如何解决ssl 握手期间的 openssl 超时
我在连接到外部邮件服务器时遇到问题。连接只需要 30 秒,所以我很确定这是某种超时。我能够用 openssl 重建错误:
openssl s_client -connect [IP]:465
CONNECTED(00000003)
SSL_connect:before SSL initialization
SSL_connect:SSLv3/TLS write client hello
SSL_connect:error in SSLv3/TLS write client hello
write R BLOCK
需要 30 秒
SSL_connect:SSLv3/TLS write client hello
SSL_connect:error in SSLv3/TLS read server hello
SSL_connect:SSLv3/TLS read server hello
Can't use SSL_get_servername
SSL_connect:TLSv1.3 read encrypted extensions
depth=2 C = US,ST = Arizona,L = ScottsDale,O = "GoDaddy.com,Inc.",CN = Go Daddy Root Certificate Authority - G2
verify return:1
depth=1 C = US,OU = http://certs.godaddy.com/repository/,CN = Go Daddy Secure Certificate Authority - G2
verify return:1
depth=0 C = DE,ST = [...]
verify return:1
SSL_connect:SSLv3/TLS read server certificate
SSL_connect:TLSv1.3 read server certificate verify
SSL_connect:SSLv3/TLS read finished
SSL_connect:SSLv3/TLS write change cipher spec
SSL_connect:SSLv3/TLS write finished
CONNECTED(00000003)
Turned on non blocking io
write R BLOCK
read R BLOCK
read R BLOCK
[...]
---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA-PSS
Server Temp Key: X25519,253 bits
---
SSL handshake has read 3797 bytes and written 363 bytes
Verification: OK
---
New,TLSv1.3,Cipher is TLS_AES_256_GCM_SHA384
Server public key is 2048 bit
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
Early data was not sent
Verify return code: 0 (ok)
---
DONE
SSL3 alert write:warning:close notify
问题:我有几个相同的服务器。有些显示超时,有些不显示(相同的目标 IP)。
我的想法快用完了……提前致谢!
版权声明:本文内容由互联网用户自发贡献,该文观点与技术仅代表作者本人。本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如发现本站有涉嫌侵权/违法违规的内容, 请发送邮件至 dio@foxmail.com 举报,一经查实,本站将立刻删除。
