Hi I am trying to make a Gsoap call to a HTTPS service, I understand that GSOAP provides option to call HTTPS service using "soap_ssl_client_context" function.
I am using the function in my client application as below if (soap_ssl_client_context (&lp_Soap, SOAP_SSL_DEFAULT, "./JT-PROD.prvkey.1024.pem", // This is the private key generated using openssl genrsa cmd NULL, // I dont have any PWD so passing it as null "/users/spv/spv/mahant/certnew.pem", //MY CA sent me this certificate NULL, // NULL) ) MY KEy file is in below format -----BEGIN RSA PRIVATE KEY----- ENCODED KEYS -----END RSA PRIVATE KEY----- My certnew.pem is in below format -----BEGIN CERTIFICATE----- Encoded file -----END CERTIFICATE----- MY CA had sent me back 2 file certnew.pem and certnew.p7b, Not sure how to use this .p7b file. I am just using certnew.cer at the moment. I am getting below errors when i run the application to hit the HTTPS service I am printing below errors in stdsoap2.c using ERR_get_error() function error:0906D06C:PEM routines:PEM_read_bio:no start line error:140DC009:SSL routines:SSL_CTX_use_certificate_chain_file:PEM lib error:14094410:SSL routines:SSL3_READ_BYTES:sslv3 alert handshake failure SOAP 1.1 fault: SOAP-ENV:Client [no subcode] "EOF was observed that violates the protocol. The client probably provided invalid authentication information." Detail: SSL_connect error in tcp_connect() Somebody please help me, I am facing this issue and i had been trying variou things from last 1 week but of no help. To add on, When i created KEYSTORE using private key file and certnew.pem and loaded to SOAP UI, I was able to hit the serice. This means certicates are valid, just that i am not able to use it properly from openssl C application. Regards Mahant -- View this message in context: http://old.nabble.com/Openssl-certificate-errors-tp33544954p33544954.html Sent from the OpenSSL - Dev mailing list archive at Nabble.com. ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org
