Working around OpenSSL::SSL::SSLErrors

Posted Almost 10 years ago. Visible to the public.

If your requests blow up in Ruby or CURL, the server you're connecting to might only support requests with older SSL/TLS versions.

You might get an error like: OpenSSL::SSL::SSLError: SSL_connect SYSCALL returned=5 errno=0 state=unknown state

SSL Server Test

This SSL Server Test Show archive.org snapshot can help finding out which SSL/TLS versions the server can handle.

Ruby

In Ruby, you can teach Net::HTTP to use a specific SSL/TLS version.

uri = URI.parse(url)

ssl_options = {
   use_ssl: true,
   ssl_version: 'SSLv3'
}

Net::HTTP.start(uri.host, ssl_options) do |http|
   http.get uri.request_uri
end

CURL

In CURL, you can specify the SSL/TLS protocol version to use like this:

✘ > curl -i https://www.econda-monitor.de/els/logging
curl: (35) Unknown SSL protocol error in connection to www.econda-monitor.de:443

✔ > curl -i --sslv3 https://www.econda-monitor.de/els/logging
HTTP/1.1 200 OK
...

✔ > curl -i --tlsv1 https://www.econda-monitor.de/els/logging
HTTP/1.1 200 OK
...

curl -i includes the protocol headers in the output, so you'll see the response's status code.

Thomas Klemm
Say thanks4
Last edit
Almost 10 years ago
License
Source code in this card is licensed under the MIT License.

Related cards:

How to enable SSL in development with Passenger standalone

Here is how to start your Rails application to accept both HTTP and HTTPS in development.

  1. gem install passenger

  2. Create a [self-signed SSL certificate](https://makandracards.com/makandra/15901-howto-create-a-self-signed-certificate...

Working around the ancestry gem's way of object destruction

The ancestry gem allows you to easily use tree structures in your Rails application.

There is one somewhat unobvious pitfall to it: its way of applying the orphan_strategy which defines how it handles c...

Rspec: around(:all) and around(:each) hook execution order

Summary

  • around(:suite) does not exist.
  • around(:all) runs after before(:all) and before after(:all).
  • around(:each) runs before before(:each) and after after(:each).

As this is not 100% obvious (and not yet documented) it i...

Change the current directory without side effects in Ruby

To temporarily change the current working directory in Ruby, call Dir.chdir with a block. The previous working directory will be restored when the block ends:

Dir.chdir('/usr/local') do
  # do stuff in /usr/local
end

Working with or without time zones in Rails applications

Rails supports time zones, but there are several pitfalls. Most importantly because Time.now and Time.current are completely different things and code from gems might use one or the other.

Especially configuring an application that cares only...

Cucumber pitfall: "Around" does not apply to your "Background" steps

Around will not happen until after a feature's Background has been processed. Use Before and After to avoid that.

Details

Consider this Cucumber feature file:

Feature: Something that needs to be tested

  Background:
...

Project management best practices: Working with clients in person

When working on a bigger project, the easiest way to improve your work relation with a client or an external product manager, is to make sure you see them in person once in a while.

It makes sense to meet each other when you start working togethe...

Open a Nautilus window in your terminal's working directory

In order to open a Nautilus window in your terminal's working directory, you can say:

nautilus .

Git: In an (interactive) rebase, find out which commit you are currently working on (until version < 1.7.9.5)

When you are using git rebase and are currently editing a commit (due to a conflict, for example), you may want to know the current commit. [1]\
Luckily, there is lots of useful stuff in the .git directory.

Commit hash that you are curre...

Git stash: Working with old entries

First find the reference for the entry you want through looking at the stash:

$ git stash list
stash@{0}: WIP on feature/foo
stash@{1}: WIP on feature/bar
st...
Posted by Thomas Klemm to makandra dev (2014-07-01 08:54)
This website uses short-lived cookies to improve usability.
or learn more