254                 BIO_printf(bio_err,"Could not convert PSK key '%s' to BIGNUM\n", psk_key);  in psk_client_cb()
262                 BIO_printf(bio_err,"psk buffer of callback is too small (%d) for key (%d)\n",  in psk_client_cb()
279 		BIO_printf(bio_err, "Error in PSK client callback\n");  in psk_client_cb()
286 	BIO_printf(bio_err,"usage: s_client args\n");  in sc_usage()
287 	BIO_printf(bio_err,"\n");  in sc_usage()
288 	BIO_printf(bio_err," -host host     - use -connect instead\n");  in sc_usage()
289 	BIO_printf(bio_err," -port port     - use -connect instead\n");  in sc_usage()
290 …BIO_printf(bio_err," -connect host:port - who to connect to (default is %s:%s)\n",SSL_HOST_NAME,PO…  in sc_usage()
292 	BIO_printf(bio_err," -verify arg   - turn on peer certificate verification\n");  in sc_usage()
293 	BIO_printf(bio_err," -verify_return_error - return verification errors\n");  in sc_usage()
294 	BIO_printf(bio_err," -cert arg     - certificate file to use, PEM format assumed\n");  in sc_usage()
295 	BIO_printf(bio_err," -certform arg - certificate format (PEM or DER) PEM default\n");  in sc_usage()
296 	BIO_printf(bio_err," -key arg      - Private key file to use, in cert file if\n");  in sc_usage()
297 	BIO_printf(bio_err,"                 not specified but cert file is.\n");  in sc_usage()
298 	BIO_printf(bio_err," -keyform arg  - key format (PEM or DER) PEM default\n");  in sc_usage()
299 	BIO_printf(bio_err," -pass arg     - private key file pass phrase source\n");  in sc_usage()
300 	BIO_printf(bio_err," -CApath arg   - PEM format directory of CA's\n");  in sc_usage()
301 	BIO_printf(bio_err," -CAfile arg   - PEM format file of CA's\n");  in sc_usage()
302 	BIO_printf(bio_err," -reconnect    - Drop and re-make the connection with the same Session-ID\n");  in sc_usage()
303 	BIO_printf(bio_err," -pause        - sleep(1) after each read(2) and write(2) system call\n");  in sc_usage()
304 	BIO_printf(bio_err," -prexit       - print session information even on connection failure\n");  in sc_usage()
305 	BIO_printf(bio_err," -showcerts    - show all certificates in the chain\n");  in sc_usage()
306 	BIO_printf(bio_err," -debug        - extra output\n");  in sc_usage()
308 	BIO_printf(bio_err," -wdebug       - WATT-32 tcp debugging\n");  in sc_usage()
310 	BIO_printf(bio_err," -msg          - Show protocol messages\n");  in sc_usage()
311 	BIO_printf(bio_err," -nbio_test    - more ssl protocol testing\n");  in sc_usage()
312 	BIO_printf(bio_err," -state        - print the 'ssl' states\n");  in sc_usage()
314 	BIO_printf(bio_err," -nbio         - Run with non-blocking IO\n");  in sc_usage()
316 	BIO_printf(bio_err," -crlf         - convert LF from terminal into CRLF\n");  in sc_usage()
317 	BIO_printf(bio_err," -quiet        - no s_client output\n");  in sc_usage()
318 	BIO_printf(bio_err," -ign_eof      - ignore input eof (default when -quiet)\n");  in sc_usage()
319 	BIO_printf(bio_err," -no_ign_eof   - don't ignore input eof\n");  in sc_usage()
321 	BIO_printf(bio_err," -psk_identity arg - PSK identity\n");  in sc_usage()
322 	BIO_printf(bio_err," -psk arg      - PSK in hex (without 0x)\n");  in sc_usage()
324 	BIO_printf(bio_err," -jpake arg    - JPAKE secret to use\n");  in sc_usage()
328 	BIO_printf(bio_err," -srpuser user     - SRP authentification for 'user'\n");  in sc_usage()
329 	BIO_printf(bio_err," -srppass arg      - password for 'user'\n");  in sc_usage()
330 	BIO_printf(bio_err," -srp_lateuser     - SRP username into second ClientHello message\n");  in sc_usage()
331 	BIO_printf(bio_err," -srp_moregroups   - Tolerate other than the known g N values.\n");  in sc_usage()
332 …BIO_printf(bio_err," -srp_strength int - minimal mength in bits for N (default %d).\n",SRP_MINIMAL…  in sc_usage()
334 	BIO_printf(bio_err," -ssl2         - just use SSLv2\n");  in sc_usage()
335 	BIO_printf(bio_err," -ssl3         - just use SSLv3\n");  in sc_usage()
336 	BIO_printf(bio_err," -tls1_2       - just use TLSv1.2\n");  in sc_usage()
337 	BIO_printf(bio_err," -tls1_1       - just use TLSv1.1\n");  in sc_usage()
338 	BIO_printf(bio_err," -tls1         - just use TLSv1\n");  in sc_usage()
339 	BIO_printf(bio_err," -dtls1        - just use DTLSv1\n");      in sc_usage()
340 	BIO_printf(bio_err," -fallback_scsv - send TLS_FALLBACK_SCSV\n");  in sc_usage()
341 	BIO_printf(bio_err," -mtu          - set the link layer MTU\n");  in sc_usage()
342 	BIO_printf(bio_err," -no_tls1_2/-no_tls1_1/-no_tls1/-no_ssl3/-no_ssl2 - turn off that protocol\n");  in sc_usage()
343 	BIO_printf(bio_err," -bugs         - Switch on all SSL implementation bug workarounds\n");  in sc_usage()
344 	BIO_printf(bio_err," -serverpref   - Use server's cipher preferences (only SSLv2)\n");  in sc_usage()
345 	BIO_printf(bio_err," -cipher       - preferred cipher to use, use the 'openssl ciphers'\n");  in sc_usage()
346 	BIO_printf(bio_err,"                 command to see what is available\n");  in sc_usage()
347 	BIO_printf(bio_err," -starttls prot - use the STARTTLS command before starting TLS\n");  in sc_usage()
348 	BIO_printf(bio_err,"                 for those protocols that support it, where\n");  in sc_usage()
349 	BIO_printf(bio_err,"                 'prot' defines which one to assume.  Currently,\n");  in sc_usage()
350 	BIO_printf(bio_err,"                 only \"smtp\", \"pop3\", \"imap\", \"ftp\" and \"xmpp\"\n");  in sc_usage()
351 	BIO_printf(bio_err,"                 are supported.\n");  in sc_usage()
353 	BIO_printf(bio_err," -engine id    - Initialise and use the specified engine\n");  in sc_usage()
355 	BIO_printf(bio_err," -rand file%cfile%c...\n", LIST_SEPARATOR_CHAR, LIST_SEPARATOR_CHAR);  in sc_usage()
356 	BIO_printf(bio_err," -sess_out arg - file to write SSL session to\n");  in sc_usage()
357 	BIO_printf(bio_err," -sess_in arg  - file to read SSL session from\n");  in sc_usage()
359 	BIO_printf(bio_err," -servername host  - Set TLS extension servername in ClientHello\n");  in sc_usage()
360 	BIO_printf(bio_err," -tlsextdebug      - hex dump of all TLS extensions received\n");  in sc_usage()
361 	BIO_printf(bio_err," -status           - request certificate status from server\n");  in sc_usage()
362 	BIO_printf(bio_err," -no_ticket        - disable use of RFC4507bis session tickets\n");  in sc_usage()
364 …BIO_printf(bio_err," -nextprotoneg arg - enable NPN extension, considering named protocols support…  in sc_usage()
365 …BIO_printf(bio_err," -alpn arg         - enable ALPN extension, considering named protocols suppor…  in sc_usage()
368 	BIO_printf(bio_err," -cutthrough       - enable 1-RTT full-handshake for strong ciphers\n");  in sc_usage()
369 	BIO_printf(bio_err," -no_record_splitting  - disable 1/n-1 record splitting in CBC mode\n");  in sc_usage()
370 	BIO_printf(bio_err," -legacy_renegotiation - enable use of legacy renegotiation (dangerous)\n");  in sc_usage()
372 …BIO_printf(bio_err," -use_srtp profiles - Offer SRTP key management with a colon-separated profile…  in sc_usage()
374  	BIO_printf(bio_err," -keymatexport label   - Export keying material using label\n");  in sc_usage()
375  	BIO_printf(bio_err," -keymatexportlen len  - Export len bytes of keying material (default 20)\n");  in sc_usage()
394 		BIO_printf(bio_err,"Can't use SSL_get_servername\n");  in ssl_servername_cb()
465     		BIO_printf(bio_err, "SRP parameters:\n");   in ssl_srp_verify_param_cb()
466 		BIO_printf(bio_err,"\tN="); BN_print(bio_err,N);  in ssl_srp_verify_param_cb()
467 		BIO_printf(bio_err,"\n\tg="); BN_print(bio_err,g);  in ssl_srp_verify_param_cb()
468 		BIO_printf(bio_err,"\n");  in ssl_srp_verify_param_cb()
477 			BIO_printf(bio_err, "SRP param N and g are not known params, going to check deeper.\n");  in ssl_srp_verify_param_cb()
486 	BIO_printf(bio_err, "SRP param N and g rejected.\n");  in ssl_srp_verify_param_cb()
503 		BIO_printf (bio_err, "Can't read Password\n");  in ssl_give_srp_client_pwd_cb()
649 	if (bio_err == NULL)  in MAIN()
650 		bio_err=BIO_new_fp(stderr,BIO_NOCLOSE);  in MAIN()
652 	if (!load_config(bio_err, NULL))  in MAIN()
659 		BIO_printf(bio_err,"out of memory\n");  in MAIN()
695 			BIO_printf(bio_err,"verify depth is %d\n",verify_depth);  in MAIN()
717 		else if (args_verify(&argv, &argc, &badarg, bio_err, &vpm))  in MAIN()
776                                 BIO_printf(bio_err,"Not a hex number '%s'\n",*argv);  in MAIN()
798 			BIO_printf(bio_err,"SRP minimal length for N is %d\n",srp_arg.strength);  in MAIN()
995 			BIO_printf(bio_err,"unknown option %s\n",*argv);  in MAIN()
1014 			BIO_printf(bio_err,  in MAIN()
1021 			BIO_printf(bio_err, "JPAKE sets cipher to PSK\n");  in MAIN()
1038 			BIO_printf(bio_err, "Error parsing -nextprotoneg argument\n");  in MAIN()
1047         e = setup_engine(bio_err, engine_id, 1);  in MAIN()
1053 			BIO_printf(bio_err,  in MAIN()
1060 	if (!app_passwd(bio_err, passarg, NULL, &pass, NULL))  in MAIN()
1062 		BIO_printf(bio_err, "Error getting password\n");  in MAIN()
1074 		key = load_key(bio_err, key_file, key_format, 0, pass, e,  in MAIN()
1078 			ERR_print_errors(bio_err);  in MAIN()
1087 		cert = load_cert(bio_err,cert_file,cert_format,  in MAIN()
1092 			ERR_print_errors(bio_err);  in MAIN()
1097 	if (!app_RAND_load_file(NULL, bio_err, 1) && inrand == NULL  in MAIN()
1100 		BIO_printf(bio_err,"warning, not much extra random data, consider using the -rand option\n");  in MAIN()
1103 		BIO_printf(bio_err,"%ld semi-random bytes loaded\n",  in MAIN()
1120 	if(!app_passwd(bio_err, srppass, NULL, &srp_arg.srppassin, NULL))  in MAIN()
1122 		BIO_printf(bio_err, "Error getting password\n");  in MAIN()
1130 		ERR_print_errors(bio_err);  in MAIN()
1142 			BIO_puts(bio_err, "Error setting client auth engine\n");  in MAIN()
1143 			ERR_print_errors(bio_err);  in MAIN()
1191 			BIO_printf(bio_err, "Error parsing -alpn argument\n");  in MAIN()
1212 		BIO_printf(bio_err,"error setting cipher list\n");  in MAIN()
1213 		ERR_print_errors(bio_err);  in MAIN()
1229 		ERR_print_errors(bio_err);  in MAIN()
1236 		tlsextcbp.biodebug = bio_err;  in MAIN()
1245 			BIO_printf(bio_err,"Unable to set SRP username\n");  in MAIN()
1267 			BIO_printf(bio_err, "Can't open session file %s\n",  in MAIN()
1269 			ERR_print_errors(bio_err);  in MAIN()
1276 			BIO_printf(bio_err, "Can't open session file %s\n",  in MAIN()
1278 			ERR_print_errors(bio_err);  in MAIN()
1293 			BIO_printf(bio_err,"Unable to set TLS servername extension.\n");  in MAIN()
1294 			ERR_print_errors(bio_err);  in MAIN()
1317 		BIO_printf(bio_err,"connect:errno=%d\n",get_last_socket_error());  in MAIN()
1330 			ERR_print_errors(bio_err);  in MAIN()
1343 			BIO_printf(bio_err, "getsockname:errno=%d\n",  in MAIN()
1472 			BIO_printf(bio_err,  in MAIN()
1505 			BIO_printf(bio_err,  in MAIN()
1589 						BIO_printf(bio_err, "Error writing session file %s\n", sess_out);  in MAIN()
1596 					BIO_printf(bio_err,"%s",mbuf);  in MAIN()
1702 				BIO_printf(bio_err,"bad select %d\n",  in MAIN()
1711 			BIO_printf(bio_err,"TIMEOUT occured\n");  in MAIN()
1767 					BIO_printf(bio_err,"write:errno=%d\n",  in MAIN()
1778 				ERR_print_errors(bio_err);  in MAIN()
1853 				BIO_printf(bio_err,"read:errno=%d\n",ret);  in MAIN()
1860 				ERR_print_errors(bio_err);  in MAIN()
1907 				BIO_printf(bio_err,"DONE\n");  in MAIN()
1914 				BIO_printf(bio_err,"RENEGOTIATING\n");  in MAIN()
1921 				BIO_printf(bio_err,"HEARTBEATING\n");  in MAIN()