Uploaded image for project: 'Couchbase C client library libcouchbase'
  1. Couchbase C client library libcouchbase
  2. CCBC-571

SSL may erroneously fail with "SSL_UNDEFINED_CONST_FUNCTION"

    XMLWordPrintable

Details

    • Task
    • Resolution: Fixed
    • Major
    • 2.4.7
    • 2.4.3
    • library
    • Security Level: Public
    • None

    Description

      This happened when we disabled SSLv3_client_method and switched over to SSLv23_client_method. It turns out the latter is just a stub for a collection of other methods (where openssl will basically try to "Guess" what kind of SSL method it should use; with optionally eliminating some explicitly (e.g. SSLv3)).

      In this case, it turns out the library was calling SSL_pending too early (though this isn't documented anywhere).

      Attachments

        For Gerrit Dashboard: CCBC-571
        # Subject Branch Project Status CR V
        46261,2 CCBC-571: Fix intermittent SSL failures on negotiation master libcouchbase Status: MERGED +2 +1

        Activity

          People

            mnunberg Mark Nunberg (Inactive)
            mnunberg Mark Nunberg (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Gerrit Reviews

                There are no open Gerrit changes

                PagerDuty