[Nagiosplug-devel] [ nagiosplug-Bugs-3066166 ] check_http fails to connect to some SSL servers/devices

SourceForge.net noreply at sourceforge.net
Tue Sep 14 21:27:31 CEST 2010


Bugs item #3066166, was opened at 2010-09-14 15:27
Message generated for change (Tracker Item Submitted) made by rabinnh
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=397597&aid=3066166&group_id=29880

Please note that this message will contain a full copy of the comment thread,
including the initial issue submission, for this request,
not just the latest update.
Category: General plugin execution
Group: None
Status: Open
Resolution: None
Priority: 5
Private: No
Submitted By: rabinnh (rabinnh)
Assigned to: Nobody/Anonymous (nobody)
Summary: check_http fails to connect to some SSL servers/devices

Initial Comment:
Error is "CRITICAL - Cannot make SSL connection"

This has repeatedly been reported an closed for different servers; i.e. Tomcat, Oracle AppServer, etc.  I can still see the issue on some access points that I have.

I debugged through the code and the problem and solution are simple;in "ssltuils.c" in the function "int np_net_ssl_init_with_hostname", is the following line of code:

if ((c = SSL_CTX_new (SSLv23_client_method ())) == NULL) {

If this call fails, the error is returned.  However, on systems that fail, falling back to TLS works fine, for example:

if ((c = SSL_CTX_new (TLSv1_client_method ())) == NULL) {

sslutil.c should attempt both methods




----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=397597&aid=3066166&group_id=29880




More information about the Devel mailing list