<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=us-ascii">
<META content="MSHTML 6.00.2800.1400" name=GENERATOR></HEAD>
<BODY>
<DIV><FONT face=Arial size=2><SPAN class=935280018-24032004>I am trying to
implement a very simple CORBA SSL setup, but I have ran into a pesky error
message that I cannot solve. The scenario is this: I have a very simple IDL, one
object one method that is used to pass XML back and forth. I am only acting
as a client also. I have this implemented and working using visibroker, so
I know that my certificates/key/password is ok. What happens when I implement
this in omniorb/openssl, is the method call fails, with this error
message:</SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN
class=935280018-24032004></SPAN></FONT> </DIV>
<DIV><FONT face=Arial size=2><SPAN class=935280018-24032004>omniORB: Client
attempt to connect to giop:ssl:139.76.204.44:56700<BR>omniORB: openSSL error
detected in sslAddress::connect. Reason: error:14094412:SSL
routines:SSL3_READ_BYTES:sslv3 alert bad certificate</SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN class=935280018-24032004>omniORB: throw
giopStream::CommFailure from
giopStream.cc:1070(1,NO,TRANSIENT_ConnectFailed)</SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><SPAN class=935280018-24032004><FONT face=Arial size=2>I am setting the
three variables, and omni/openssl doesnt seem to complain about them, as if I
change things around to the way they should be it errors out.
</FONT></SPAN></DIV>
<DIV><SPAN class=935280018-24032004><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=935280018-24032004><FONT face=Arial
size=2> sslContext::certificate_authority_file =
"BSroot.pem";<BR> sslContext::key_file =
"BSclient.pem";<BR> sslContext::key_file_password =
"xxxxxxxxx";</FONT></SPAN></DIV>
<DIV><SPAN class=935280018-24032004><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=935280018-24032004><FONT face=Arial size=2>The private key is
</FONT></SPAN></DIV>
<DIV><SPAN class=935280018-24032004><FONT face=Arial
size=2>RSA</FONT></SPAN></DIV>
<DIV><SPAN class=935280018-24032004><FONT face=Arial size=2>Proc-Type:
4,ENCRYPTED<BR>DEK-Info: DES-EDE3-CBC,C97B9B4087B0D5EA</FONT></SPAN></DIV>
<DIV><SPAN class=935280018-24032004><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=935280018-24032004><FONT face=Arial size=2>I have the
certificate that was assigned also in the BSclient file, and the root
certificate in the BSroot file. </FONT></SPAN></DIV>
<DIV><SPAN class=935280018-24032004><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=935280018-24032004><FONT face=Arial size=2>I do not have any
problems all the way up to the method call. I can string to object
and narrow, and it seems happy. Any ideas?</FONT></SPAN></DIV>
<DIV><SPAN class=935280018-24032004><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=935280018-24032004><FONT face=Arial size=2>Thanks in
advance!</FONT></SPAN></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV align=left><FONT face=Arial size=2>David Foust<BR>ILEC Gateway
Developer<BR>ITC DeltaCom<BR></FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV></BODY></HTML>