Downloads  |  Buy

TurboActivate TLS/SSL Ca Certificates on macOS

TurboActivate TLS/SSL Ca Certificates on macOS

Postby MartinMikita » December 2nd, 2019, 7:12 am

Hi,

We have updated in our software TA from 4.0.9.6 to 4.1.9.0, which was released only few days after a new 4.2.0 release of TA. Note, we are using static TA only (without TF).

However, we are receiving a lot of errors with Connection timed/out with TLS/SSL CA-Certificates from our customers, mostly on macOS 10.13, 10.14 and 10.15.

We have not been able to reproduce this behaviour in our environment (using any of the mentioned macOS version).

We have created FAQ using Wyday answers, but customers are still unable to activate our software, even if they can smoothly access wyday.com from native (Safari) browsers.

We will test the latest 4.2.0 version, but there seems to be nothing changed for this error, or are we mis-reading your changelog?

Does anyone have the same problem? Are there other required steps?
MartinMikita
 
Posts: 53
Joined: April 15th, 2013, 1:45 pm

Re: TurboActivate TLS/SSL Ca Certificates on macOS

Postby Wyatt » December 2nd, 2019, 11:10 am

TA 4.2.0 contains a lot of fixes for connections on everything except macOS. (Although you should *always* use the latest version -- it has bug fixes and improvements).

If using the latest version doesn't fix the problem for these customers, next step is to use the dynamic version of TurboActivate. Or, at the very least, ensure you're linking to the latest libCurl version on macOS (don't link to old versions).

Also, provide exact error codes. And tell them to disable firewalls, "private VPN" garbage, and other "cleaner" junk that creates more problems than it solves.
User avatar
Wyatt
Site Admin
 
Posts: 6133
Joined: July 11th, 2007, 10:30 pm
Location: New Hampshire

Re: TurboActivate TLS/SSL Ca Certificates on macOS

Postby MartinMikita » December 5th, 2019, 10:44 am

Hi Wyatt,

We have tried to update TA to the latest 4.2.0, but no success on our testing machine.

We are linking and deploying libCurl together with the application, and each curl-related things are working in our application, and this same application is working on some macOS and not working on another macOS machines.
We have reported issues with macOS 10.11, 10.14, and 10.15. And moreover, we have been able to activate on each of these macOS version this same application.

We have disabled any firewall, garbage, VPN, etc. Still we cannot activate :(

The exact error code is:


/*
MessageId: TA_E_INET_TLS
Message code (in Hex): 0x24
Message code (in Decimal): 36

MessageText:

The secure connection to the activation servers failed due to a TLS or certificate
error. This is most often caused by MITM (man-in-the-middle) attempts on corporate
networks or, if on Unix operating systems (macOS, Linux, BSD, etc.), it's caused
by out-of-date or missing "CA certificates". This means either keeping your system
itself up-to-date, or manually updating the CA certs.

More information here: https://wyday.com/limelm/help/faq/#internet-error
*/
#define TA_E_INET_TLS ((HRESULT)0x00000024L)
MartinMikita
 
Posts: 53
Joined: April 15th, 2013, 1:45 pm

Re: TurboActivate TLS/SSL Ca Certificates on macOS

Postby Wyatt » December 5th, 2019, 3:42 pm

>> "We are linking and deploying libCurl together with the application"

Ah, OK. That's likely the problem. Use the dynamic version of TurboActivate -- it links directly with the system version of libcurl (and uses system cacerts).
User avatar
Wyatt
Site Admin
 
Posts: 6133
Joined: July 11th, 2007, 10:30 pm
Location: New Hampshire


Return to LimeLM, TurboActivate, & TurboFloat Support