|

Computer Security

»

Encryption and Cryptography

»

SSL Client does not work

View: New views

5 Messages — Rating Filter: Alert me

	SSL Client does not work by Mathias Spoerr :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message Some parts of this message have been removed. Learn more about Nabble's security policy. Hello, I already use cryptlib for SSH and wanted to add SSL support to my application, but it does not work: Code: cryptInit(); CRYPT_SESSION cryptSession; int retKey = 0; // Create the session retKey = cryptCreateSession(&cryptSession, CRYPT_UNUSED, CRYPT_SESSION_SSL); This function returns with "-2". What am I missing? I use cryptlib version 3.3.2 Thanks, Mathias _______________________________________________ Cryptlib mailing list Cryptlib@... via Mail: cryptlib-request@... Archive: ftp://ftp.franken.de/pub/crypt/cryptlib/archives/ http://news.gmane.org/gmane.comp.encryption.cryptlib Posts from non-subscribed addresses are blocked to prevent spam, please subscribe in order to post messages.
	Re: SSL Client does not work by Peter Gutmann :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message "Mathias Spoerr" <mathias@...> writes: > retKey = cryptCreateSession(&cryptSession, CRYPT_UNUSED, > CRYPT_SESSION_SSL); > >This function returns with "-2". What am I missing? I don't know, you'd have to step into the code to see where the error is coming from. Does the self-test work? Peter. _______________________________________________ Cryptlib mailing list Cryptlib@... via Mail: cryptlib-request@... Archive: ftp://ftp.franken.de/pub/crypt/cryptlib/archives/ http://news.gmane.org/gmane.comp.encryption.cryptlib Posts from non-subscribed addresses are blocked to prevent spam, please subscribe in order to post messages.
	Re: SSL Client does not work by Mathias Spoerr :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message Hello Peter, thank you for your answer. No, the self-test does not work. I get the following error: Testing cert chain write to key file ... cryptKeysetOpen() failed with error code -21, line 894. I have some problems with debugging the lib and will try again tomorrow. Regards, Mathias -----Ursprüngliche Nachricht----- Von: pgut001 [mailto:pgut001@...] Gesendet: Donnerstag, 04. Juni 2009 05:11 An: cryptlib@...; mathias@... Betreff: Re: [Cryptlib] SSL Client does not work "Mathias Spoerr" <mathias@...> writes: > retKey = cryptCreateSession(&cryptSession, CRYPT_UNUSED, > CRYPT_SESSION_SSL); > >This function returns with "-2". What am I missing? I don't know, you'd have to step into the code to see where the error is coming from. Does the self-test work? Peter. _______________________________________________ Cryptlib mailing list Cryptlib@... via Mail: cryptlib-request@... Archive: ftp://ftp.franken.de/pub/crypt/cryptlib/archives/ http://news.gmane.org/gmane.comp.encryption.cryptlib Posts from non-subscribed addresses are blocked to prevent spam, please subscribe in order to post messages.
	Re: SSL Client does not work by Mathias Spoerr :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message Hello again, I managed to debug the lib when running the test app... Some words to my environment: I use Windows 7 and Visual Studio 2008. 1) When running as Administrator, I get a debug assertion: dnc.c Line 551: Expression DEBUG_WARN 2) When running as normal user, I get the error message: Testing cert chain write to key file ... cryptKeysetOpen() failed with error code -21, line 894. Where should I set break points and which information do you need? Regards, Mathias -----Ursprüngliche Nachricht----- Von: pgut001 [mailto:pgut001@...] Gesendet: Donnerstag, 04. Juni 2009 05:11 An: cryptlib@...; mathias@... Betreff: Re: [Cryptlib] SSL Client does not work "Mathias Spoerr" <mathias@...> writes: > retKey = cryptCreateSession(&cryptSession, CRYPT_UNUSED, > CRYPT_SESSION_SSL); > >This function returns with "-2". What am I missing? I don't know, you'd have to step into the code to see where the error is coming from. Does the self-test work? Peter. _______________________________________________ Cryptlib mailing list Cryptlib@... via Mail: cryptlib-request@... Archive: ftp://ftp.franken.de/pub/crypt/cryptlib/archives/ http://news.gmane.org/gmane.comp.encryption.cryptlib Posts from non-subscribed addresses are blocked to prevent spam, please subscribe in order to post messages.
	Re: SSL Client does not work by Peter Gutmann :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message "Mathias Spoerr" <mathias@...> writes: >I managed to debug the lib when running the test app... Some words to my >environment: I use Windows 7 and Visual Studio 2008. Uhh, so you're using a beta version of an OS for your testing? >1) When running as Administrator, I get a debug assertion: dnc.c Line 551: >Expression DEBUG_WARN This won't affect the overall operation though, since it's only a warning that doesn't return an error status (it's also a sanity-check on the operation of getNameInfo(), this means that an incoming connection was accepted via accept() but then an attempt to see which address it came from is failing). Could you put a breakpoint in getNameInfo() in io/dns.c and see where the debug assertion is coming from, and what the return value of getnameinfo() is, and what the values in nameBuffer and portBuffer are? >2) When running as normal user, I get the error message: >Testing cert chain write to key file ... >cryptKeysetOpen() failed with error code -21, line 894. > >Where should I set break points and which information do you need? In openKeysetStream() in cryptkey.c, and then step down into wherever the error status came from to see which operation failed and what the OS-level error status is. Peter. _______________________________________________ Cryptlib mailing list Cryptlib@... via Mail: cryptlib-request@... Archive: ftp://ftp.franken.de/pub/crypt/cryptlib/archives/ http://news.gmane.org/gmane.comp.encryption.cryptlib Posts from non-subscribed addresses are blocked to prevent spam, please subscribe in order to post messages.