reSIProcate

Mailing Lists

Source Code

Google Search:



< Previous by Date Date Index Next by Date >
  Thread Index Next in Thread >

[reSIProcate-users] Please help, TLS not working on XP, urgrently

Hi all, I'm using the reSIProcate 1.4.1 for my UA, the UA use TLS for SIP message with SIP server,
now I got a strange issue, the UA working fine on Vista via TLS, but on XP, got the error: certificate verify failed.

These two PCs installed same root certificate file - it was installed in the root trusted store area. and I'm using the winSecureity for my UA.

I have attached two log files- the textfile1.txt which generated on XP, the textfile2.txt on the Vista.

Please help me, thank you in advance.

DEBUG | 20090416-210717.546 | MY UA | RESIP | 2936 | SipStack.cxx:314 | SEND: 
SipReq:  REGISTER 202.6.179.11:8022 tid=b512cc06fa2cda39 cseq=REGISTER 
contact=110000000000 / 1 from(tu)
DEBUG | 20090416-210717.546 | MY UA | RESIP:TRANSACTION | 2580 | 
TimerQueue.cxx:85 | Adding timer: Timer F tid=b512cc06fa2cda39 ms=32000
DEBUG | 20090416-210717.546 | MY UA | RESIP:TRANSPORT | 2580 | 
TransportSelector.cxx:316 | Looking up dns entries for sip:202.6.179.11:8022
DEBUG | 20090416-210717.546 | MY UA | RESIP:DNS | 2580 | DnsResult.cxx:214 | 
DnsResult::lookup sip:202.6.179.11:8022
DEBUG | 20090416-210717.546 | MY UA | RESIP:DNS | 2580 | DnsResult.cxx:398 | 
Numeric result so return immediately: [ V4 202.6.179.11:8022 TLS target 
domain=202.6.179.11 mFlowKey=0 ]
DEBUG | 20090416-210717.546 | MY UA | RESIP:TRANSPORT | 2580 | 
ConnectionManager.cxx:77 | Could not find a connection for [ V4 
202.6.179.11:8022 TLS target domain=202.6.179.11 mFlowKey=0 ]
DEBUG | 20090416-210717.546 | MY UA | RESIP:TRANSPORT | 2580 | 
TransportSelector.cxx:1240 | Searching forTLStransport for domain='' have 1
DEBUG | 20090416-210717.546 | MY UA | RESIP:TRANSPORT | 2580 | 
TransportSelector.cxx:1249 | Found a default transport.
DEBUG | 20090416-210717.546 | MY UA | RESIP:TRANSPORT | 2580 | 
TransportSelector.cxx:562 | Looked up source for destination: [ V4 
202.6.179.11:8022 TLS target domain=202.6.179.11 mFlowKey=0 ] -> [ V4 
192.168.1.2:0 TLS target domain=202.6.179.11 mFlowKey=0 ] sent-by= sent-port=0
DEBUG | 20090416-210717.546 | MY UA | RESIP:TRANSPORT | 2580 | 
TransportSelector.cxx:940 | Transmitting to [ V4 202.6.179.11:8022 TLS target 
domain=202.6.179.11 mFlowKey=0 ] tlsDomain= via [ V4 192.168.1.2:6738 TLS 
target domain=202.6.179.11 mFlowKey=0 ]



REGISTER sip:202.6.179.11:8022 SIP/2.0

Via: SIP/2.0/TLS 
192.168.1.2:6738;branch=z9hG4bK-d8754z-b512cc06fa2cda39-1---d8754z-;rport

Max-Forwards: 70

Contact: 
<sip:110000000000@xxxxxxxxxxx:6738;rinstance=5fa94ba75730522f;transport=TLS>

To: <sip:110000000000@xxxxxxxxxxxx:8022>

From: <sip:110000000000@xxxxxxxxxxxx:8022>;tag=e9454413

Call-ID: MmRlODVkNDRmMTkwYmY1ZTFjMzU2MGJjNGQ1ODg3ZTM.

CSeq: 1 REGISTER

Expires: 90

Allow: INVITE, ACK, CANCEL, OPTIONS, BYE, REFER, NOTIFY, MESSAGE, REGISTER, 
SUBSCRIBE, INFO

Supported: replaces

User-Agent: MY UA

Content-Length: 0




DEBUG | 20090416-210717.546 | MY UA | RESIP:TRANSPORT | 2580 | 
Transport.cxx:213 | Adding message to tx buffer to: [ V4 202.6.179.11:8022 TLS 
target domain=202.6.179.11 mFlowKey=0 ]
DEBUG | 20090416-210717.546 | MY UA | RESIP:TRANSPORT | 2580 | 
TcpBaseTransport.cxx:131 | Processing write for [ V4 202.6.179.11:8022 TLS 
target domain=202.6.179.11 mFlowKey=0 ]
DEBUG | 20090416-210717.546 | MY UA | RESIP:TRANSPORT | 2580 | 
ConnectionManager.cxx:77 | Could not find a connection for [ V4 
202.6.179.11:8022 TLS target domain=202.6.179.11 mFlowKey=0 ]
DEBUG | 20090416-210717.546 | MY UA | RESIP:TRANSPORT | 2580 | 
InternalTransport.cxx:86 | Creating fd=1204 V4/TCP
DEBUG | 20090416-210717.546 | MY UA | RESIP:TRANSPORT | 2580 | 
TcpBaseTransport.cxx:170 | Opening new connection to [ V4 202.6.179.11:8022 TLS 
target domain=202.6.179.11 mFlowKey=0 ]
DEBUG | 20090416-210717.546 | MY UA | RESIP:TRANSPORT | 2580 | 
ConnectionBase.cxx:49 | ConnectionBase::ConnectionBase, who: [ V4 
202.6.179.11:8022 TLS target domain=202.6.179.11 mFlowKey=0 ] 03135A48
DEBUG | 20090416-210717.546 | MY UA | RESIP:TRANSPORT | 2580 | 
ConnectionBase.cxx:62 | No compression library available: 03135A48
INFO | 20090416-210717.546 | MY UA | RESIP:TRANSPORT | 2580 | 
TlsConnection.cxx:41 | Creating TLS connection for domain  [ V4 
202.6.179.11:8022 TLS target domain=202.6.179.11 mFlowKey=0 ] on 1204
DEBUG | 20090416-210717.546 | MY UA | RESIP:TRANSPORT | 2580 | 
TlsConnection.cxx:58 | Trying to form TLS connection - acting as client
INFO | 20090416-210717.765 | MY UA | RESIP:TRANSPORT | 2580 | 
TlsConnection.cxx:183 | TLS handshake starting (client mode)
INFO | 20090416-210717.781 | MY UA | RESIP:TRANSPORT | 2580 | 
TlsConnection.cxx:188 | TLS connected
DEBUG | 20090416-210717.781 | MY UA | RESIP:TRANSPORT | 2580 | 
TlsConnection.cxx:415 | Transportwrite--Handshaking--remove from write: 1
DEBUG | 20090416-210718.015 | MY UA | RESIP:TRANSPORT | 2580 | 
ConnectionBase.cxx:553 | Creating buffer for CONN_BASE: 03135A48 [ V4 
202.6.179.11:8022 TLS target domain=202.6.179.11 mFlowKey=1204 ]
ERR | 20090416-210718.015 | MY UA | RESIP | 2580 | Security.cxx:167 | Error 
when verifying server's chain of certificates: self signed certificate in 
certificate chain, depth=1 /O=Peak/L=Copenhagen/ST=Sjaelland/C=DK/CN=peak

ERR | 20090416-210718.015 | MY UA | RESIP:TRANSPORT | 2580 | 
TlsConnection.cxx:244 | TLS handshake failed 
ERR | 20090416-210718.015 | MY UA | RESIP:TRANSPORT | 2580 | 
TlsConnection.cxx:258 | error:14090086:SSL 
routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed
ERR | 20090416-210718.015 | MY UA | RESIP:TRANSPORT | 2580 | 
TlsConnection.cxx:260 | Error code = 336134278 file=.\ssl\s3_clnt.c line=983
DEBUG | 20090416-210718.015 | MY UA | RESIP:TRANSPORT | 2580 | 
ConnectionManager.cxx:267 | ConnectionManager::process()  read=-1
DEBUG | 20090416-210718.015 | MY UA | RESIP:TRANSPORT | 2580 | 
ConnectionManager.cxx:270 | Closing connection bytesRead=-1
DEBUG | 20090416-210718.015 | MY UA | RESIP:TRANSPORT | 2580 | 
ConnectionBase.cxx:89 | ConnectionBase::~ConnectionBase 03135A48
INFO | 20090416-210718.015 | MY UA | RESIP:TRANSACTION | 2580 | 
TuSelector.cxx:85 | Sending ConnectionTerminated [ V4 202.6.179.11:8022 TLS 
target domain=202.6.179.11 mFlowKey=1204 ] to TUs
DEBUG | 20090416-210718.015 | MY UA | RESIP:DNS | 2580 | DnsResult.cxx:143 | 
Remove vip 202.6.179.11(1)
INFO | 20090416-210718.015 | MY UA | RESIP:TRANSACTION | 2580 | 
TransactionState.cxx:1738 | Try sending request to a different dns result
INFO | 20090416-210718.015 | MY UA | RESIP:TRANSACTION | 2580 | 
TransactionState.cxx:1633 | Ran out of dns entries for 202.6.179.11. Send 503
DEBUG | 20090416-210718.015 | MY UA | RESIP | 2580 | Helper.cxx:375 | 
Helper::makeResponse(SipReq:  REGISTER 202.6.179.11:8022 tid=b512cc06fa2cda39 
cseq=REGISTER contact=110000000000@xxxxxxxxxxx:6738 / 1 from(tu) code=503 
reason=
DEBUG | 20090416-210718.015 | MY UA | RESIP:DUM | 4004 | 
DialogUsageManager.cxx:1195 | connection terminated message
INFO | 20090416-210718.015 | MY UA | RESIP:DNS | 2580 | DnsUtil.cxx:145 | local 
hostname does not contain a domain part abc
DEBUG | 20090416-210718.015 | MY UA | RESIP:TRANSACTION | 2580 | 
TransactionState.cxx:2112 | Send to TU: TU: DialogUsageManager size=0 



SIP/2.0 503 Certificate Validation Failure

Via: SIP/2.0/TLS 
192.168.1.2:6738;branch=z9hG4bK-d8754z-b512cc06fa2cda39-1---d8754z-;rport

To: <sip:110000000000@xxxxxxxxxxxx:8022>;tag=2547ae35

From: <sip:110000000000@xxxxxxxxxxxx:8022>;tag=e9454413

Call-ID: MmRlODVkNDRmMTkwYmY1ZTFjMzU2MGJjNGQ1ODg3ZTM.

CSeq: 1 REGISTER

Warning: 499 abc ""

Content-Length: 0
domain=202.6.179.11 mFlowKey=0 ] tlsDomain= via [ V4 192.168.1.102:3786 TLS 
target domain=202.6.179.11 mFlowKey=0 ]



REGISTER sip:202.6.179.11:8022 SIP/2.0

Via: SIP/2.0/TLS 
192.168.1.102:3786;branch=z9hG4bK-d8754z-e166270f1e704339-1---d8754z-;rport

Max-Forwards: 70

Contact: 
<sip:110000000000@xxxxxxxxxxxxx:3786;rinstance=19f62ca289c19d8e;transport=TLS>

To: <sip:110000000000@xxxxxxxxxxxx:8022>

From: <sip:110000000000@xxxxxxxxxxxx:8022>;tag=ba2cf360

Call-ID: YTdjMzRlNTVlOGU3MDE3M2ZlNTcwYjliZGEzNGQ5YTk.

CSeq: 1 REGISTER

Expires: 90

Allow: INVITE, ACK, CANCEL, OPTIONS, BYE, REFER, NOTIFY, MESSAGE, REGISTER, 
SUBSCRIBE, INFO

Supported: replaces

User-Agent: MY UA

Content-Length: 0




DEBUG | 20090417-012245.759 | MY UA | RESIP:TRANSPORT | 5544 | 
Transport.cxx:213 | Adding message to tx buffer to: [ V4 202.6.179.11:8022 TLS 
target domain=202.6.179.11 mFlowKey=0 ]
DEBUG | 20090417-012245.759 | MY UA | RESIP:TRANSPORT | 5544 | 
TcpBaseTransport.cxx:131 | Processing write for [ V4 202.6.179.11:8022 TLS 
target domain=202.6.179.11 mFlowKey=0 ]
DEBUG | 20090417-012245.759 | MY UA | RESIP:TRANSPORT | 5544 | 
ConnectionManager.cxx:77 | Could not find a connection for [ V4 
202.6.179.11:8022 TLS target domain=202.6.179.11 mFlowKey=0 ]
DEBUG | 20090417-012245.759 | MY UA | RESIP:TRANSPORT | 5544 | 
InternalTransport.cxx:86 | Creating fd=1748 V4/TCP
DEBUG | 20090417-012245.759 | MY UA | RESIP:TRANSPORT | 5544 | 
TcpBaseTransport.cxx:170 | Opening new connection to [ V4 202.6.179.11:8022 TLS 
target domain=202.6.179.11 mFlowKey=0 ]
DEBUG | 20090417-012245.759 | MY UA | RESIP:TRANSPORT | 5544 | 
ConnectionBase.cxx:49 | ConnectionBase::ConnectionBase, who: [ V4 
202.6.179.11:8022 TLS target domain=202.6.179.11 mFlowKey=0 ] 04588AC8
DEBUG | 20090417-012245.759 | MY UA | RESIP:TRANSPORT | 5544 | 
ConnectionBase.cxx:62 | No compression library available: 04588AC8
INFO | 20090417-012245.759 | MY UA | RESIP:TRANSPORT | 5544 | 
TlsConnection.cxx:41 | Creating TLS connection for domain  [ V4 
202.6.179.11:8022 TLS target domain=202.6.179.11 mFlowKey=0 ] on 1748
DEBUG | 20090417-012245.759 | MY UA | RESIP:TRANSPORT | 5544 | 
TlsConnection.cxx:58 | Trying to form TLS connection - acting as client
INFO | 20090417-012246.066 | MY UA | RESIP:TRANSPORT | 5544 | 
TlsConnection.cxx:183 | TLS handshake starting (client mode)
INFO | 20090417-012246.066 | MY UA | RESIP:TRANSPORT | 5544 | 
TlsConnection.cxx:188 | TLS connected
DEBUG | 20090417-012246.066 | MY UA | RESIP:TRANSPORT | 5544 | 
TlsConnection.cxx:415 | Transportwrite--Handshaking--remove from write: 1
DEBUG | 20090417-012246.388 | MY UA | RESIP:TRANSPORT | 5544 | 
ConnectionBase.cxx:553 | Creating buffer for CONN_BASE: 04588AC8 [ V4 
202.6.179.11:8022 TLS target domain=202.6.179.11 mFlowKey=1748 ]
DEBUG | 20090417-012246.391 | MY UA | RESIP:TRANSPORT | 5544 | 
ConnectionManager.cxx:267 | ConnectionManager::process()  read=0
DEBUG | 20090417-012246.705 | MY UA | RESIP:TRANSPORT | 5544 | 
ConnectionBase.cxx:553 | Creating buffer for CONN_BASE: 04588AC8 [ V4 
202.6.179.11:8022 TLS target domain=202.6.179.11 mFlowKey=1748 ]
DEBUG | 20090417-012246.705 | MY UA | RESIP:TRANSPORT | 5544 | 
ConnectionManager.cxx:267 | ConnectionManager::process()  read=0
DEBUG | 20090417-012246.706 | MY UA | RESIP:TRANSPORT | 5544 | 
ConnectionBase.cxx:553 | Creating buffer for CONN_BASE: 04588AC8 [ V4 
202.6.179.11:8022 TLS target domain=202.6.179.11 mFlowKey=1748 ]
INFO | 20090417-012246.707 | MY UA | RESIP:TRANSPORT | 5544 | 
TlsConnection.cxx:269 | TLS connected
INFO | 20090417-012246.707 | MY UA | RESIP:TRANSPORT | 5544 | 
TlsConnection.cxx:617 | TLS sessions set up with TLSv1 TLSv1/SSLv3 AES256-SHA 
DEBUG | 20090417-012246.707 | MY UA | RESIP | 5544 | Security.cxx:2330 | got 
x509 string type=19 len=13 data=202.6.179.11
DEBUG | 20090417-012246.707 | MY UA | RESIP | 5544 | Security.cxx:2333 | Found 
common name in cert of 202.6.179.11
INFO | 20090417-012246.707 | MY UA | RESIP:TRANSPORT | 5544 | 
TlsConnection.cxx:313 | TLS handshake done for peer 202.6.179.11
DEBUG | 20090417-012246.707 | MY UA | RESIP:TRANSPORT | 5544 | 
ConnectionManager.cxx:267 | ConnectionManager::process()  read=0
DEBUG | 20090417-012246.707 | MY UA | RESIP:TRANSPORT | 5544 | 
TlsConnection.cxx:425 | Transportwrite--Up fall through to write
DEBUG | 20090417-012247.058 | MY UA | RESIP:TRANSPORT | 5544 | 
ConnectionBase.cxx:553 | Creating buffer for CONN_BASE: 04588AC8 [ V4 
202.6.179.11:8022 TLS target domain=202.6.179.11 mFlowKey=1748 ]
DEBUG | 20090417-012247.059 | MY UA | RESIP:TRANSPORT | 5544 | 
ConnectionBase.cxx:102 | In State: NewMessage
DEBUG | 20090417-012247.059 | MY UA | RESIP:TRANSPORT | 5544 | 
ConnectionBase.cxx:132 | ConnectionBase::process setting source [ V4 
202.6.179.11:8022 TLS target domain=202.6.179.11 mFlowKey=1748 ]
DEBUG | 20090417-012247.059 | MY UA | RESIP:TRANSPORT | 5544 | 
Transport.cxx:287 | incoming from: [ V4 202.6.179.11:8022 TLS target 
domain=202.6.179.11 mFlowKey=1748 ]
DEBUG | 20090417-012247.059 | MY UA | RESIP:TRANSPORT | 5544 | 
ConnectionBase.cxx:319 | ##Connection: CONN_BASE: 04588AC8 [ V4 
202.6.179.11:8022 TLS target domain=202.6.179.11 mFlowKey=1748 ] received: 
SIP/2.0 401 Unauthorized

Via: SIP/2.0/TLS 
192.168.1.102:3786;branch=z9hG4bK-d8754z-e166270f1e704339-1---d8754z-;rport=53136;received=222.247.100.71

To: 
<sip:110000000000@xxxxxxxxxxxx:8022>;tag=89bd66dbaf04c8a41e25a9703a4ab4c7.930f

From: <sip:110000000000@xxxxxxxxxxxx:8022>;tag=ba2cf360

Call-ID: YTdjMzRlNTVlOGU3MDE3M2ZlNTcwYjliZGEzNGQ5YTk.

CSeq: 1 REGISTER

Server: OpenSIPS (1.4.4-tls (i386/linux))

WWW-Authenticate: Digest realm="202.6.179.11", 
nonce="49e7698500004943a7e7763f68dcb91aedf386277beb90da"

Content-Length: 0