curl-library
Re: Occasionally facing connection issues with NSS
Date: Fri, 26 Apr 2019 17:39:20 +0530
Please find the logs after patch:
019-04-26 04:57:09.000|info |||0||Initializing NSS with certpath:
sql:/etc/pki/nssdb
||qwerty.cc:123|
2019-04-26 04:57:10.000|info |||0||NSS error -8127 (SEC_ERROR_NO_TOKEN)
||qwerty.cc:123|
2019-04-26 04:57:10.000|info |||0||The security card or token does not
exist, needs to be initialized, or has been removed.
||qwerty.cc:123|
2019-04-26 04:57:10.000|info |||0||Closing connection 0
||qwerty.cc:123|
2019-04-26 04:57:10.000|info |||0||Hostname <hostname> was found in DNS
cache
||qwerty.cc:123|
2019-04-26 04:57:10.000|info |||0|| Trying 11.111.111.11...
||qwerty.cc:123
2019-04-26 04:57:10.000|info |||0||Connected to <hostname> (11.111.111.11)
port 443 (#1)
||qwerty.cc:123|
2019-04-26 04:57:10.000|info |||0||Initializing NSS with certpath:
sql:/etc/pki/nssdb
||qwerty.cc:123|
2019-04-26 04:57:10.000|info |||0||skipping SSL peer certificate
verification
||qwerty.cc:123|
2019-04-26 04:57:10.000|info |||0||ALPN/NPN, server did not agree to a
protocol
||qwerty.cc:123|
2019-04-26 04:57:10.000|info |||0||SSL connection using
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
*After this few data transfer was success and then it started continuously
failing with below logs:*
2019-04-26 05:02:20.000|info |||0||Hostname <hostname> was found in DNS
cache
||qwerty.cc:123|
2019-04-26 05:02:20.000|info |||0|| Trying 11.111.111.11...
||qwerty.cc:123|
2019-04-26 05:02:20.000|info |||0||Connected to <hostname> (11.111.111.11)
port 443 (#1)
||qwerty.cc:123|
2019-04-26 05:02:20.000|info |||0||Initializing NSS with certpath:
sql:/etc/pki/nssdb
||qwerty.cc:123|
2019-04-26 05:02:20.000|info |||0||Unable to initialize NSS database
||qwerty.cc:123|
2019-04-26 05:02:20.000|info |||0||Initializing NSS with certpath: none
||qwerty.cc:123|
2019-04-26 05:02:20.000|info |||0||Unable to initialize NSS
On Fri, Apr 26, 2019 at 5:19 PM surya chandrika <contactsuryac_at_gmail.com>
wrote:
> The verbose output does not include any information about the reason why
> NSS
> failed to initialize. Could you please rebuild libcurl with the following
> patch and capture the verbose output again?
>
> https://github.com/curl/curl/pull/3808/files
>
> Yes - i will try this , Thanks
>
> On Fri, Apr 26, 2019 at 4:00 PM Kamil Dudka <kdudka_at_redhat.com> wrote:
>
>> On Friday, April 26, 2019 7:08:52 AM CEST surya chandrika via
>> curl-library
>> wrote:
>> > I am occasionally seeing "Unable to initialize NSS database" log during
>> my
>> > curl call initialization from my CPP module using libcurl and at that
>> time,
>> > my curl calls are not working.
>> > *Note:* only at certain times , else is works properly without any
>> changes
>> > in system
>> >
>> > Please find the logs in working case and not working case below, if you
>> see
>> > the timestamp its just the next call:-
>>
>> The verbose output does not include any information about the reason why
>> NSS
>> failed to initialize. Could you please rebuild libcurl with the
>> following
>> patch and capture the verbose output again?
>>
>> https://github.com/curl/curl/pull/3808/files
>>
>> Note that there is no vtls/ subdirectory in the source tree of curl-7.29
>> but
>> if you just remove that substring from the patch, it applies fine on the
>> el7
>> source code.
>>
>> Kamil
>>
>>
>>
-------------------------------------------------------------------
Unsubscribe: https://cool.haxx.se/list/listinfo/curl-library
Etiquette: https://curl.haxx.se/mail/etiquette.html
Received on 2019-04-26