The client is using SChannel to handle the DTLS connection, where the server uses OpenSSL.
Everything works fine until the client tries to close the connection (I used this guide).
Here is the client shutdown routine:
SecBufferDesc…
I am working on TLS 1.2 client. The client fails to establish security context with server. It is sending ClientHello with certain set of extensions. Then it receives multiple messages from server: ServerHello, Certificate, Server Key Exchange,…
I am trying to figure out the cipher suite version used for TLS handshake on a web server.
Following Enable Schannel event logging in Windows and Windows Server, I set the registry to 0x05 (informational, success and error) and can see the logs in…
So I'm writing an Schannel server to the IOS Gmail client app - IMAP server.
I'm forcing TLS1.0 (tried with TLS1.0to1.3 - 1.3 seems to bail with algo_mismatch but the other ones do the same, I've also tried with SSL3.0 but read that is not supported…
InitializeSecurityContext (Schannel) fails with SEC_E_WRONG_PRINCIPAL when none of the names on the server's supplied certificate match the pszTargetName parameter, which is the name of the server, essentially.
If you have a fully formed security…
I have been trying to disable TLS1.0 and TLS1.1, but having no success in it.
We have already disabled them in regedit, with this, and rebooted the systems.
Windows Registry Editor Version 5.00
…
I am writing TLS server side code using schannel and need to require the client to mutually authenticate itself. I know this is done by sending a client certificate request at the end of the server hello. I see how to do it in openssl but I can…
I'm trying to setup server-side encryption using SSPI. I'm successfully (as far as I can tell) loading a certificate stored as a PFX file, but the call to m_pSSPI->AcquireCredentialsHandleA() returns 0x8009030e.
This method seems to successfully…
unresolved external symbol __imp_CertFindChainInStore compile error
seems if i include CertFindChainInStore my program wont compile
https://learn.microsoft.com/en-us/windows/win32/api/wincrypt/nf-wincrypt-certfindchaininstore
I've searched StackOverflow trying to find a similar problem, but haven't come across it, so I am posting this question.
I am trying to write an C++ HTTPS client using Microsoft's SChannel libraries, and I'm getting stochastic errors with chunked…
I am working on using SChannel to build a client/server program. One of the things I would like to do is have file sharing. I found some example code of a client program using Schannel to communicate and I am wondering why the max size of a message…
I'm working on shrinking an executable's size and a big saving was replacing OpenSSL/Libssh for curl with the windows standard SChannel (DLL on all windows machines)
This works correctly and has the SSL support for some things, but curl is unable to…
I am wanting to use schannel to make an ssl or tls connection to a webserver running https, preferably nginx. I have an nginx instance running right now, and am successfully sending http get requests via winsock to the server. Now I am wanting to…
I am using the Windows LDAP client DLL (wldap32.dll) to connect to a remote LDAP server. The connection is done over TLS (LDAPS protocol over port 636).
My problem is with enabling CRL revocation. I have found that it's possible to set the schannel…
