Python Forum
Python Forum

TLS socket communication use ECDSA -secp384r1 certificate/key problem.
Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Thread Modes
TLS socket communication use ECDSA -secp384r1 certificate/key problem.
water
Silly Frenchman
Posts: 28
Threads: 16
Joined: Oct 2020
Reputation: 0
#1
Apr-13-2025, 04:14 PM
client side:
import socket, ssl

context = ssl.SSLContext(ssl.PROTOCOL_TLS_CLIENT)
context.verify_mode = ssl.CERT_REQUIRED
context.load_cert_chain(certfile = 'ec_client.crt', keyfile = 'ec_client.key')
context.load_verify_locations('ec_server_ca_chain.crt')	# server and CA certificate combined.

s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
s.connect(('192.168.2.7', 8443))

ssl_sock = context.wrap_socket(s, server_side = False, server_hostname = 'somehostname')
Error:
ssl.SSLCertVerificationError: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: self-signed certificate (_ssl.c:1000)
----------------------------------------------------------------------
server side:
import socket, ssl

context = ssl.SSLContext(ssl.PROTOCOL_TLS_SERVER)
context.verify_mode = ssl.CERT_REQUIRED
context.load_cert_chain(certfile = 'ec_server.crt', keyfile = 'ec_server.key')
context.load_verify_locations('ec_client_ca_chain.crt')	# client and CA certificate combined.

s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
s.bind(('0.0.0.0', 8443))
s.listen(5)

conn, addr = s.accept()
ssl_conn = context.wrap_socket(conn, server_side = True)
Error:
ssl.SSLError: [SSL: TLSV1_ALERT_UNKNOWN_CA] tlsv1 alert unknown ca (_ssl.c:1018)
Find
Reply
Larz60+
aetate et sapientia
Super Moderators
Posts: 12,031
Threads: 485
Joined: Sep 2016
Reputation: 452
#2
Apr-13-2025, 09:12 PM
Is there a Question?
Find
Reply
water
Silly Frenchman
Posts: 28
Threads: 16
Joined: Oct 2020
Reputation: 0
#3
Apr-15-2025, 07:15 PM
I generate self-signed certificateļ¼Œ

CA
|--ec_server.crt, ec_server.key
|--ec_client.crt, ec_client.key

Create SSL/TLS connection between two Linux platform success use above code.
When I run client side code on Windows platform, server side code on Linux platform, rise this Error, what's wrong?

client side(Windows)
Error:
ssl.SSLCertVerificationError: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: self-signed certificate (_ssl.c:1000)
server side(Linux)
Error:
ssl.SSLError: [SSL: TLSV1_ALERT_UNKNOWN_CA] tlsv1 alert unknown ca (_ssl.c:1018)
Find
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  ssl.SSLCertVerificationError: [SSL: CERTIFICATE_VERIFY_FAILED]certificate verify fail byronbonkers 0 2,694 Feb-19-2023, 10:13 PM
Last Post: byronbonkers
Question Email, certificate verify failed: unable to get local issuer certificate SpongeB0B 0 2,321 Feb-08-2023, 02:24 PM
Last Post: SpongeB0B
  Socket server problem H84Gabor 0 1,813 Jun-21-2022, 12:14 AM
Last Post: H84Gabor
  Python 3 Serial communication need help jegatheesans 0 2,028 Mar-16-2020, 05:37 AM
Last Post: jegatheesans
  socket loop problem monamour 9 9,098 Nov-28-2019, 12:04 PM
Last Post: buran
  problem in socket Mamad 2 3,177 Nov-10-2019, 11:44 AM
Last Post: j.crater
  Serial communication Isabelle94 3 4,254 Sep-28-2018, 10:23 AM
Last Post: Larz60+
  socket problem technoplusnl 2 16,812 Dec-11-2016, 07:33 PM
Last Post: technoplusnl

Forum Jump:

User Panel Messages

Log Out
My Profile
Pay your profile a visit
User Control Panel
Do some changes on your profile
My Messages
View private messages unread
Avatar
Change avatar
Signature
Change signature
Announcements
Announcement #1 8/1/2020
Announcement #2 8/2/2020
Announcement #3 8/6/2020