I doubt whether there is any fixed algorithm given while generating certificates. I used RSA 1024 bit.

On Wed, Nov 19, 2014 at 11:42 AM, Ajitha Robert <ajitharobert01@gmail.com> wrote:

Hi all,
 
I am facing an error while connecting libvirt remotely using tls.. I have created CA, client and server certificates with RSA 1024 bit using Openssl. I am using debian linux flavor in both client and server.

Original Error:
(When trying to connect remote libvirt)
virsh -c xen+tls://destinationipaddr/system
error: failed to connect to the hypervisor
error: authentication failed: TLS handshake failed A TLS packet with unexpected length was received.

In source code i found the error line. the return value is 21

./src/rpc/virnettlscontext.c: ret = gnutls_handshake(sess->session);


Below are log details

client(Initiator of ssl connection ) :

virNetTLSSessionHandshake:1351 : Ret=-21

error: authentication failed: TLS handshake failed A TLS packet with unexpected length was received.

In the server side, 

virNetTLSSessionHandshake:1369 : authentication failed: TLS handshake failed Could not negotiate a supported cipher suite.


Please guide me for solving this error

--
Regards,
Ajitha R




--
Regards,
Ajitha R