[erlang-questions] {tls_alert,"handshake failure"}

Rad Gruchalski <>
Tue Mar 3 21:05:36 CET 2015


Alex,

I believe, this is because you are using self signed certificates and the signing certificate provided in the bundle is not added to trusted certificates.










Kind regards,

Radek Gruchalski

 (mailto:)
 (mailto:)
de.linkedin.com/in/radgruchalski/ (http://de.linkedin.com/in/radgruchalski/)

Confidentiality:
This communication is intended for the above-named person and may be confidential and/or legally privileged.
If it has come to you in error you must take no action based on it, nor must you copy or show it to anyone; please delete/destroy and inform the sender immediately.



On Monday, 2 March 2015 at 21:46, Alex Hudich wrote:

> Hi
>  
> I’ve got some strange errors when I try to make SSL connection to a web-site with peer verification on.  
>  
> Here’s an example:
>  
> I’ve downloaded PEM certificates from https://raw.githubusercontent.com/bagder/ca-bundle/master/ca-bundle.crt
>  
> Then I start erl and run a command ssl:start().
>  
> Then I try to connect somewhere (I renamed ca-bundle.crt file to a cacert.pem):
>  
> 2> ssl:connect( "t.ileads.ru (http://t.ileads.ru)", 443, [{verify,verify_peer},{cacertfile,"cacert.pem"}]).
>  
> =ERROR REPORT==== 2-Mar-2015::23:32:15 ===
> SSL: certify: ssl_handshake.erl:1403:Fatal error: handshake failure
> {error,{tls_alert,"handshake failure"}}
>  
>  
> Without peer verification everything went ok.  
>  
> What’s wrong? Or maybe I do something wrong?
>  
> --
> cul8er, Alex.
> _______________________________________________
> erlang-questions mailing list
>  (mailto:)
> http://erlang.org/mailman/listinfo/erlang-questions
>  
>  


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://erlang.org/pipermail/erlang-questions/attachments/20150303/c281ae86/attachment.html>


More information about the erlang-questions mailing list