Return-Path: Delivered-To: apmail-modperl-archive@apache.org Received: (qmail 10683 invoked by uid 500); 4 Aug 2002 11:14:35 -0000 Mailing-List: contact modperl-help@apache.org; run by ezmlm Precedence: bulk list-help: list-unsubscribe: list-post: Delivered-To: mailing list modperl@perl.apache.org Received: (qmail 10670 invoked from network); 4 Aug 2002 11:14:35 -0000 X-Mailbox-Line: From adulau@foo.be Sun Aug 4 13:14:15 2002 Date: Sun, 4 Aug 2002 13:14:14 +0200 (CEST) From: Alexandre Dulaunoy X-X-Sender: adulau-conos@gilmore.ael.be To: Rodney Broom Cc: mod_perl list Subject: Re: Net::SSLeay works in CGI, fails in mod_perl In-Reply-To: <005901c23a95$ecb331e0$59596244@rbroom.com> Message-ID: X-message-flag: Conostix S.A. Luxembourg Computer Science Security for Managed Security Services MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Spam-Status: No, hits=-3.4 required=5.0 tests=IN_REP_TO version=2.31 X-Spam-Level: X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N On Fri, 2 Aug 2002, Rodney Broom wrote: > Hi all, > > I've got a teribly simple chunk of code that basically just does: > > post_https('secure.authorize.net', 443, '/gateway/transact.dll','',$pd); > > This works at the command line, and in CGI, but fails in mod_perl with this message: > > SSL_connect 27438: 1 - error:140D308A:SSL \ > routines:TLS1_SETUP_KEY_BLOCK:cipher or hash unavailable > Quite strange. The error is coming from OpenSSL : if (!ssl_cipher_get_evp(s->session,&c,&hash,&comp)) { SSLerr(SSL_F_TLS1_SETUP_KEY_BLOCK,SSL_R_CIPHER_OR_HASH_UNAVAILABLE); return(0); } Seems the cipher/hash algorithm is not available at the key setup. Could you check the library in use ? Maybe different version mitmatch of OpenSSL ? just an idea. adulau