login about faq

Connection via TLS 1.2 with Cipher TLS_RSA_WITH_AES_128_CBC_SHA fails with handshake failure but is successful via TLS 1.1 with Cipher TLS_RSA_WITH_AES_128_CBC_SHA.

In the Chilkat log the only difference I can identify is that when attempting the TLS 1.2 the signaturesize: 132 and via TLS 1.1 the signaturesize: 128.

asked Aug 02 at 14:46

mpaull's gravatar image

mpaull
1


This problem may have been fixed. Please let me know the operating system and programming language, and I can try to provide a new build.

link

answered Aug 08 at 17:55

chilkat's gravatar image

chilkat ♦♦
11.8k316358420

The operating System is windows 10 Pro running Microsoft .Net Framework 4.5

(Aug 08 at 18:11) mpaull

Please try this new build:

32-bit Download: http://www.chilkatsoft.com/download/preRelease/ChilkatDotNet45-9.5.0-win32.zip
64-bit Download: http://www.chilkatsoft.com/download/preRelease/ChilkatDotNet45-9.5.0-x64.zip

If the problem remains, please post the LastErrorText or post the hostname/IP and port number where I can test. (or send in private email if you prefer..)

link

answered Aug 08 at 18:35

chilkat's gravatar image

chilkat ♦♦
11.8k316358420

Here is the failed log @ TLS1.2 Sending ClientCertVerify message... signatureSize: 132 --sendCertificateVerify readHandshakeMessages(46ms): processAlert(16ms): TlsAlert(16ms): level: fatal descrip: handshake failure --TlsAlert passiveClose: Passive socket closing complete. --passiveClose --processAlert Aborting handshake because of fatal alert. --readHandshakeMessages --clientHandshake2 --clientHandshake Client handshake failed. (3) --connectImplicitSsl ConnectFailReason: 109 --connect2 --socket2Connect Failed. --clsSocketConnect Failed. --Connect_Socket--ChilkatLog

(Aug 12 at 10:30) mpaull

How do I PM you as I could provide the entire log

(Aug 12 at 10:30) mpaull

Just wondering if that last error text provided any help as we are still having the issue.

(Aug 18 at 10:19) mpaull

Another item I noticed but cannot share fully do to text length is in the log output. First attempt at TLS 1.2 allowedTlsCiphers: tls_ecdhe_rsa_with_aes_128_cbc_sha but in the second attempt TLS 1.1 the same value in log is allowedTlsCiphers: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA. But in code they are instantiated in all CAPS in both attempts.

(Aug 18 at 12:41) mpaull

Hi, chilkat!

Can you add release for 4.0 framework, please? We still use an old one.

link

answered Aug 11 at 03:40

Sergey's gravatar image

Sergey
1

link

answered Aug 11 at 13:14

chilkat's gravatar image

chilkat ♦♦
11.8k316358420

Thanks a lot! Can you say - when a new release is planning?

link

answered Aug 12 at 08:08

Sergey's gravatar image

Sergey
1

The new release is scheduled for mid-September.

link

answered Aug 12 at 11:43

chilkat's gravatar image

chilkat ♦♦
11.8k316358420

Please note that the Forum is not a good way to get paid-for support. The forum is intended for user-to-user discussion.

If you are a licensed Chilkat customer with support that has not yet expired, please send email to support@chilkatsoft.com.

If your support has expired and not lapsed for more then 3 months, then a renewal is possible at https://www.chilkatsoft.com/renewals.asp.

If support has expired for a longer period of time, then a regular purchase is required.

At this time, Chilkat is busy helping licensed customers with non-expired support. As time permits, Chilkat will try to answer Forum questions.

link

answered Aug 18 at 12:44

chilkat's gravatar image

chilkat ♦♦
11.8k316358420

Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or __italic__
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Tags:

×32
×2

Asked: Aug 02 at 14:46

Seen: 339 times

Last updated: Aug 18 at 12:44

powered by OSQA