DTLS handshake failures with error POINT_IS_NOT_ON_CURVE

[test34333]

I have an application that use webrtc native api, windows x64. It works fine if using webrtc native api built in debug.

However if I use webrtc  webrtc native api built in release I have the following errors during DTLS handshake:

(dtlstransport.cc:560): DtlsTransport[0|1|__]: Packet received before DTLS started.
(dtlstransport.cc:569): DtlsTransport[0|1|__]: Caching DTLS ClientHello packet until DTLS is started.
(p2ptransportchannel.cc:254): Switching selected connection due to: candidate pair state changed
(p2ptransportchannel.cc:1675): Channel[0|1|R_]: New selected connection: Conn[0000000000A7E800:0:Net[Realtek:172.16.0.x/32:Ethernet:id=1]:+DiD0sEL:1:0:local:udp:172.16.0.x:50000->WlE0AZC5:1:1853817087:prflx:udp:172.16.0.x:50979|CRWS|S|0|0|7962083765675507199|1]
(dtlstransport.cc:808): DtlsTransport[0|1|__]: configuring DTLS handshake timeout 50 based on ICE RTT 1
(opensslstreamadapter.cc:760): BeginSSL with peer.
(opensslutility.cc:108): Configuring key and certificate: error:0f000078:elliptic curve routines:OPENSSL_internal:POINT_IS_NOT_ON_CURVE

(opensslutility.cc:108): Configuring key and certificate: error:10000089:SSL routines:OPENSSL_internal:DECODE_ERROR

(opensslstreamadapter.cc:879): OpenSSLStreamAdapter::Error(BeginSSL, -1, 0)
(opensslstreamadapter.cc:889): Cleanup
(dtlstransport.cc:712): DtlsTransport[0|1|__]: Couldn't start DTLS handshake
(srtptransport.cc:354): The params in SRTP transport are reset.


And this is a log if using webrtc built in debug. In this case all works fine:




(opensslstreamadapter.cc:760): BeginSSL with peer.
(openssladapter.cc:819): SSL_accept:TLS server read_client_hello
(openssladapter.cc:829): SSL_accept:error in TLS server read_client_hello
(dtlstransport.cc:717): DtlsTransport[0|1|__]: DtlsTransport: Started DTLS handshake
(srtptransport.cc:354): The params in SRTP transport are reset.
(dtlstransport.cc:724): DtlsTransport[0|1|__]: Handling cached DTLS ClientHello packet.
(openssladapter.cc:819): SSL_accept:TLS server select_certificate
(openssladapter.cc:819): SSL_accept:TLS server select_parameters
(openssladapter.cc:819): SSL_accept:TLS server send_server_hello
(openssladapter.cc:819): SSL_accept:TLS server send_server_certificate
(openssladapter.cc:819): SSL_accept:TLS server send_server_key_exchange
(openssladapter.cc:819): SSL_accept:TLS server send_server_hello_done
(openssladapter.cc:819): SSL_accept:TLS server read_client_certificate
(openssladapter.cc:829): SSL_accept:error in TLS server read_client_certificate
(openssladapter.cc:819): SSL_accept:TLS server verify_client_certificate
(opensslstreamadapter.cc:1084): Accepted peer certificate.
(openssladapter.cc:819): SSL_accept:TLS server read_client_key_exchange
(openssladapter.cc:819): SSL_accept:TLS server read_client_certificate_verify
(openssladapter.cc:819): SSL_accept:TLS server read_change_cipher_spec
(openssladapter.cc:819): SSL_accept:TLS server process_change_cipher_spec
(openssladapter.cc:819): SSL_accept:TLS server read_next_proto
(openssladapter.cc:819): SSL_accept:TLS server read_channel_id
(openssladapter.cc:819): SSL_accept:TLS server read_client_finished
(openssladapter.cc:819): SSL_accept:TLS server send_server_finished
(openssladapter.cc:819): SSL_accept:TLS server finish_server_handshake
(openssladapter.cc:819): SSL_accept:TLS server done
(dtlstransport.cc:645): DtlsTransport[0|1|__]: DTLS handshake complete.

[anil2...@gmail.com]

what is type(native or browser etc) of other application  whom native application creating connection with?

[test34333]

https://bugs.chromium.org/p/webrtc/issues/detail?id=9362

четверг, 7 июня 2018 г., 18:38:05 UTC+3 пользователь anil2...@gmail.com написал:

[test34333]

I managed to find a workaround to overcome this issue. However I am not going to reveal any details here as my attempt to publish a message to get some help on googlegroups.com was denied:

"Unfortunately, your recent post to the discuss-webrtc group was denied by a group moderator."

четверг, 7 июня 2018 г., 18:38:05 UTC+3 пользователь anil2...@gmail.com написал:

what is type(native or browser etc) of other application  whom native application creating connection with?

[test34333]

See my comment https://bugs.chromium.org/p/webrtc/issues/detail?id=9362

четверг, 7 июня 2018 г., 18:38:05 UTC+3 пользователь anil2...@gmail.com написал:

what is type(native or browser etc) of other application  whom native application creating connection with?

[Priya B]

Hi,

I too face the same issue, Could you please let me know how you fixed this?

Thanks for your help