Re: SSL Transfer error 'wrong version number'

Well, this man page suggests that this occurs, as you say, when the client changes its SSL protocol values in a effort to be "helpful". Digging through Net::SSL suggests that this in fact is done by Crypt:SSLeay:

$args{SSL_Version} = 3;
# the new connect might itself be overridden with a REAL SSL
my $new_ssl = Net::SSL->new(%args);
$REAL{$self} = $REAL{$new_ssl} || $new_ssl;
[download]

But I'm still investigating. What are the allowed values for SSL on your IIS server? Also, do they match the values for your WebSphere?

Remember, when you stare long into the abyss, you could have been home eating ice cream.

Comment on Re: SSL Transfer error 'wrong version number' Download Code

Replies are listed 'Best First'.
Re: Re: SSL Transfer error 'wrong version number' by rusacarr (Acolyte) on Oct 10, 2003 at 13:36 UTC
Unfortunately, the IIS and Websphere servers are not mine. They belong to a remote client I'm attempting to connect to, and download datafiles from. I'm writing the client. I have not been able to find a way using LWP to pass a low level call (for SSL_CTX_Set_Options()) down to Crypt, so thinking about just hacking the module itself to include it. As to what SSL values are allowed by the servers, I don't know since the client won't return my calls. I have added code to my script `$ENV{HTTPS_VERSION} = 3;` to attempt to force HTTPS into version 3 (I've also tried version 2), but it has no affect. I've also began setting an allowed protocol list for the UA object, `$ua->protocols_allowed( ['https'] );` just to be safe. Thanks for the help, please let me know if/when you find anything. I'll update this node when I find anything. P.S. - Currently, there are 17 files available for me to download from the remote server, I can download 15 files perfectly, but there are 2 files (always the same) that lock up like this. Also, I discovered yesterday that since I'm doing this on a Windows platform that is sans `alarm()`, then my timeout logic will never work! Nice! Trying to convince my boss to go to Linux.	[reply] [d/l] [select]
Re: Re: Re: SSL Transfer error 'wrong version number' by idsfa (Vicar) on Oct 10, 2003 at 18:02 UTC
You may find stunnel a useful tool for diagnosing the issue. Net::APP even provides an example of using this inside of perl code. Not an ideal solution, but the diagnostics are better and might show you where the problem is. Remember, when you stare long into the abyss, you could have been home eating ice cream.	[reply]