SSL failure(error:00000005:lib(0):func(0):DH lib) if client/worker closes socket connection

[p-alik]

As mentioned in groups gearmand running with ssl support complains permanently about failed DH key exchange.

SSL failure(error:00000005:lib(0):func(0):DH lib) errno:0

SSL_CTX_set_cipher_list should be implemented in gearmand in proper way to solve the issue

[esabol]

I wonder if "DH lib" part of that error message might be a red herring. Check out the following links:

https://groups.google.com/d/msg/mailing.openssl.users/CcgtnRGpsZ0/ekdRCZFzybgJ
http://stackoverflow.com/questions/13686398/ssl-read-failing-with-ssl-error-syscall-error

The second link suggests this could be the result of calling SSL_read() with a buffer size of 0?

Alternatively, here are some OpenSSL links about DH which may be helpful:

http://stackoverflow.com/questions/23479376/openssl-ssl-accept-error-5
https://wiki.openssl.org/index.php/Diffie_Hellman
https://wiki.openssl.org/index.php/Elliptic_Curve_Diffie_Hellman

And here's some sample SSL server code which implements DH key exchange:

http://www.josuegomes.com/codeblog/dhserver.htm

[p-alik]

I replaced misleading title of the issue because - in my case - the message SSL failure appears only if client/worker closes connection to gearmand.

[esabol]

FWIW, I tried setting the SSL cipher list in my clients and workers to "DEFAULT:!DH", and I still get this error.

[p-alik]

io.cc writes the log message. errno:%d should be remove in the line because error code is already a part of the message

[jayhooly]

Trying to log into SIPhone Biz for work,
I keep getting this message,
'siphone_biz error:00000005:lib(0):func(0):dh lib'
anyone know what this is?

[esabol]

anyone know what this is?

This repo doesn't have anything to do with "SIPhone Biz", but it's basically an error message from the OpenSSL library used by the software.