Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

SSL error when connectnig to AssetLib on Windows #5596

Closed
vnen opened this issue Jul 8, 2016 · 7 comments
Closed

SSL error when connectnig to AssetLib on Windows #5596

vnen opened this issue Jul 8, 2016 · 7 comments
Labels
bug platform:windows topic:core
Milestone
2.1

Comments

@vnen
Copy link
Member

vnen commented Jul 8, 2016

Can't connect to AssetLib on Windows. There's an SSL error because the certificate is not validated. Here's what the console reports:

..https://godotengine.org/asset-library/api
1 url: https://godotengine.org/asset-library/api/configure
yes SSL
2 url: godotengine.org/asset-library/api/configure
request string: /asset-library/api/configure
3 url: godotengine.org
4 url: godotengine.org
Requesting:
        URL: godotengine.org
        String: /asset-library/api/configure
        Port: 443
        SSL: 1
        Validate SSL: 1
..https://godotengine.org/asset-library/api
1 url: https://godotengine.org/asset-library/api/configure
yes SSL
2 url: godotengine.org/asset-library/api/configure
request string: /asset-library/api/configure
3 url: godotengine.org
4 url: godotengine.org
Requesting:
        URL: godotengine.org
        String: /asset-library/api/configure
        Port: 443
        SSL: 1
        Validate SSL: 1
Cause: certificate signature failure
6696:error:04091077:rsa routines:INT_RSA_VERIFY:wrong signature length:drivers\builtin_openssl2\crypto\rsa\rsa_sign.c:186:
6696:error:0D0C5006:asn1 encoding routines:ASN1_item_verify:EVP lib:drivers\builtin_openssl2\crypto\asn1\a_verify.c:218:
C E R T   S T R :   / C = U S / O = L e t ' s   E n c r y p t / C N = L e t ' s   E n c r y p t   A u t h o r i t y   X 3
 V A L I D :   0
 C O N N E C T I O N   R E S U L T :   - 1
 6696:error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed:drivers\builtin_openssl2\ssl\s3_clnt.c:1258:
E R R O R :   S t r e a m P e e r O p e n S S L : : _ p r i n t _ e r r o r :   S o m e   I / O   e r r o r   o c c u r r e d .   T h e   O p e n S S L   e r r o r   q u e u e   m a y   c o n t a i n   m o r e   i n f o r m a t i o n   o n   t h e   e r r o r .
       A t :   d r i v e r s \ o p e n s s l \ s t r e a m _ p e e r _ o p e n s s l . c p p : 4 4 0
 E R R O R :   S t r e a m P e e r O p e n S S L : : _ p r i n t _ e r r o r :   A   f a i l u r e   i n   t h e   S S L   l i b r a r y   o c c u r r e d ,   u s u a l l y   a   p r o t o c o l   e r r o r .
       A t :   d r i v e r s \ o p e n s s l \ s t r e a m _ p e e r _ o p e n s s l . c p p : 4 4 2
@vnen vnen added this to the 2.1 milestone Jul 8, 2016
@reduz
Copy link
Member

reduz commented Jul 8, 2016

I've seen this error before when openssl is compiled with the wrong
architecture (mismatched 32/64) I would check te build options and ssl
config. I think I made some macros in the ssl config to prevent this
problem long ago, but were probably lost with the upgrade
On Jul 8, 2016 13:45, "George Marques" notifications@github.com wrote:

Can't connect to AssetLib on Windows. There's an SSL error because the
certificate is not validated. Here's what the console reports:

..https://godotengine.org/asset-library/api
1 url: https://godotengine.org/asset-library/api/configure
yes SSL
2 url: godotengine.org/asset-library/api/configure
request string: /asset-library/api/configure
3 url: godotengine.org
4 url: godotengine.org
Requesting:
URL: godotengine.org
String: /asset-library/api/configure
Port: 443
SSL: 1
Validate SSL: 1
..https://godotengine.org/asset-library/api
1 url: https://godotengine.org/asset-library/api/configure
yes SSL
2 url: godotengine.org/asset-library/api/configure
request string: /asset-library/api/configure
3 url: godotengine.org
4 url: godotengine.org
Requesting:
URL: godotengine.org
String: /asset-library/api/configure
Port: 443
SSL: 1
Validate SSL: 1
Cause: certificate signature failure
6696:error:04091077:rsa routines:INT_RSA_VERIFY:wrong signature length:drivers\builtin_openssl2\crypto\rsa\rsa_sign.c:186:
6696:error:0D0C5006:asn1 encoding routines:ASN1_item_verify:EVP lib:drivers\builtin_openssl2\crypto\asn1\a_verify.c:218:
C E R T S T R : / C = U S / O = L e t ' s E n c r y p t / C N = L e t ' s E n c r y p t A u t h o r i t y X 3
V A L I D : 0
C O N N E C T I O N R E S U L T : - 1
6696:error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed:drivers\builtin_openssl2\ssl\s3_clnt.c:1258:
E R R O R : S t r e a m P e e r O p e n S S L : : _ p r i n t _ e r r o r : S o m e I / O e r r o r o c c u r r e d . T h e O p e n S S L e r r o r q u e u e m a y c o n t a i n m o r e i n f o r m a t i o n o n t h e e r r o r .
A t : d r i v e r s \ o p e n s s l \ s t r e a m _ p e e r _ o p e n s s l . c p p : 4 4 0
E R R O R : S t r e a m P e e r O p e n S S L : : _ p r i n t _ e r r o r : A f a i l u r e i n t h e S S L l i b r a r y o c c u r r e d , u s u a l l y a p r o t o c o l e r r o r .
A t : d r i v e r s \ o p e n s s l \ s t r e a m _ p e e r _ o p e n s s l . c p p : 4 4 2


You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub
#5596, or mute the thread
https://github.com/notifications/unsubscribe/AF-Z2xNH1GqEMDmA-mP7ddfCF6PFNW0yks5qTn7DgaJpZM4JIM6U
.

@reduz
Copy link
Member

reduz commented Jul 8, 2016

Ssl has a macro somewhere to specify 32/64.. must be set according to godot
build options
On Jul 8, 2016 13:59, "Juan Linietsky" reduzio@gmail.com wrote:

I've seen this error before when openssl is compiled with the wrong
architecture (mismatched 32/64) I would check te build options and ssl
config. I think I made some macros in the ssl config to prevent this
problem long ago, but were probably lost with the upgrade
On Jul 8, 2016 13:45, "George Marques" notifications@github.com wrote:

Can't connect to AssetLib on Windows. There's an SSL error because the
certificate is not validated. Here's what the console reports:

..https://godotengine.org/asset-library/api
1 url: https://godotengine.org/asset-library/api/configure
yes SSL
2 url: godotengine.org/asset-library/api/configure
request string: /asset-library/api/configure
3 url: godotengine.org
4 url: godotengine.org
Requesting:
URL: godotengine.org
String: /asset-library/api/configure
Port: 443
SSL: 1
Validate SSL: 1
..https://godotengine.org/asset-library/api
1 url: https://godotengine.org/asset-library/api/configure
yes SSL
2 url: godotengine.org/asset-library/api/configure
request string: /asset-library/api/configure
3 url: godotengine.org
4 url: godotengine.org
Requesting:
URL: godotengine.org
String: /asset-library/api/configure
Port: 443
SSL: 1
Validate SSL: 1
Cause: certificate signature failure
6696:error:04091077:rsa routines:INT_RSA_VERIFY:wrong signature length:drivers\builtin_openssl2\crypto\rsa\rsa_sign.c:186:
6696:error:0D0C5006:asn1 encoding routines:ASN1_item_verify:EVP lib:drivers\builtin_openssl2\crypto\asn1\a_verify.c:218:
C E R T S T R : / C = U S / O = L e t ' s E n c r y p t / C N = L e t ' s E n c r y p t A u t h o r i t y X 3
V A L I D : 0
C O N N E C T I O N R E S U L T : - 1
6696:error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed:drivers\builtin_openssl2\ssl\s3_clnt.c:1258:
E R R O R : S t r e a m P e e r O p e n S S L : : _ p r i n t _ e r r o r : S o m e I / O e r r o r o c c u r r e d . T h e O p e n S S L e r r o r q u e u e m a y c o n t a i n m o r e i n f o r m a t i o n o n t h e e r r o r .
A t : d r i v e r s \ o p e n s s l \ s t r e a m _ p e e r _ o p e n s s l . c p p : 4 4 0
E R R O R : S t r e a m P e e r O p e n S S L : : _ p r i n t _ e r r o r : A f a i l u r e i n t h e S S L l i b r a r y o c c u r r e d , u s u a l l y a p r o t o c o l e r r o r .
A t : d r i v e r s \ o p e n s s l \ s t r e a m _ p e e r _ o p e n s s l . c p p : 4 4 2


You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub
#5596, or mute the thread
https://github.com/notifications/unsubscribe/AF-Z2xNH1GqEMDmA-mP7ddfCF6PFNW0yks5qTn7DgaJpZM4JIM6U
.

@akien-mga
Copy link
Member

If so, please try to set the macro via SCsub if possible and not by editing the upstream files, to avoid such issues on upgrade.

@vnen
Copy link
Member Author

vnen commented Jul 8, 2016

That seems to be the case. I built for 32 bits and the error is not present.

@vnen
Copy link
Member Author

vnen commented Jul 8, 2016

BTW there's this already https://github.com/godotengine/godot/blob/master/drivers/builtin_openssl2/openssl/opensslconf.h#L12-L24

OPENSSL_USE_64_BITS is defined, but it doesn't seem to help in this issue.

@reduz
Copy link
Member

reduz commented Jul 8, 2016

I wonder if godot is defining the USE_64BITS flag correctly

On Fri, Jul 8, 2016 at 3:15 PM, George Marques notifications@github.com
wrote:

BTW there's this already
https://github.com/godotengine/godot/blob/master/drivers/builtin_openssl2/openssl/opensslconf.h#L12-L24

OPENSSL_USE_64_BITS is defined, but it doesn't seem to help in this issue.


You are receiving this because you commented.
Reply to this email directly, view it on GitHub
#5596 (comment),
or mute the thread
https://github.com/notifications/unsubscribe/AF-Z2-UD20qzC2HReHBnx3D73W0x4lLTks5qTpPZgaJpZM4JIM6U
.

@akien-mga
Copy link
Member

I wonder if godot is defining the USE_64BITS flag correctly

Probably not, but when it's not defined, there's in theory the #elif _WIN32 || _WIN64.

@vnen vnen mentioned this issue Jul 9, 2016
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug platform:windows topic:core
Projects
None yet
Milestone
2.1
Development

No branches or pull requests
3 participants
@akien-mga @vnen @reduz