Article delegate-en/3137 of [1-5169] on the server localhost:119
  upper oldest olders older1 this newer1 newers latest
search
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
[Reference:<_A3136@delegate-en.ML_>]
Newsgroups: mail-lists.delegate-en

[DeleGate-En] Re: SSL disconnect problem
20 Feb 2006 15:05:20 GMT feedback@delegate.org (Yutaka Sato)
The DeleGate Project


Hi,

In message <_A3136@delegate-en.ML_> on 02/17/06(17:39:15)
you peqgabdyi-p53o7e2zogtr.ml@ml.delegate.org wrote:
 |I can't see any "half_duplex" in the logs.
 |
 |We are using delegate to protect telnet clients with ssl,  we are 
 |using/starting delegate as following
 |
 |dg9_0_4.exe -P8039 ADMIN="jback@ekm..fi" SERVER=telnet://192.168.10.30 
 |FCL="sslway" RELIABLE="*"  AUTHORIZER="localhost/21"
 |
 |Below are the captured Encrypted Alert that delegate does not understand, 
 |when delegate receive this alert it should close the connection.

I'm a little confused because your first mail was about a connection for
"https" protocol.  Anyway as you pointed it out, echoing shutdown against
shutdown from the peer has not been supported in SSLway.
So I made a modification for 9.0.6-pre3 to do it, and uploaded a modified
version as dg9_0_6-pre3fix1.exe at ftp://ftp.delegate.org/pub/DeleGate/tmp/.
I hope it will solve your problem.  The "-vd" option both for DeleGate
and SSLway will show us detailed log of Telnet and SSL respectively.

  dg9_0_6-pre3fix1.exe -w -vd ... FCL="sslway -vd" ...

On my WinXP machine, when a Telnet/TCP connection is closed from the
client-side, it puts a log like this:

  02/20 23:46:05.46 [256] 1+0: ## SSLway C>> shutdown from client: 2
  02/20 23:46:05.46 [256] 1+0: ## SSLway C<< return shutdown to client

Cheers,
Yutaka
--
  D G   Yutaka Sato <y.sato@delegate.org> http://delegate.org/y.sato/
 ( - )  National Institute of Advanced Industrial Science and Technology
_<   >_ 1-1-4 Umezono, Tsukuba, Ibaraki, 305-8568 Japan
Do the more with the less -- B. Fuller

02/20 23:45:57.64 [336] 0+0: --INITIALIZATION START: 9.0.6-pre3fix1 on WindowsNT--
...
02/20 23:45:57.75 [336] 0+0: --- [ssleay32.dll] 10000000 ssleay32.dll
02/20 23:45:57.75 [336] 0+0: ---- [ssleay32.dll] loaded 89 syms, unknown=40, already=0
02/20 23:45:57.75 [336] 0+0: --- [libeay32.dll] D40000 libeay32.dll
02/20 23:45:57.75 [336] 0+0: ---- [libeay32.dll] loaded 89 syms, unknown=0, already=48
02/20 23:45:57.75 [336] 0+0: ---- unknown = 0, already = 48 / 89
02/20 23:45:57.75 [336] 0+0: ## SSLway CFI_TYPE=FCL: -ac is assumed
...
02/20 23:46:01.79 [3124] 1+0: (0) accepted [6] -@[192.168.1.10]192.168.1.10:51026 (0.047s)(41)
...
02/20 23:46:02.07 [3124] 1+0: SC[  2] 18: 24 DO   TerminalType
02/20 23:46:02.07 [3124] 1+0: SC[  5] 20: 32 DO   TerminalSpeed
02/20 23:46:02.07 [3124] 1+0: SC[  8] 23: 35 DO   XDisplayLocation
02/20 23:46:02.07 [3124] 1+0: SC[ 11] 27: 39 DO   39
02/20 23:46:02.14 [256] 1+0: ## SSLway accepted
02/20 23:46:02.14 [256] 1+0: ## SSLway ## 0.140000 sescache[0] HIT=0 sR=0 cR=1
02/20 23:46:02.14 [256] 1+0: ## SSLway -- 0.000000 start
02/20 23:46:02.14 [256] 1+0: ## SSLway -- 0.000000 init done
02/20 23:46:02.14 [256] 1+0: ## SSLway -- 0.000000 begin args
02/20 23:46:02.14 [256] 1+0: ## SSLway -- 0.000000 end args
02/20 23:46:02.14 [256] 1+0: ## SSLway -- 0.000000 nodelay set
02/20 23:46:02.14 [256] 1+0: ## SSLway -- 0.000000 start con/acc
02/20 23:46:02.14 [256] 1+0: ## SSLway -- 0.000000 ssl_acc() start
02/20 23:46:02.14 [256] 1+0: ## SSLway -- 0.000000 before accept
02/20 23:46:02.14 [256] 1+0: ## SSLway -- 0.140000 after accept
02/20 23:46:02.14 [256] 1+0: ## SSLway -- 0.140000 saveSession OK
02/20 23:46:02.14 [256] 1+0: ## SSLway -- 0.140000 start relay ...
02/20 23:46:02.14 [256] 1+0: ## SSLway client's cert. = NONE
02/20 23:46:02.14 [256] 1+0: ## SSLway S-C: 14/14 -> 14/SSL
02/20 23:46:02.16 [256] 1+0: ## SSLway C-S: 12/12 -> 12
02/20 23:46:02.16 [3124] 1+0: CS Client-Says WILL TerminalType
02/20 23:46:02.16 [3124] 1+0: CS[  2] 18: 24 WILL TerminalType
02/20 23:46:02.16 [3124] 1+0: CS[  5] 20: 32 WILL TerminalSpeed
02/20 23:46:02.16 [3124] 1+0: CS[  8] 23: 35 WONT XDisplayLocation
02/20 23:46:02.16 [3124] 1+0: CS[ 11] 27: 39 WILL 39
02/20 23:46:02.16 [3124] 1+0: SC[  5] f0:240 SB,TerminalSpeed,1,IAC,SE
02/20 23:46:02.16 [3124] 1+0: SC[ 11] f0:240 SB,39,1,IAC,SE
02/20 23:46:02.16 [3124] 1+0: SC[ 17] f0:240 SB,TerminalType,1,IAC,SE
02/20 23:46:02.16 [256] 1+0: ## SSLway S-C: 18/18 -> 18/SSL
02/20 23:46:02.16 [256] 1+0: ## SSLway C-S: 44/44 -> 44
02/20 23:46:02.16 [3124] 1+0: CS[ 14] f0:240 SB,TerminalSpeed,0,9600,9600,IAC,SE
02/20 23:46:02.16 [3124] 1+0: CS[ 32] f0:240 SB,39,0,0,USER,1,yutaka,IAC,SE
02/20 23:46:02.16 [3124] 1+0: CS[ 43] f0:240 SB,TerminalType,0,VT320,IAC,SE
02/20 23:46:02.16 [3124] 1+0: SC[  2] 03:  3 WILL SuppressGoAhead
02/20 23:46:02.16 [3124] 1+0: SC[  5] 01:  1 DO   Echo
02/20 23:46:02.16 [3124] 1+0: SC[  8] 1f: 31 DO   NegotiateAboutWindowSize
02/20 23:46:02.16 [3124] 1+0: SC[ 11] 05:  5 WILL GiveStatus
02/20 23:46:02.16 [3124] 1+0: SC[ 14] 21: 33 DO   RemoteFlowControl
02/20 23:46:02.16 [256] 1+0: ## SSLway S-C: 15/15 -> 15/SSL
02/20 23:46:02.16 [3124] 1+0: CS[  2] 03:  3 DO   SuppressGoAhead
02/20 23:46:02.16 [3124] 1+0: CS[  5] 01:  1 WONT Echo
02/20 23:46:02.16 [3124] 1+0: CS[  8] 1f: 31 WILL NegotiateAboutWindowSize
02/20 23:46:02.16 [3124] 1+0: CS[ 17] f0:240 SB,NegotiateAboutWindowSize,0,P,0,2,IAC,SE
02/20 23:46:02.16 [3124] 1+0: CS[ 20] 05:  5 DO   GiveStatus
02/20 23:46:02.16 [3124] 1+0: CS[ 23] 21: 33 WILL RemoteFlowControl
02/20 23:46:02.16 [256] 1+0: ## SSLway C-S: 24/24 -> 24
02/20 23:46:02.18 [3124] 1+0: SC[  2] 01:  1 WILL Echo
02/20 23:46:02.18 [256] 1+0: ## SSLway S-C: 3/3 -> 3/SSL
02/20 23:46:02.18 [256] 1+0: ## SSLway C-S: 3/3 -> 3
02/20 23:46:02.18 [3124] 1+0: CS[  2] 01:  1 DO   Echo
02/20 23:46:02.18 [256] 1+0: ## SSLway S-C: 10/10 -> 10/SSL
02/20 23:46:05.46 [256] 1+0: ## SSLway C-S EOF from the client
02/20 23:46:05.46 [256] 1+0: ## SSLway C>> shutdown from client: 2
02/20 23:46:05.46 [256] 1+0: ## SSLway C<< return shutdown to client
02/20 23:46:05.46 [256] 1+0: ## SSLway done
(WIN) 46:05.493 [3124] -- SOCKET recv(23)=0 error=0 [0.000]
02/20 23:46:05.49 [3124] 1+0: sock=23 read=0, errno=9
02/20 23:46:05.49 [3124] 1+0: CS-EOF
02/20 23:46:05.49 [3124] 1+0: CS-RELAY[23>24]: 83Bytes 4I/O buf=8192
02/20 23:46:05.49 [3124] 1+0: SC-RELAY[23<24]: 58Bytes 5I/O buf=8192
02/20 23:46:05.49 [3124] 1+0: dirfopen(C:/Program Files/DeleGate/act/clients/21/192.168.1.10..192.168.1.10,r+): 67f860 [23]
02/20 23:46:05.49 [3124] 1+0: disconnected [6] -@[192.168.1.10]192.168.1.10:51026 (3.750s)(40)
(WIN) 46:05.602 [3124] wait3(N) = 1652 [256] 0, children(alive=0,total=1) 0.00s
02/20 23:46:05.60 [3124] 1+0: CFI process [1652] done (1/1 AFT-1)
02/20 23:46:08.30 [336] 1+0: DGAuth: ERROR getCkey(), ekeyFd=-1
02/20 23:46:08.30 [336] 1+0: DeleGate SERVER EXITS: caught SIGINT [2]
02/20 23:46:08.30 [336] 1+0: Killpg(336,15)
(WIN) 46:08.306 [336] kill(-336,15) = -1, failed GetExitCodeProcess()
(WIN) 46:08.306 [336] wait3(N) = 1648 [3124] 0, children(alive=0,total=1) 0.00s

  admin search upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
@_@V