Note that these changes are contained within the ASHNET 1.11.162 library update and are not actually dependent on any particular A-Shell version.
• Support secure protocols TLS 1.1 and TLS 1.2 in HTTP.SBR via the new flags:
|
Symbol |
Value |
Description |
|
XHTTPF_SSL_TLS11 |
&h01000000 |
TLS 1.1 (or higher) |
|
XHTTPF_SSL_TLS12 |
&h02000000 |
TLS 1.2 (or higher) |
• Fix problems with the ashnet.log file (XHTTPF_DEBUG) not getting written or released under some circumstances.
• Remove 100 character limit on header lines included at the top of the request (using XHTTPF_HDRBODY). Maximum length is now unlimited, which is useful when headers include lengthy signatures or digests.
• Append a connection failure code to the XHTTPF_GETSTSTXT return string, as well as the ashnet.log file to assist with debugging failed connections. See the A-Shell Reference > HTTP.SBR > Connection Failure Codes for a listing of the codes and meanings.
|
Code |
Meaning / Description |
|
0 |
Success |
|
|
Non-secure Connections |
|
1 |
empty hostname |
|
2 |
DNS lookup failed |
|
3 |
DNS timeout |
|
4 |
Aborted by application. |
|
5 |
Internal failure. |
|
6 |
Connect Timed Out |
|
7 |
Connect Rejected (or failed for some other reason) |
|
50 |
HTTP proxy authentication failure. |
|
98 |
Async operation in progress. |
|
99 |
Product is not unlocked. |
|
|
Secure Connections (SSL/TLS) |
|
100 |
TLS internal error. |
|
101 |
Failed to send client hello. |
|
102 |
Unexpected handshake message. |
|
103 |
Failed to read server hello. |
|
104 |
No server certificate. |
|
105 |
Unexpected TLS protocol version. |
|
106 |
Server certificate verify failed (the server certificate is expired or the cert's signature verification failed). |
|
107 |
Unacceptable TLS protocol version. |
|
109 |
Failed to read handshake messages. |
|
110 |
Failed to send client certificate handshake message. |
|
111 |
Failed to send client key exchange handshake message. |
|
112 |
Client certificate's private key not accessible. |
|
113 |
Failed to send client cert verify handshake message. |
|
114 |
Failed to send change cipher spec handshake message. |
|
115 |
Failed to send finished handshake message. |
|
116 |
Server's Finished message is invalid. |