| View previous topic :: View next topic |
| Author |
Message |
CrazyCat
Revered One
Joined: 13 Jan 2002
Posts: 1032
Location: France
|
 Posted: Tue May 26, 2015 4:37 pm Post subject: Read https website |
 |
|
Hello there,
I'm in trouble with a short code I did. It fetches info from a website, but the website is now in https and I cannot connect anymore with my script.
Here is what I did:
| Code: | set website "https://my.website.com"
package require http
package require tls
set agent "Mozilla/5.0 (X11; Linux i686; rv:2.0.1) Gecko/20100101 Firefox/4.0.1"
http::register https 443 [list ::tls::socket -tls1 1]
proc get {} {
set httpconfig [::http::config -useragent $::agent]
set tok [::http::geturl $::website/index.php]
} |
And I always get:
| Code: | Currently: error reading "sock8": software caused connection abort
Currently: while executing
Currently: "::http::geturl $::website/index.php"
Currently: (procedure "get" line 28) |
I'd tried different settings for the register https, but no one is working. The ssl cerrtificat is coming from cloudflare.
Any idea ?
_________________
https://www.eggdrop.fr - French IRC network
Offer me a coffee - Do not ask me help in PM, we are a community. |
|
| Back to top |
|
 |
caesar
Mint Rubber
Joined: 14 Oct 2001
Posts: 3741
Location: Mint Factory
|
| Posted: Wed May 27, 2015 12:34 am Post subject: |
|
|
try with:
| Code: |
http::register https 443 ::tls::socket
|
instead of
| Code: |
http::register https 443 [list ::tls::socket -tls1 1]
|
_________________
Once the game is over, the king and the pawn go back in the same box. |
|
| Back to top |
|
|
CrazyCat
Revered One
Joined: 13 Jan 2002
Posts: 1032
Location: France
|
| Posted: Wed May 27, 2015 3:05 pm Post subject: |
|
|
Idem:
| Code: | Currently: error reading "sock10": software caused connection abort
Currently: while executing
Currently: "::http::geturl $::website/index.php"
Currently: (procedure "get" line 3)
Currently: invoked from within
Currently: "get" |
My source:
| Code: | package require http
package require tls
variable agent "Mozilla/5.0 (X11; Linux i686; rv:2.0.1) Gecko/20100101 Firefox/4.0.1"
# http::register https 443 [list ::tls::socket -tls1 1]
http::register https 443 ::tls::socket
proc get {} {
set httpconfig [::http::config -useragent $::agent]
set tok [::http::geturl $::website/index.php]
} |
_________________
https://www.eggdrop.fr - French IRC network
Offer me a coffee - Do not ask me help in PM, we are a community. |
|
| Back to top |
|
|
heartbroken
Op
Joined: 23 Jun 2011
Posts: 106
Location: somewhere out there
|
| Posted: Wed May 27, 2015 4:45 pm Post subject: |
|
|
I'm just tested on wish. it is works.
http://i.imgur.com/tdaX17R.png
I don't think this issue caused tls::socket looks working good with
| Code: | | http::register https 443 [list ::tls::socket -tls1 1] ] |
or | Code: | | http::register https 443 ::tls::socket |
Must be something else , but I didn't understand what goes wrong...
_________________
Life iS Just a dReaM oN tHE wAy to DeaTh |
|
| Back to top |
|
|
juanamores
Master
Joined: 15 Mar 2015
Posts: 317
|
| Posted: Wed May 27, 2015 4:58 pm Post subject: |
|
|
CrazyCat you've tried only with your website?
Why not try twitter as did heartbroken to see if you can connect?
Maybe it's the problem of your website...
_________________
If you do not understand my ideas is because I can not think in English, I help me with Google Translate. I only speak Spanish. Bear with me. Thanks  |
|
| Back to top |
|
|
CrazyCat
Revered One
Joined: 13 Jan 2002
Posts: 1032
Location: France
|
| Posted: Wed May 27, 2015 5:04 pm Post subject: |
|
|
I think it's a cloudflare trouble.
Here's a lynx' dump:
| Code: | Connexion HTTPS à my.website.com
TCP: Error 115 in `SOCKET_ERRNO' after call to this socket's first connect() failed.
Opération maintenant en cours
TCP: Error 115 in `SOCKET_ERRNO' after call to this socket's first select() failed.
Opération maintenant en cours
HTGetSSLHandle: certfile is set to /etc/ssl/certs/ca-certificates.crt by config SSL_CERT_FILE
->:+VERS-SSL3.0:+VERS-TLS1.2:+VERS-TLS1.1:+VERS-TLS1.0
->:+AES-256-GCM:+AES-128-GCM:+AES-256-CBC:+AES-128-CBC:+CAMELLIA-256-CBC:+CAMELLIA-128-CBC:+3DES-CBC
->:+COMP-NULL
->:+DHE-RSA:+RSA:+DHE-DSS
->:+SHA1:+MD5
set priorities NONE:+VERS-SSL3.0:+VERS-TLS1.2:+VERS-TLS1.1:+VERS-TLS1.0:+AES-256-GCM:+AES-128-GCM:+AES-256-CBC:+AES-128-CBC:+CAMELLIA-256-CBC:+CAMELLIA-128-CBC:+3DES-CBC:+COMP-NULL:+DHE-RSA:+RSA:+DHE-DSS:+SHA1:+MD5
CHECK 0:NONE:+VERS-SSL3.0:+VERS-TLS1.2:+VERS-TLS1.1:+VERS-TLS1.0:+AES-256-GCM:+AES-128-GCM:+AES-256-CBC:+AES-128-CBC:+CAMELLIA-256-CBC:+CAMELLIA-128-CBC:+3DES-CBC:+COMP-NULL:+DHE-RSA:+RSA:+DHE-DSS:+SHA1:+MD5
(...)
...called gnutls_server_name_set(my.website.com) ->0
HTTP: Unable to complete SSL handshake for 'https://my.website.com/', SSL_connect=0, SSL error stack dump follows
HTTP: SSL: A TLS fatal alert has been received.
Alert!: Unable to make secure connection to remote host.
|
_________________
https://www.eggdrop.fr - French IRC network
Offer me a coffee - Do not ask me help in PM, we are a community. |
|
| Back to top |
|
|
CrazyCat
Revered One
Joined: 13 Jan 2002
Posts: 1032
Location: France
|
|
| Back to top |
|
|
heartbroken
Op
Joined: 23 Jun 2011
Posts: 106
Location: somewhere out there
|
| Posted: Thu Jun 04, 2015 9:30 pm Post subject: |
|
|
I made couple of tests to see how Works with other https sites whoever using cloudflare service.
I found a list of websites at cloudflare's document pages.
( to be honest ,first i thought maybe this problem caused build link between your site to cloudflare. but...)
in my tests i've seen that i can get data from some https sites :
(all of these websites are using this cloudflare service.these are listed in cloudflare site.)
http://i.imgur.com/sLeCqef.png
sometimes its been success but sometimes it fails and returns tls sock error:
http://i.imgur.com/JP57c6T.png
as far as i know that tcl-tls package still has bugs and Tcl guys (aku "Andreas Kupries" especially) working on these bug reports.
They were bumb tls version to 1.6.5 ,
four weeks ago in their cvs :
http://tls.cvs.sourceforge.net/viewvc/tls/tls/
but they didn't released this officially yet.
I think they are waiting to fix all reported bugs to release this new version.
so maybe you better wait until they are done with this new fixed version of tls.
You could get further information at freenode #tcl channel about this issue.
ofcourse they know better .
_________________
Life iS Just a dReaM oN tHE wAy to DeaTh |
|
| Back to top |
|
|
bugme
Voice
Joined: 13 Jan 2017
Posts: 6
|
| Posted: Sat Jan 14, 2017 10:29 am Post subject: |
|
|
| SNI trouble can be fixed as described in a wiki https://wiki.tcl.tk/2630 |
|
| Back to top |
|
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
