[exim-dev] [Bug 1242] Exim doesn't retry OpenSSL read operat…

Top Page

Reply to this message
Author: Phil Pennock
Date:  
To: exim-dev
Subject: [exim-dev] [Bug 1242] Exim doesn't retry OpenSSL read operations on request
------- You are receiving this mail because: -------
You are on the CC list for the bug.

http://bugs.exim.org/show_bug.cgi?id=1242

Phil Pennock <pdp@???> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
         AssignedTo|nigel@???              |pdp@???
           Priority|high                        |medium





--- Comment #1 from Phil Pennock <pdp@???> 2012-04-28 12:03:52 ---
This may be a much older issue.

The s_client(1) command, unless -quiet or -ign_eof, will interpret a line
starting 'R' to mean 'renegotiate', and then not send the input line. In SMTP,
this means "rcpt to", not "RCPT TO", must be typed in such a scenario.

I've implemented the error cases, and also set SSL_MODE_AUTO_RETRY, in a patch
I'll push shortly. This probably is *not* urgent, since something must request
renegotiation.

Separately, I'm trying to figure out why Exim in renegotiation downgrades to
TLS1.0, which causes s_client to barf:

>> TLS 1.0 Alert [length 0002], fatal protocol_version

    02 46
34373260488:error:1408F10B:SSL routines:SSL3_GET_RECORD:wrong version
number:s3_pkt.c:340:


*sigh*


--
Configure bugmail: http://bugs.exim.org/userprefs.cgi?tab=email