ACVP [ERR][acvp_curl_http_post:354]--> Curl failed with code 60
Closed this issue · 2 comments
Hi,
There are some problems I meet when execute acvp client. The acvp client compiled in my local PC works well until yesterday. Then there is nothing change to the compiled binary file, but I got the curl failed with code 60 (SSL peer certificate or SSH remote key was not OK) when I executed as usual.
***ACVP [STATUS][acvp_login:2723]--> Logging in...
***ACVP [ERR][acvp_curl_http_post:354]--> Curl failed with code 60 (SSL peer certificate or SSH remote key was not OK)
***ACVP [ERR][log_network_status:1245]--> Received no response from server.
***ACVP [STATUS][acvp_login:2735]--> Login Send Failed
***ACVP [ERR][acvp_run:3406]--> Failed to login with ACVP server
First, I verified my certificate which get from NIST again, the certificate is still valid and the private key is compatiable.
Second, I try to disable the curl CURLOPT_SSL_VERIFYPEER option then let curl does not nedd to verify my peer certificate, but it turns that I cannot get the response from the server.
***ACVP [STATUS][acvp_login:2723]--> Logging in...
***ACVP [ERR][acvp_curl_http_post:355]--> Curl failed with code 52 (Server returned nothing (no headers, no data))
***ACVP [ERR][log_network_status:1246]--> Received no response from server.
***ACVP [STATUS][acvp_login:2735]--> Login Send Failed
***ACVP [ERR][acvp_run:3406]--> Failed to login with ACVP server
Third, I look up the IPV4 of nameserver of "demo.acvts.nist.gov", then I got address 52.204.191.193, but I cannot direct ping 52.204.191.193 is the server under maintained or updated?
Could you help me to figure out where the problem is? Thanks in advance.
Hi,
There are a lot of variables at play with TLS connections, but If nothing about your build or environment has changed, this could be a result of:
1.) changes to the NIST server (in which case you would want to ask at https://github.com/usnistgov/ACVP-Server/)
2.) A change or expiration of your local CA file (Are you setting ACV_CA_FILE?)
I am not having any issues logging in; it may be best to ask at the NIST repo linked above.
Thanks,
Andrew
Hi Andrew,
Thanks for your help. I will check the NIST server later.