Jump to content
Sign in to follow this  
maruk

Secure ID progress

Recommended Posts

Build 100258 isn't out yet, but I captured packet with wireshark: https://dl.dropbox.com/u/3925811/ssl.pcap

With the SSL private key you should be able to decrypt them, and that encrypted alert at the end.

If you please could try with 100258 and provide a report file, that would be a lot easier and faster for me. I have no direct access to the private SSL key, and looking into the logs will be much faster and convenient.

Share this post


Link to post
Share on other sites

Version 1.62.100258
Warning: looped for animation: ca\anims\characters\data\anim\sdr\mov\erc\wlk\non\non\amovpercmwlksnonwnondf.rtm differs (looped now 1)! MoveName: amovpercmrunsnonwbindf_rfl
ca\missions\MPScenarios\MP_Deathmatch.chernarus: string @str_mpdeathmatch_subname cannot be localized client-side - move to global stringtable
Registration failed: error SSL connect error

And that's where it ends. Not really much of a help.

Share this post


Link to post
Share on other sites

Hm. Strange. I will double check the error logging, it really should contain more.

Share this post


Link to post
Share on other sites

I am sorry, the build 100258 did not include the diagnostics (caused by a build process quirk, which is being fixed now prevent it happenning ever again). Please retry with 100296 - this build also contains updated libcurl / schannel libraries, therefore there is a slight chance the issue might be even fixed by it. If not, please, post the .rpt here.

Share this post


Link to post
Share on other sites
Version 1.62.100296
Warning: looped for animation: ca\anims\characters\data\anim\sdr\mov\erc\wlk\non\non\amovpercmwlksnonwnondf.rtm differs (looped now 0)! MoveName: amovpercmstpsnonwnondnon_amovpercmstpsraswpstdnon
Warning: looped for animation: ca\anims\characters\data\anim\sdr\mov\erc\wlk\non\non\amovpercmwlksnonwnondf.rtm differs (looped now 1)! MoveName: amovpercmrunsnonwbindf_rfl
ca\missions\MPScenarios\MP_Deathmatch.chernarus: string @str_mpdeathmatch_subname cannot be localized client-side - move to global stringtable
HTTP error 500 (res=35)
Info: ((
About to connect() to is.bistudio.com port 8181 (#0)
 Trying 109.123.194.186...
connected
Connected to is.bistudio.com (109.123.194.186) port 8181 (#0)
schannel: SSL/TLS connection with is.bistudio.com port 8181 (step 1/3)
schannel: checking server certificate revocation
schannel: sending initial handshake data: sending 123 bytes...
schannel: sent initial handshake data: sent 123 bytes
schannel: SSL/TLS connection with is.bistudio.com port 8181 (step 2/3)
schannel: failed to receive handshake, need more data
schannel: SSL/TLS connection with is.bistudio.com port 8181 (step 2/3)
schannel: encrypted data buffer: offset 3185 length 4096
schannel: sending next handshake data: sending 326 bytes...
schannel: SSL/TLS connection with is.bistudio.com port 8181 (step 2/3)
schannel: encrypted data buffer: offset 6 length 4096
schannel: SSL/TLS connection with is.bistudio.com port 8181 (step 2/3)
schannel: encrypted data buffer: offset 53 length 4096
schannel: SSL/TLS handshake complete
schannel: SSL/TLS conne
Registration failed: error SSL connect error (schannel: failed to setup extended errors)

Share this post


Link to post
Share on other sites

requiredSecureId=0 in server CFG causing my Server to just sit at Waiting for Host for all clients after a mission has been selected

We run a closed lan so no access to outside world sometimes (newest and a few older of the betas that introduced secureid

Share this post


Link to post
Share on other sites
You would see it in the server console between the connecting and connected messages. If there are no messages about any failures there, it means nobody without a valid certificate has connected to your server.

Can you please post an actual example with the exact wording and formatting so we can set up filters on our log server for that?

Share this post


Link to post
Share on other sites
requiredSecureId=0 in server CFG causing my Server to just sit at Waiting for Host for all clients after a mission has been selected

We run a closed lan so no access to outside world sometimes (newest and a few older of the betas that introduced secureid

You need to add a ; to the end of it. Like this:

requiredSecureId=0;

Share this post


Link to post
Share on other sites
Could you try installing This Microsoft Hotfix?

As the hotfix did help (verified through PM), I have adjusted the SSL access code on our side in 100423 so that the access works without the hotfix as well.

Share this post


Link to post
Share on other sites

Just added this to our server (CasualSoldiers) for testing. Any problems I will let you know.

Share this post


Link to post
Share on other sites

Ok so I have this error:

Registration failed: SSL Connect Error (SSL Connect Error)

When trying to join a server. That is literally all it tells me about the problem. It also tells me that Battleeye is up to date and that the server has given me a GUID, followed by the GUID number...

How do I fix this because I keep getting kicked and NONE of the solutions I have tried have worked.

Share this post


Link to post
Share on other sites
Ok so I have this error:

Registration failed: SSL Connect Error (SSL Connect Error)

When trying to join a server. That is literally all it tells me about the problem. It also tells me that Battleeye is up to date and that the server has given me a GUID, followed by the GUID number...

How do I fix this because I keep getting kicked and NONE of the solutions I have tried have worked.

Are you using the latest beta?

Also, check your RPT file to see if there is a more verbose error message there, then post it here.

Share this post


Link to post
Share on other sites
Ok so I have this error:

Registration failed: SSL Connect Error (SSL Connect Error)

When trying to join a server. That is literally all it tells me about the problem. It also tells me that Battleeye is up to date and that the server has given me a GUID, followed by the GUID number...

How do I fix this because I keep getting kicked and NONE of the solutions I have tried have worked.

This should be already fixed in 100423 and newer. Please, test with the current beta and lest us know how it went (do not forget to write the build number you are using).

Share this post


Link to post
Share on other sites

Hi Suma

Haven't installed the hotfix yet, so I do get the connection error, which is my problem!

Noticed sometime strange in my RPT file while trying to debug a script..

Using the MP editor and I get the you have no id message.. As above, but below that connection status in the rpt file is a connection to webhosting24.com

As below, anything we should be worried about?

 Trying 109.123.194.186...
connected
Connected to is.bistudio.com (109.123.194.186) port 8181 (#0)
schannel: SSL/TLS connection with is.bistudio.com port 8181 (step 1/3)
schannel: checking server certificate revocation
schannel: sending initial handshake data: sending 128 bytes...
schannel: sent initial handshake data: sent 128 bytes
schannel: SSL/TLS connection with is.bistudio.com port 8181 (step 2/3)
schannel: failed to receive handshake, need more data
schannel: SSL/TLS connection with is.bistudio.com port 8181 (step 2/3)
schannel: encrypted data buffer: offset 1460 length 4096
schannel: received incomplete message, need more data
schannel: SSL/TLS connection with is.bistudio.com port 8181 (step 2/3)
schannel: encrypted data buffer: offset 3192 length 4096
schannel: sending next handshake data: sending 326 bytes...
schannel: SSL/TLS connection with is.bistudio.com port 8181 (step 2/3)
schannel: encrypted data buffer: offset 59 length 4096
sch
Registration failed: error SSL connect error (schannel: failed to setup extended errors)
Unknown entity: 'period=month' target='_blank'>uptime stats of 20 servers</a>. We beat your paid hosting provider!</p>
   <p align="center">
<script type="text/javascript"><!--
google_ad_client = "ca-pub-9043996592502243"'
Unknown entity: 'raquo'
Unknown entity: 'raquo'
Unknown entity: 'pass=x3demob" target="_blank">see demo</a></td>
     </tr>
     <tr class="list_accounts">
       <td height="40"> </td>
       <td><a href="http://www.000webhost.com/order.php"><img src="images/ordernow1.gif" width="89" height="25" border="0" /></a></td>
       <td><a href="http://www.hosting24.com/" target="_blank"><img src="images/ordernow1.gif" alt="Web Hosting" width="89" height="25" border="0" /></a></td>
     </tr>
     <tr class="list_accounts2">
       <td>Site Builder</td
Unknown entity: 'gt</English>
	</Key>

Googling x3demob, it seems it may be the normal password for a cPanel demo...

Share this post


Link to post
Share on other sites

The lower part is from your squad.xml. Seems your server host for that got hacked.

We have a CIT ticket that suggests to filter such faulty data.

Share this post


Link to post
Share on other sites
Haven't installed the hotfix yet, so I do get the connection error, which is my problem!

You did not mention which A2OA build are you using. Recent beta builds since 100423 should not require the hotfix.

Share this post


Link to post
Share on other sites

I am still on 100296? So I do do expect the connection error, need to install the latest patch just now, and server side also!

It was mainly the website data that had appeared, which is explained away by .kju. Strange though as we do not use that host any more for the squad.xml file..

Share this post


Link to post
Share on other sites
I am still on 100296? So I do do expect the connection error, need to install the latest patch just now, and server side also!

You need to install 100496 or newer, and the SSL connection error should be gone. The server version does not matter in this case.

Share this post


Link to post
Share on other sites

Thought I needed to install the beta version on my dedicated server as well, no?

Share this post


Link to post
Share on other sites
Thought I needed to install the beta version on my dedicated server as well, no?

Beta patches allow for different server and client versions. As this SSL fix is client-side only, you do not need to change anything on your server. You can update the server also if you want to benefit from the recent fixes.

Share this post


Link to post
Share on other sites
Thought I needed to install the beta version on my dedicated server as well, no?

You need 'a' version that supports the SecureID, official 1.62 patch does. But as others have pointed out, not specifically the latest version because the SSL fix is client side.

Edited by Sickboy

Share this post


Link to post
Share on other sites

Could this have been causing the problem I started having recently, where after connecting to a server the first time I'm unable to slot in and have to disconnect and reconnect before I can do so?

I thought it was a BE problem originally and found I had to kill Eventghost to stop getting kicked by BE but even with that killed I'm still having this problem. I didn't have it the other night on the server I was playing on but I wonder if they might have disabled Secure ID (or maybe BE, I recall the admins told me they don't always use it).

Share this post


Link to post
Share on other sites
Could this have been causing the problem I started having recently, where after connecting to a server the first time I'm unable to slot in and have to disconnect and reconnect before I can do so?

Does not sound like related to me. If the problem was with the secure ID, you should:

- see the error message while connecting

- not connect at all to the server

I cannot see any way how it could allow you to connect and then cause some trouble.

later

Share this post


Link to post
Share on other sites

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now
Sign in to follow this  

×