> On Oct 27, 2014, at 7:00 AM, ajres <[email protected]> wrote: > > But right now I am facing a similar issue to you, SSL works great, Websockets > work great, but Websockets over SSL results in the following errors in my > Couchbase Lite client: > > CFNetwork SSLHandshake failed (-9847) > > I'll post here as soon as I have a solution.
Hm, I do have a unit test in CBL for WebSocket-over-SSL direct to Sync Gateway, so the issue must be specific to the proxy. This may have something to do with the SSL/TLS protocol version negotiation during the handshake, although the logic should be the same for the WebSocket as for the default CBLSocketChangeTracker — as of 1.0.3, both accept only TLS 1.0. I just looked up error -9847 in <SecureTransport.h> — it's "errSSLRecordOverflow". No idea what that means, except that it sounds like a low level protocol error… Another thing to try would be to find some other WebSocket client (maybe a tiny node.js script) and have it connect to SG in the same configuration. —Jens PS: I guess this is covered under #471 <https://github.com/couchbase/sync_gateway/issues/471>? But this seems more like a bug than a lack of docs; SSL should work. -- You received this message because you are subscribed to the Google Groups "Couchbase Mobile" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/mobile-couchbase/84672023-DC28-4F19-9761-4DD3BA2B4BB1%40couchbase.com. For more options, visit https://groups.google.com/d/optout.
