cURL / Mailing Lists / curl-users / Single Mail

curl-users

curl: (35) error:14094412:SSL routines:SSL3_READ_BYTES:sslv3

From: Don Cohen <don-curl-zyx_at_isis.cs3-inc.com>
Date: Fri, 4 Mar 2011 11:21:18 -0800

Don Cohen writes:
>
> Here's my command
> curl -E /root/key-cert https://ewsg-cert.prudent...
> and the result:
> curl: (35) error:14094412:SSL routines:SSL3_READ_BYTES:sslv3 alert
> bad certificate
It seems that this error comes from the server.
I wish curl could tell me what part of the error is its own message
and what part came from the server.
The answer to my question in this case is that the server could not
verify the certificate. In this case the problem was solved by
sending the entire certificate chain as the certificate.

> This seems weird to me:
> Note that this certificate is the
> private key and the private certificate concatenated!
  --key <key>
      (SSL) Private key file name. Allows you to provide your private
      key in this separate file.
This evidently means that if you use --key then the -E need not
contain your private key. I wish the man page mentioned that under
the -E argument. In fact it would be better not to even allow this
concatenated version, but mention under -E that you also need to
supply a --key argument.

-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-users
FAQ: http://curl.haxx.se/docs/faq.html
Etiquette: http://curl.haxx.se/mail/etiquette.html
Received on 2011-03-04