Tunnelblick.net SSL certificate errors
41 views
Skip to first unread message
sundial....@gmail.com
Jun 21, 2017, 12:37:55 PM6/21/17
to tunnelblick-discuss
From the log:
NSUnderlyingError=0x10058df20 {Error Domain=kCFErrorDomainCFNetwork Code=-1202 "The certificate for this server is invalid. You might be connecting to a server that is pretending to be “www.tunnelblick.net” which could put your confidential information at risk." UserInfo={NSErrorFailingURLStringKey=https://www.tunnelblick.net/ipinfo, NSLocalizedRecoverySuggestion=Would you like to connect to the server anyway?,
Various other errors have recently been encountered which seem to be related to this issue although which did not produce the same message. From another log:
2017-06-19 08:00:22 Tunnelblick[452] NSURLSession/NSURLConnection HTTP load failed (kCFStreamErrorDomainSSL, -9806)2017-06-19 08:00:23 Tunnelblick[452] CFNetwork SSLHandshake failed (-9806)2017-06-19 08:00:23 Tunnelblick[452] CFNetwork SSLHandshake failed (-9806)2017-06-19 08:00:23 Tunnelblick[452] CFNetwork SSLHandshake failed (-9806)2017-06-19 08:00:23 Tunnelblick[452] CFNetwork SSLHandshake failed (-9806)2017-06-19 08:00:23 Tunnelblick[452] NSURLSession/NSURLConnection HTTP load failed (kCFStreamErrorDomainSSL, -9806)2017-06-19 08:00:24 Tunnelblick[452] CFNetwork SSLHandshake failed (-9806)2017-06-19 08:00:24 Tunnelblick[452] CFNetwork SSLHandshake failed (-9806)2017-06-19 08:00:24 Tunnelblick[452] CFNetwork SSLHandshake failed (-9806)2017-06-19 08:00:24 Tunnelblick[452] CFNetwork SSLHandshake failed (-9806)2017-06-19 08:00:24 Tunnelblick[452] NSURLSession/NSURLConnection HTTP load failed (kCFStreamErrorDomainSSL, -9806)2017-06-19 08:00:24 Tunnelblick[452] currentIPInfo(Name): IP address info could not be fetched within 32.3 seconds; the error was 'Error Domain=NSURLErrorDomain Code=-1200 "An SSL error has occurred and a secure connection to the server cannot be made." UserInfo={_kCFStreamErrorCodeKey=-9806, NSLocalizedRecoverySuggestion=Would you like to connect to the server anyway?, NSUnderlyingError=0x100441c20 {Error Domain=kCFErrorDomainCFNetwork Code=-1200 "An SSL error has occurred and a secure connection to the server cannot be made." UserInfo={NSErrorFailingURLStringKey=https://www.tunnelblick.net/ipinfo, NSLocalizedRecoverySuggestion=Would you like to connect to the server anyway?, _kCFNetworkCFStreamSSLErrorOriginalValue=-9806, _kCFStreamPropertySSLClientCertificateState=0, NSLocalizedDescription=An SSL error has occurred and a secure connection to the server cannot be made., _kCFStreamErrorDomainKey=3, NSErrorFailingURLKey=https://www.tunnelblick.net/ipinfo, _kCFStreamErrorCodeKey=-9806}}, NSLocalizedDescription=An SSL error has occurred and a secure connection to the server cannot be made., NSErrorFailingURLKey=https://www.tunnelblick.net/ipinfo, NSErrorFailingURLStringKey=https://www.tunnelblick.net/ipinfo, _kCFStreamErrorDomainKey=3}'; the response was '(null)'
This appears to be the product "phoning home" looking for updates, and encountering SSL issues at your end.
Tunnelblick developer
Jun 21, 2017, 1:12:26 PM6/21/17
to tunnelblick-discuss
Is this happening on more than one machine? What version of macOS? What happens when you go to https://
("ipinfo" is what Tunnelblick uses to check if the IP address changed, nothing to do with checking for updates, which uses appcast-vN.rss, where N is 1 or 2.)
("ipinfo" is what Tunnelblick uses to check if the IP address changed, nothing to do with checking for updates, which uses appcast-vN.rss, where N is 1 or 2.)
Tunnelblick developer
Jun 21, 2017, 1:14:14 PM6/21/17
to tunnelblick-discuss
Sorry, I hit "send" too soon. What happens when you go to https://www.tunnelblick.net in Safari?
Reply all
Reply to author
Forward
0 new messages