What does "SSLError: [SSL] PEM lib (_ssl.c:2532)" mean using the Python ssl library?

Question

Welcome To Ask or Share your Answers For Others

What does "SSLError: [SSL] PEM lib (_ssl.c:2532)" mean using the Python ssl library?

posted Oct 17, 2021 in Technique[技术] by 深蓝 (71.8m points)

What does "SSLError: [SSL] PEM lib (_ssl.c:2532)" mean using the Python ssl library?

I am trying to use connect to another party using Python 3 asyncio module and get this error:

     36     sslcontext = ssl.SSLContext(ssl.PROTOCOL_TLSv1)
---> 37     sslcontext.load_cert_chain(cert, keyfile=ca_cert)
     38

SSLError: [SSL] PEM lib (_ssl.c:2532)

The question is just what the error mean. My certificate is correct, the keyfile (CA certificate) might not.

See Question&Answers more detail:os

与恶龙缠斗过久,自身亦成为恶龙；凝视深渊过久,深渊将回以凝视…

1 Reply

深蓝 · Answer 1 · 2021-10-17T00:48:41+0000

Assuming that version 3.6 is being used:

See: https://github.com/python/cpython/blob/3.6/Modules/_ssl.c#L3523-L3534

 PySSL_BEGIN_ALLOW_THREADS_S(pw_info.thread_state);
 r = SSL_CTX_check_private_key(self->ctx);
 PySSL_END_ALLOW_THREADS_S(pw_info.thread_state);
 if (r != 1) { 
    _setSSLError(NULL, 0, __FILE__, __LINE__);
    goto error;
 }

What it is saying is that SSL_CTX_check_private_key failed; thus, the private key is not correct.

Reference to the likely version:

https://github.com/python/cpython/blob/3.4/Modules/_ssl.c#L2529-L2535

Categories

What does "SSLError: [SSL] PEM lib (_ssl.c:2532)" mean using the Python ssl library?

What does "SSLError: [SSL] PEM lib (_ssl.c:2532)" mean using the Python ssl library?

Please log in or register to add a comment.

Please log in or register to reply this article.

1 Reply

Please log in or register to add a comment.

Just Browsing Browsing

Most popular tags