssl2 -host www.google.com -port 443 -state > warning, not much extra random data, consider using the -rand option > CONNECTED(00000008) > SSL_connect:before/connect initialization > SSL_connect:SSLv2/v3 write client hello A > SSL_connect:SSLv3 read server hello A > depth=1 /C=ZA/O=Thawte Consulting (Pty) Ltd./CN=Thawte SGC CA > verify error:num=20:unable to get local issuer certificate > verify return:0 > SSL_connect:SSLv3 read server certificate A > SSL_connect:SSLv3 read server done A > SSL_connect:error in SSLv3 write client key exchange A > SSL_connect:error in SSLv3 write client key exchange A > 1:error:24064064:random number generator:SSLEAY_RAND_BYTES:PRNG not seeded:md_rand.c:503: > > So I do get a server hello and SSLv3 seems to be initialized. Somehow I seem to have to provide random numbers to get this to continue. > > The ossl097d package does not include a libssl.a so I cannot test that. And older versions of openssl have been removed from the djgpp ftp site now. Can someone add these for me again please :) > > Georg > Sorry but I cannot reproduce anything of this. 1) I have ported/build openssl version 1.0.1c. I do not know anything about these two particular builds. AFAIK there have also never been an official openssl 0.97d port. All packaged uploaded to the djgpp ftp server are either stored in ftp://ftp.delorie.com/pub/djgpp/current or ftp://ftp.delorie.com/pub/djgpp/beta or if deleted then they are in ftp://ftp.delorie.com/pub/djgpp/deleted. I have never found any of those ports in any of those directories. An inspections of the djgpp_announce mailing list also shows that except for the openssl 1.0.1c port announce there have never been one related to openssl. IMHO no one has removed those ports because they have never been uploaded and thus they were never officially released as djgpp ports of openssl. But I may be wrong. 2) Openssl needs to find its certificates. This port has been configured to search for them at /dev/env/DJDIR/share/ssl. You can always determinate how the port has been configured by inspecting the header file: /dev/env/DJDIR/include/openssl/opensslconf.h I have never experienced any difficulties concerning this issue. Openssl always finds the required files where they have been installed. As already pointed out in some other mail, the only environment variable that needs to be defined is DJGPP. It points to djgpp.env where DJDIR is defined. With DJDIR OpenSSL finds the /dev/env/DJDIR/share/ssl path and loads openssl.cnf flawlessly. 3) I am neither an OpenSSL user nor a DOS/DJGPP network expert. I have tested it only on MSDOS 6.22. This is because OpenSSL usually needs an noise source and I only know about http://www.rahul.net/dkaufman/noise063a2.zip. This driver does not work with Windows. The test machine is a VMWare Player 5.0.1 build-894247 with OpenSUSE 12.1 as host OS. The Player has been configure with a NAT network connection. DHCP is used to assign IP addresses. OpenSSL tries to read watt.cfg to get the required network parameterrs. My watt.cfg file is stored in directory: /dev/env/DJDIR/net/watt/bin and has a single line like this: my_ip = dhcp Using the tcpinfo.exe program include in my lately uploaded build of Watt-32 gives the following output: ---------- OUTPUT START ---------- using sample configuration contact local network guru for more details Configuring through DHCP..Reading configuration file `c:\djgpp-2.04\net\watt\bin\wattcp.cfg' Warning: %WATT_ROOT% contains forward ('/') slashes. This may break some Makefiles. PKTDRVR Name : NE2100, version 0.03, API ?, intr 0x60 Class : Ethernet, level 2, RX mode 5 Address : 00:50:56:21:5C:AF IP Address : 172.16.244.142 Network Mask : 255.255.255.0 Gateways : GATEWAY'S IP SUBNET SUBNET MASK : 172.16.244.2 DEFAULT DEFAULT ARP Cache : IP Address MAC Address Type Timeout : 172.16.244.2 00:50:56:FE:B0:9E dynamic 299451 ms Host name : random-pc.localdomain Domain name : localdomain Nameserver : 172.16.244.2 Timeout 120s DHCP : Enabled and SUCCEEDED DHCP Server : 172.16.244.254 IPv6-address : FE80::2001:80FF:FE21:5CAF 6-to-4 gateway : 0.0.0.0 Max Seg Size,MSS : 1460 bytes Max Transmit,MTU : 1500 bytes TCP timers : Sock delay 30s, Inactivity 0s, Keep-alive 120s/30s : Open 1000ms, Close 1000ms, RST time 100ms : RTO base 10ms, RTO add 100ms, Retrans 10ms _tcp_Socket size : 4460 bytes _udp_Socket size : 1736 bytes HOSTS file : HOSTS6 file : SERVICES file : PROTOCOL file : NETWORKS file : ETHERS file : Version info : Watt-32 (2.2.10), GNU-C 4.7.2 (Pent), djgpp 2.04, Jan 12 2013 Capabilities : /debug/mcast/bind/BSDsock/BSDfatal/bootp/dhcp/rarp/lang/frag/stat/fortify/fsext/loopback/tftp/echo/PPPoE/IPv6/RS232/gzip-compr/TCP-MD5/DynIP/profiler/fast-pkt ---------- OUTPUT END ---------- To check if openssl.exe works I have issued the same command than you; this is: openssl s_client -no_ssl2 -debug -host www.google.com -port 443 -state I do not know for what this is good but it produces the following output: ---------- OUTPUT START ---------- using sample configuration contact local network guru for more details SSL_connect:before/connect initialization SSL_connect:SSLv2/v3 write client hello A SSL_connect:SSLv3 read server hello A depth=1 C = ZA, O = Thawte Consulting (Pty) Ltd., CN = Thawte SGC CA verify error:num=20:unable to get local issuer certificate verify return:0 SSL_connect:SSLv3 read server certificate A SSL_connect:SSLv3 read server key exchange A SSL_connect:SSLv3 read server done A SSL_connect:SSLv3 write client key exchange A SSL_connect:SSLv3 write change cipher spec A SSL_connect:SSLv3 write finished A SSL_connect:SSLv3 flush data SSL_connect:SSLv3 read server session ticket A SSL_connect:SSLv3 read finished A CONNECTED(00000008) write to 0x3a4460 [0x3c4590] (322 bytes => 322 (0x142)) 0000 - 16 03 01 01 3d 01 00 01-39 03 03 50 f2 2d e8 dd ....=...9..P.-.. 0010 - 94 1a 4d 51 3e b6 87 2d-de d7 09 a6 8f 19 e0 32 ..MQ>..-.......2 0020 - 82 d0 dd 1b 9c 7a fb c7-6f 3c 5d 00 00 a0 c0 30 .....z..o<]....0 0030 - c0 2c c0 28 c0 24 c0 14-c0 0a c0 22 c0 21 00 a3 .,.(.$.....".!.. 0040 - 00 9f 00 6b 00 6a 00 39-00 38 00 88 00 87 c0 32 ...k.j.9.8.....2 0050 - c0 2e c0 2a c0 26 c0 0f-c0 05 00 9d 00 3d 00 35 ...*.&.......=.5 0060 - 00 84 c0 12 c0 08 c0 1c-c0 1b 00 16 00 13 c0 0d ................ 0070 - c0 03 00 0a c0 2f c0 2b-c0 27 c0 23 c0 13 c0 09 ...../.+.'.#.... 0080 - c0 1f c0 1e 00 a2 00 9e-00 67 00 40 00 33 00 32 .........g DOT AT DOT 3 DOT 2 0090 - 00 9a 00 99 00 45 00 44-c0 31 c0 2d c0 29 c0 25 .....E.D.1.-.).% 00a0 - c0 0e c0 04 00 9c 00 3c-00 2f 00 96 00 41 00 07 .......<./...A.. 00b0 - c0 11 c0 07 c0 0c c0 02-00 05 00 04 00 15 00 12 ................ 00c0 - 00 09 00 14 00 11 00 08-00 06 00 03 00 ff 02 01 ................ 00d0 - 00 00 6f 00 0b 00 04 03-00 01 02 00 0a 00 34 00 ..o...........4. 00e0 - 32 00 0e 00 0d 00 19 00-0b 00 0c 00 18 00 09 00 2............... 00f0 - 0a 00 16 00 17 00 08 00-06 00 07 00 14 00 15 00 ................ 0100 - 04 00 05 00 12 00 13 00-01 00 02 00 03 00 0f 00 ................ 0110 - 10 00 11 00 23 00 00 00-0d 00 22 00 20 06 01 06 ....#.....". ... 0120 - 02 06 03 05 01 05 02 05-03 04 01 04 02 04 03 03 ................ 0130 - 01 03 02 03 03 02 01 02-02 02 03 01 01 00 0f 00 ................ 0140 - 01 01 .. read from 0x3a4460 [0x3c9af8] (7 bytes => 7 (0x7)) 0000 - 16 03 03 00 42 02 ....B. 0007 - read from 0x3a4460 [0x3c9b02] (64 bytes => 64 (0x40)) 0000 - 00 3e 03 03 50 f2 12 7a-53 3e 23 5b d0 28 71 ca .>..P..zS>#[.(q. 0010 - 96 43 3a 53 3c ad 1a 02-1b b1 5f 18 4c 0a 67 27 .C:S<....._.L.g' 0020 - b1 ff ba ab 00 c0 11 00-00 16 ff 01 00 01 00 00 ................ 0030 - 0b 00 04 03 00 01 02 00-23 00 00 00 0f 00 01 01 ........#....... read from 0x3a4460 [0x3c9afb] (5 bytes => 5 (0x5)) 0000 - 16 03 03 06 59 ....Y read from 0x3a4460 [0x3c9b00] (1625 bytes => 1625 (0x659)) 0000 - 0b 00 06 55 00 06 52 00-03 25 30 82 03 21 30 82 ...U..R..%0..!0. 0010 - 02 8a a0 03 02 01 02 02-10 4f 9d 96 d9 66 b0 99 .........O...f.. 0020 - 2b 54 c2 95 7c b4 15 7d-4d 30 0d 06 09 2a 86 48 +T..|..}M0...*.H 0030 - 86 f7 0d 01 01 05 05 00-30 4c 31 0b 30 09 06 03 ........0L1.0... 0040 - 55 04 06 13 02 5a 41 31-25 30 23 06 03 55 04 0a U....ZA1%0#..U.. 0050 - 13 1c 54 68 61 77 74 65-20 43 6f 6e 73 75 6c 74 ..Thawte Consult 0060 - 69 6e 67 20 28 50 74 79-29 20 4c 74 64 2e 31 16 ing (Pty) Ltd.1. 0070 - 30 14 06 03 55 04 03 13-0d 54 68 61 77 74 65 20 0...U....Thawte 0080 - 53 47 43 20 43 41 30 1e-17 0d 31 31 31 30 32 36 SGC CA0...111026 0090 - 30 30 30 30 30 30 5a 17-0d 31 33 30 39 33 30 32 000000Z..1309302 00a0 - 33 35 39 35 39 5a 30 68-31 0b 30 09 06 03 55 04 35959Z0h1.0...U. 00b0 - 06 13 02 55 53 31 13 30-11 06 03 55 04 08 13 0a ...US1.0...U.... 00c0 - 43 61 6c 69 66 6f 72 6e-69 61 31 16 30 14 06 03 California1.0... 00d0 - 55 04 07 14 0d 4d 6f 75-6e 74 61 69 6e 20 56 69 U....Mountain Vi 00e0 - 65 77 31 13 30 11 06 03-55 04 0a 14 0a 47 6f 6f ew1.0...U....Goo 00f0 - 67 6c 65 20 49 6e 63 31-17 30 15 06 03 55 04 03 gle Inc1.0...U.. 0100 - 14 0e 77 77 77 2e 67 6f-6f 67 6c 65 2e 63 6f 6d ..www.google.com 0110 - 30 81 9f 30 0d 06 09 2a-86 48 86 f7 0d 01 01 01 0..0...*.H...... 0120 - 05 00 03 81 8d 00 30 81-89 02 81 81 00 de b7 26 ......0........& 0130 - 43 a6 99 85 cd 38 a7 15-09 b9 cf 0f c9 c3 55 8c C....8........U. 0140 - 88 ee 8c 8d 28 27 24 4b-2a 5e a0 d8 16 fa 61 18 ....('$K*^....a. 0150 - 4b cf 6d 60 80 d3 35 40-32 72 c0 8f 12 d8 e5 4e K.m`..5 AT 2r DOT DOT DOT DOT DOT N 0160 - 8f b9 b2 f6 d9 15 5e 5a-86 31 a3 ba 86 aa 6b c8 ......^Z.1....k. 0170 - d9 71 8c cc cd 27 13 1e-9d 42 5d 38 f6 a7 ac ef .q...'...B]8.... 0180 - fa 62 f3 18 81 d4 24 46-7f 01 77 7c c6 2a 89 14 .b....$F..w|.*.. 0190 - 99 bb 98 39 1d a8 19 fb-39 00 44 7d 1b 94 6a 78 ...9....9.D}..jx 01a0 - 2d 69 ad c0 7a 2c fa d0-da 20 12 98 d3 02 03 01 -i..z,... ...... 01b0 - 00 01 a3 81 e7 30 81 e4-30 0c 06 03 55 1d 13 01 .....0..0...U... 01c0 - 01 ff 04 02 30 00 30 36-06 03 55 1d 1f 04 2f 30 ....0.06..U.../0 01d0 - 2d 30 2b a0 29 a0 27 86-25 68 74 74 70 3a 2f 2f -0+.).'.%http:// 01e0 - 63 72 6c 2e 74 68 61 77-74 65 2e 63 6f 6d 2f 54 crl.thawte.com/T 01f0 - 68 61 77 74 65 53 47 43-43 41 2e 63 72 6c 30 28 hawteSGCCA.crl0( 0200 - 06 03 55 1d 25 04 21 30-1f 06 08 2b 06 01 05 05 ..U.%.!0...+.... 0210 - 07 03 01 06 08 2b 06 01-05 05 07 03 02 06 09 60 .....+.........` 0220 - 86 48 01 86 f8 42 04 01-30 72 06 08 2b 06 01 05 .H...B..0r..+... 0230 - 05 07 01 01 04 66 30 64-30 22 06 08 2b 06 01 05 .....f0d0"..+... 0240 - 05 07 30 01 86 16 68 74-74 70 3a 2f 2f 6f 63 73 ..0...http://ocs 0250 - 70 2e 74 68 61 77 74 65-2e 63 6f 6d 30 3e 06 08 p.thawte.com0>.. 0260 - 2b 06 01 05 05 07 30 02-86 32 68 74 74 70 3a 2f +.....0..2http:/ 0270 - 2f 77 77 77 2e 74 68 61-77 74 65 2e 63 6f 6d 2f /www.thawte.com/ 0280 - 72 65 70 6f 73 69 74 6f-72 79 2f 54 68 61 77 74 repository/Thawt 0290 - 65 5f 53 47 43 5f 43 41-2e 63 72 74 30 0d 06 09 e_SGC_CA.crt0... 02a0 - 2a 86 48 86 f7 0d 01 01-05 05 00 03 81 81 00 21 *.H............! 02b0 - ac d5 ae ca 34 89 5a c2-ab 52 d2 b2 34 66 9d 7a ....4.Z..R..4f.z 02c0 - ab ee e6 7c d5 7e c2 5c-28 bb 74 00 c9 10 1f 42 ...|.~.\(.t....B 02d0 - 13 fc 69 8a 1e 24 a0 02-00 e9 ba 5b ca 19 04 b2 ..i..$.....[.... 02e0 - d3 af 01 b2 7e 5f 14 db-a6 db 52 b9 9a f3 12 7f ....~_....R..... 02f0 - 7c a2 9c 3b 6f 99 7d ea-50 0d 76 23 12 ff f7 66 |..;o.}.P.v#...f 0300 - 73 29 b7 95 0a ad d8 8b-b2 de 20 e9 0a 70 64 11 s)........ ..pd. 0310 - 08 c8 5a f1 7d 9e ec 69-a5 a5 d5 82 d7 27 1e 9e ..Z.}..i.....'.. 0320 - 56 cd d2 76 d5 79 2b f7-25 43 1c 69 f0 b8 f9 00 V..v.y+.%C.i.... 0330 - 03 27 30 82 03 23 30 82-02 8c a0 03 02 01 02 02 .'0..#0......... 0340 - 04 30 00 00 02 30 0d 06-09 2a 86 48 86 f7 0d 01 .0...0...*.H.... 0350 - 01 05 05 00 30 5f 31 0b-30 09 06 03 55 04 06 13 ....0_1.0...U... 0360 - 02 55 53 31 17 30 15 06-03 55 04 0a 13 0e 56 65 .US1.0...U....Ve 0370 - 72 69 53 69 67 6e 2c 20-49 6e 63 2e 31 37 30 35 riSign, Inc.1705 0380 - 06 03 55 04 0b 13 2e 43-6c 61 73 73 20 33 20 50 ..U....Class 3 P 0390 - 75 62 6c 69 63 20 50 72-69 6d 61 72 79 20 43 65 ublic Primary Ce 03a0 - 72 74 69 66 69 63 61 74-69 6f 6e 20 41 75 74 68 rtification Auth 03b0 - 6f 72 69 74 79 30 1e 17-0d 30 34 30 35 31 33 30 ority0...0405130 03c0 - 30 30 30 30 30 5a 17 0d-31 34 30 35 31 32 32 33 00000Z..14051223 03d0 - 35 39 35 39 5a 30 4c 31-0b 30 09 06 03 55 04 06 5959Z0L1.0...U.. 03e0 - 13 02 5a 41 31 25 30 23-06 03 55 04 0a 13 1c 54 ..ZA1%0#..U....T 03f0 - 68 61 77 74 65 20 43 6f-6e 73 75 6c 74 69 6e 67 hawte Consulting 0400 - 20 28 50 74 79 29 20 4c-74 64 2e 31 16 30 14 06 (Pty) Ltd.1.0.. 0410 - 03 55 04 03 13 0d 54 68-61 77 74 65 20 53 47 43 .U....Thawte SGC 0420 - 20 43 41 30 81 9f 30 0d-06 09 2a 86 48 86 f7 0d CA0..0...*.H... 0430 - 01 01 01 05 00 03 81 8d-00 30 81 89 02 81 81 00 .........0...... 0440 - d4 d3 67 d0 8d 15 7f ae-cd 31 fe 7d 1d 91 a1 3f ..g......1.}...? 0450 - 0b 71 3c ac cc c8 64 fb-63 fc 32 4b 07 94 bd 6f .q<...d.c.2K...o 0460 - 80 ba 2f e1 04 93 c0 33-fc 09 33 23 e9 0b 74 2b ../....3..3#..t+ 0470 - 71 c4 03 c6 d2 cd e2 2f-f5 09 63 cd ff 48 a5 00 q....../..c..H.. 0480 - bf e0 e7 f3 88 b7 2d 32-de 98 36 e6 0a ad 00 7b ......-2..6....{ 0490 - c4 64 4a 3b 84 75 03 f2-70 92 7d 0e 62 f5 21 ab .dJ;.u..p.}.b.!. 04a0 - 69 36 84 31 75 90 f8 bf-c7 6c 88 1b 06 95 7c c9 i6.1u....l....|. 04b0 - e5 a8 de 75 a1 2c 7a 68-df d5 ca 1c 87 58 60 19 ...u.,zh.....X`. 04c0 - 02 03 01 00 01 a3 81 fe-30 81 fb 30 12 06 03 55 ........0..0...U 04d0 - 1d 13 01 01 ff 04 08 30-06 01 01 ff 02 01 00 30 .......0.......0 04e0 - 0b 06 03 55 1d 0f 04 04-03 02 01 06 30 11 06 09 ...U........0... 04f0 - 60 86 48 01 86 f8 42 01-01 04 04 03 02 01 06 30 `.H...B........0 0500 - 28 06 03 55 1d 11 04 21-30 1f a4 1d 30 1b 31 19 (..U...!0...0.1. 0510 - 30 17 06 03 55 04 03 13-10 50 72 69 76 61 74 65 0...U....Private 0520 - 4c 61 62 65 6c 33 2d 31-35 30 31 06 03 55 1d 1f Label3-1501..U.. 0530 - 04 2a 30 28 30 26 a0 24-a0 22 86 20 68 74 74 70 .*0(0&.$.". http 0540 - 3a 2f 2f 63 72 6c 2e 76-65 72 69 73 69 67 6e 2e ://crl.verisign. 0550 - 63 6f 6d 2f 70 63 61 33-2e 63 72 6c 30 32 06 08 com/pca3.crl02.. 0560 - 2b 06 01 05 05 07 01 01-04 26 30 24 30 22 06 08 +........&0$0".. 0570 - 2b 06 01 05 05 07 30 01-86 16 68 74 74 70 3a 2f +.....0...http:/ 0580 - 2f 6f 63 73 70 2e 74 68-61 77 74 65 2e 63 6f 6d /ocsp.thawte.com 0590 - 30 34 06 03 55 1d 25 04-2d 30 2b 06 08 2b 06 01 04..U.%.-0+..+.. 05a0 - 05 05 07 03 01 06 08 2b-06 01 05 05 07 03 02 06 .......+........ 05b0 - 09 60 86 48 01 86 f8 42-04 01 06 0a 60 86 48 01 .`.H...B....`.H. 05c0 - 86 f8 45 01 08 01 30 0d-06 09 2a 86 48 86 f7 0d ..E...0...*.H... 05d0 - 01 01 05 05 00 03 81 81-00 55 ac 63 ea de a1 dd .........U.c.... 05e0 - d2 90 5f 9f 0b ce 76 be-13 51 8f 93 d9 05 2b c8 .._...v..Q....+. 05f0 - 1b 77 4b ad 69 50 a1 ee-de dc fd db 07 e9 e8 39 .wK.iP.........9 0600 - 94 dc ab 72 79 2f 06 bf-ab 81 70 c4 a8 ed ea 53 ...ry/....p....S 0610 - 34 ed ef 1e 53 d9 06 c7-56 2b d1 5c f4 d1 8a 8e 4...S...V+.\.... 0620 - b4 2b b1 37 90 48 08 42-25 c5 3e 8a cb 7f eb 6f .+.7.H.B%.>....o 0630 - 04 d1 6d c5 74 a2 f7 a2-7c 7b 60 3c 77 cd 0e ce ..m.t...|{` 5 (0x5)) 0000 - 16 03 03 00 cd ..... read from 0x3a4460 [0x3c9b00] (205 bytes => 205 (0xCD)) 0000 - 0c 00 00 c9 03 00 17 41-04 84 0c c6 ea 1e d4 a1 .......A........ 0010 - fd 52 5c 75 90 40 eb 9a-8f fd 12 b5 b2 95 17 03 .R\u.@.......... 0020 - 89 5a 0c 37 46 02 39 bd-af 08 95 66 79 f4 23 4c .Z.7F.9....fy.#L 0030 - ee 49 df ed d8 44 e7 4c-31 22 09 5f 2d 6a a5 40 .I...D.L1"._-j.@ 0040 - 1d 66 60 d4 43 6a f1 cd-f8 06 01 00 80 98 f1 17 .f`.Cj.......... 0050 - fd b9 b9 56 f2 c4 f4 7c-e2 b2 44 43 6f e6 e9 fa ...V...|..DCo... 0060 - 17 a4 36 11 b4 57 be 64-1c 15 73 d6 9b d4 40 0e ..6..W.d..s...@. 0070 - 2e d1 0c d4 33 0e 64 9f-b5 8c 60 21 5a f7 f0 6e ....3.d...`!Z..n 0080 - f1 49 56 0b 3e 31 04 ee-53 a3 6a f5 56 07 7b 56 .IV.>1..S.j.V.{V 0090 - 81 93 e4 80 c8 56 73 38-6a b6 82 7f 84 b6 0f 4b .....Vs8j......K 00a0 - c0 28 c6 cc 46 5b 39 bd-8e 4b 67 3f 4c b1 7d 9d .(..F[9..Kg?L.}. 00b0 - 38 f8 dc c4 9e 11 32 81-52 af 21 e4 9a b0 1b ae 8.....2.R.!..... 00c0 - 89 07 42 21 f7 c5 ab 85-a4 6c 3d 2c b6 ..B!.....l=,. read from 0x3a4460 [0x3c9afb] (5 bytes => 5 (0x5)) 0000 - 16 03 03 00 04 ..... read from 0x3a4460 [0x3c9b00] (4 bytes => 4 (0x4)) 0000 - 0e . 0004 - write to 0x3a4460 [0x3aa058] (75 bytes => 75 (0x4B)) 0000 - 16 03 03 00 46 10 00 00-42 41 04 a6 78 92 fb 57 ....F...BA..x..W 0010 - 8c 6d a0 34 49 78 d0 7f-92 49 26 9c ea ac 68 e3 .m.4Ix...I&...h. 0020 - 29 34 7b e7 22 47 1e d0-34 f9 b0 2e 48 17 ed ac )4{."G..4...H... 0030 - 04 5a a4 42 51 45 9a aa-d8 d5 45 0c 5a e5 8f 16 .Z.BQE....E.Z... 0040 - 6c 48 8a 27 e3 dc c0 f8-50 cf 15 lH.'....P.. write to 0x3a4460 [0x3aa058] (6 bytes => 6 (0x6)) 0000 - 14 03 03 00 01 01 ...... write to 0x3a4460 [0x3aa058] (41 bytes => 41 (0x29)) 0000 - 16 03 03 00 24 07 9f 81-d3 11 26 4f 2f f6 a2 29 ....$.....&O/..) 0010 - 22 73 3e bc 2c c1 5f ac-f6 04 8c d8 1b 0d 52 60 "s>.,._.......R` 0020 - 13 77 aa 20 0d 97 c7 7a-12 .w. ...z. read from 0x3a4460 [0x3c9afb] (5 bytes => 5 (0x5)) 0000 - 16 03 03 00 9e ..... read from 0x3a4460 [0x3c9b00] (158 bytes => 158 (0x9E)) 0000 - 04 00 00 9a 00 01 89 c0-00 94 6f 9a 0a 40 f0 84 ..........o..@.. 0010 - 89 ce 1e d4 ac 63 f4 2d-50 93 3a 2b 8d 71 53 4d .....c.-P.:+.qSM 0020 - e5 5d 13 52 61 d7 8c d3-b0 85 3b a3 39 67 7e 53 .].Ra.....;.9g~S 0030 - c7 6a 59 91 a5 be 1c 2d-9e 51 1a 41 b4 d8 48 d3 .jY....-.Q.A..H. 0040 - b7 57 24 25 fd 77 79 56-ea 90 16 bc 3b ad 33 73 .W$%.wyV....;.3s 0050 - 56 ea 2e 2a 9c 70 0e d6-73 42 7f 8a 2a b0 89 99 V..*.p..sB..*... 0060 - 0a 97 a7 3d 07 12 ad 4c-8c 6b 43 8e 1c 66 78 1a ...=...L.kC..fx. 0070 - e3 2a ce c8 1e 8b 42 1b-ea 21 a3 f3 5c 60 09 64 .*....B..!..\`.d 0080 - 28 78 50 86 f7 12 e0 8c-74 be d4 47 19 2c ef a7 (xP.....t..G.,.. 0090 - e9 36 7f b7 ec e5 f8 92-2a 2c 19 a9 d6 1c .6......*,.... read from 0x3a4460 [0x3c9afb] (5 bytes => 5 (0x5)) 0000 - 14 03 03 00 01 ..... read from 0x3a4460 [0x3c9b00] (1 bytes => 1 (0x1)) 0000 - 01 . read from 0x3a4460 [0x3c9afb] (5 bytes => 5 (0x5)) 0000 - 16 03 03 00 24 ....$ read from 0x3a4460 [0x3c9b00] (36 bytes => 36 (0x24)) 0000 - bc 4a 79 4f 16 2a 6f 77-b7 7c 73 02 1b 1a ff ae .JyO.*ow.|s..... 0010 - c5 af 24 05 82 b8 81 e3-bd e3 d2 05 d2 0f 25 2a ..$...........%* 0020 - 70 a9 c9 ca p... --- Certificate chain 0 s:/C=US/ST=California/L=Mountain View/O=Google Inc/CN=www.google.com i:/C=ZA/O=Thawte Consulting (Pty) Ltd./CN=Thawte SGC CA 1 s:/C=ZA/O=Thawte Consulting (Pty) Ltd./CN=Thawte SGC CA i:/C=US/O=VeriSign, Inc./OU=Class 3 Public Primary Certification Authority --- Server certificate -----BEGIN CERTIFICATE----- MIIDITCCAoqgAwIBAgIQT52W2WawmStUwpV8tBV9TTANBgkqhkiG9w0BAQUFADBM MQswCQYDVQQGEwJaQTElMCMGA1UEChMcVGhhd3RlIENvbnN1bHRpbmcgKFB0eSkg THRkLjEWMBQGA1UEAxMNVGhhd3RlIFNHQyBDQTAeFw0xMTEwMjYwMDAwMDBaFw0x MzA5MzAyMzU5NTlaMGgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpDYWxpZm9ybmlh MRYwFAYDVQQHFA1Nb3VudGFpbiBWaWV3MRMwEQYDVQQKFApHb29nbGUgSW5jMRcw FQYDVQQDFA53d3cuZ29vZ2xlLmNvbTCBnzANBgkqhkiG9w0BAQEFAAOBjQAwgYkC gYEA3rcmQ6aZhc04pxUJuc8PycNVjIjujI0oJyRLKl6g2Bb6YRhLz21ggNM1QDJy wI8S2OVOj7my9tkVXlqGMaO6hqpryNlxjMzNJxMenUJdOPanrO/6YvMYgdQkRn8B d3zGKokUmbuYOR2oGfs5AER9G5RqeC1prcB6LPrQ2iASmNMCAwEAAaOB5zCB5DAM BgNVHRMBAf8EAjAAMDYGA1UdHwQvMC0wK6ApoCeGJWh0dHA6Ly9jcmwudGhhd3Rl LmNvbS9UaGF3dGVTR0NDQS5jcmwwKAYDVR0lBCEwHwYIKwYBBQUHAwEGCCsGAQUF BwMCBglghkgBhvhCBAEwcgYIKwYBBQUHAQEEZjBkMCIGCCsGAQUFBzABhhZodHRw Oi8vb2NzcC50aGF3dGUuY29tMD4GCCsGAQUFBzAChjJodHRwOi8vd3d3LnRoYXd0 ZS5jb20vcmVwb3NpdG9yeS9UaGF3dGVfU0dDX0NBLmNydDANBgkqhkiG9w0BAQUF AAOBgQAhrNWuyjSJWsKrUtKyNGadeqvu5nzVfsJcKLt0AMkQH0IT/GmKHiSgAgDp ulvKGQSy068Bsn5fFNum21K5mvMSf3yinDtvmX3qUA12IxL/92ZzKbeVCq3Yi7Le IOkKcGQRCMha8X2e7GmlpdWC1ycenlbN0nbVeSv3JUMcafC4+Q== -----END CERTIFICATE----- subject=/C=US/ST=California/L=Mountain View/O=Google Inc/CN=www.google.com issuer=/C=ZA/O=Thawte Consulting (Pty) Ltd./CN=Thawte SGC CA --- No client certificate CA names sent --- SSL handshake has read 2130 bytes and written 444 bytes --- New, TLSv1/SSLv3, Cipher is ECDHE-RSA-RC4-SHA Server public key is 1024 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-RC4-SHA Session-ID: 223F357A4EBDAC093F5B28B38DF9E1A47CB9D5D5B2C92D9D19051F0986F753CF Session-ID-ctx: Master-Key: 1EAA3DE4162BA8A67E29235851050395378D792D006EE50864E80B9991FEC9AB2EC355061CC1DCA3B6B28F3F712A0F4B Key-Arg : None PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 100800 (seconds) TLS session ticket: 0000 - 6f 9a 0a 40 f0 84 89 ce-1e d4 ac 63 f4 2d 50 93 o DOT DOT AT DOT DOT DOT DOT DOT DOT DOT c DOT -P. 0010 - 3a 2b 8d 71 53 4d e5 5d-13 52 61 d7 8c d3 b0 85 :+.qSM.].Ra..... 0020 - 3b a3 39 67 7e 53 c7 6a-59 91 a5 be 1c 2d 9e 51 ;.9g~S.jY....-.Q 0030 - 1a 41 b4 d8 48 d3 b7 57-24 25 fd 77 79 56 ea 90 .A..H..W$%.wyV.. 0040 - 16 bc 3b ad 33 73 56 ea-2e 2a 9c 70 0e d6 73 42 ..;.3sV..*.p..sB 0050 - 7f 8a 2a b0 89 99 0a 97-a7 3d 07 12 ad 4c 8c 6b ..*......=...L.k 0060 - 43 8e 1c 66 78 1a e3 2a-ce c8 1e 8b 42 1b ea 21 C..fx..*....B..! 0070 - a3 f3 5c 60 09 64 28 78-50 86 f7 12 e0 8c 74 be ..\`.d(xP.....t. 0080 - d4 47 19 2c ef a7 e9 36-7f b7 ec e5 f8 92 2a 2c .G.,...6......*, 0090 - 19 a9 d6 1c .... Start Time: 1358048744 Timeout : 300 (sec) Verify return code: 20 (unable to get local issuer certificate) --- HTTP/1.0 400 Bad Request Content-Type: text/html; charset=UTF-8 Content-Length: 925 Date: Sun, 13 Jan 2013 01:52:33 GMT Server: GFE/2.0 Error 400 (Bad Request)!!1

400. That�s an error.

Your client has issued a malformed or illegal request. That�s all we know. read:errno=0 write to 0x3a4460 [0x3ce053] (30 bytes => 30 (0x1E)) 0000 - 17 03 03 00 19 19 2c ff-07 1e ac 4c a5 de 03 39 ......,....L...9 0010 - 90 e4 75 06 81 93 07 52-b6 56 b3 4c 0f e7 ..u....R.V.L.. read from 0x3a4460 [0x3c9afb] (5 bytes => 5 (0x5)) 0000 - 17 03 03 04 40 ....@ read from 0x3a4460 [0x3c9b00] (1088 bytes => 1088 (0x440)) 0000 - 7b 9e ec de 3d 02 94 36-98 3a 1a da e7 09 60 44 {...=..6.:....`D 0010 - 9f b9 68 0e f8 57 47 50-4d e6 4f 4d 68 83 e7 6c ..h..WGPM.OMh..l 0020 - 06 91 65 4d 73 99 d3 0f-60 94 d8 3c 84 c4 a4 a1 ..eMs...`..<.... 0030 - 98 69 02 50 49 69 7f f3-52 a7 e9 46 55 c8 6e b9 .i.PIi..R..FU.n. 0040 - 49 30 41 76 96 7e c9 28-cb 83 c7 d9 2f e3 00 bc I0Av.~.(..../... 0050 - 6f aa 8b 00 02 eb 01 b3-6c 4b 6b ef cc 55 af 91 o.......lKk..U.. 0060 - 39 e2 70 f3 81 24 13 86-c0 72 1f 3f 37 05 48 df 9.p..$...r.?7.H. 0070 - e3 46 cf 23 e9 f0 a4 b6-9e e1 1d 21 fd 41 37 87 .F.#.......!.A7. 0080 - 51 4f 8d 56 ab 5e 2c de-23 72 26 67 d3 b5 ef 6e QO.V.^,.#r&g...n 0090 - 57 ca 80 bb d8 63 ac ec-98 91 6c 1c 97 46 81 08 W....c....l..F.. 00a0 - 0a f5 a7 40 6d ce ae 23-17 a0 72 e9 ec 53 88 7e ...@m..#..r..S.~ 00b0 - 6f 8a 54 b2 51 7b db 95-c0 1f 2d 36 9b 1c 88 51 o.T.Q{....-6...Q 00c0 - b8 8e 7a 6c 67 4b 4f 95-59 fe ed e6 09 a6 06 8a ..zlgKO.Y....... 00d0 - cf 2b 91 1a 5d 52 e5 e3-5d 30 4c 5d 0e 3d 90 48 .+..]R..]0L].=.H 00e0 - 6b 42 67 df 78 8e 1d ac-dc 67 c3 58 72 33 97 47 kBg.x....g.Xr3.G 00f0 - bc 0b da 44 68 bd 9f e9-7b 39 a8 a5 d7 53 92 15 ...Dh...{9...S.. 0100 - 9d 85 a1 26 3c 6f f6 5d-a8 e3 f9 ea eb e1 b2 79 ...&A4K}.0 0350 - 72 f5 53 b4 b9 3a 34 ec-ec 4e 79 d5 ac 03 80 85 r.S..:4..Ny..... 0360 - b5 72 0f 27 76 c4 01 87-42 a3 05 d8 a8 29 c2 c7 .r.'v...B....).. 0370 - 02 f6 05 4c bd f6 ce de-60 96 e6 f7 25 a3 e0 ce ...L....`...%... 0380 - 45 8f 21 cd 9f ad f5 ad-a7 bb fc 66 1e f8 87 5c E.!........f...\ 0390 - 03 8c ea da 27 7f 6a bd-86 fb 85 9a 16 41 d2 53 ....'.j......A.S 03a0 - dc 22 2a e6 f6 b0 0a fc-79 4c 35 e2 75 71 55 72 ."*.....yL5.uqUr 03b0 - 55 31 37 45 5b 32 f6 be-3e 15 68 1e b3 2a 7e 13 U17E[2..>.h..*~. 03c0 - 99 b3 c0 84 48 0d 6f f0-65 d1 75 b6 54 81 c2 a8 ....H.o.e.u.T... 03d0 - 07 f0 0d 45 ed 0c b8 36-3b e9 cf 20 fa 93 81 0d ...E...6;.. .... 03e0 - 84 7d 61 96 42 f9 42 36-53 a0 76 c3 55 67 e0 69 .}a.B.B6S.v.Ug.i 03f0 - aa 3b 15 9c b0 d6 06 68-f3 33 cc ac 1d 73 70 0c .;.....h.3...sp. 0400 - 78 6c b7 ee 83 72 9a cc-04 d6 01 97 57 03 be e5 xl...r......W... 0410 - b2 68 7f c9 9e 0b 24 5b-73 8b 7d 18 fe 2f ba bb .h....$[s.}../.. 0420 - 2a db a3 7d 8f 2a 82 ad-64 08 0d 67 40 29 d0 c7 *..}.*..d..g@).. 0430 - 67 9a 5a 96 a0 0b 64 77-d8 93 cc 61 3c cd 52 13 g.Z...dw...a<.R. read from 0x3a4460 [0x3c9afb] (5 bytes => 0 (0x0)) write to 0x3a4460 [0x3ce053] (27 bytes => -1 (0xFFFFFFFF)) ---------- OUTPUT END ---------- Again, I do not fully understand all this, but I think openssl.exe gets a connection to www.google.com. I do not have any special certificates and I do not how to create them. Neitherless this shows that the port works __IF AND ONLY IF__ it is compiled with a working version of Watt-32. Due to this reason I have decided to upload my build of Watt-32. It can be downloaded as: If that Watt-32 port is not used, I will not be able to answer questions and give any support. 4) I have never tried any of the of the sample code that is delivered with OpenSSL. Here you are alone, but I think that with some adjustments it should work. All this leads me to the conclusion that both ports, the Watt-32 and the OpenSSL works flawlessly. But it is escential not to mix libraries compiled with different compilers. Watt-32 seem to be tailored to be build with gcc 2.7.2 and to use coff debug format. This no longer works with the gcc 4.N.N compilers. Also the configuration like environmet variables and configuration files watt.cfg and other reflecting the network hardwire is crucial. User errors have serious consequences. If more info or test needs to be done, let my know. Regards, Juan M. Guerrero