• Registered: 2023-03-07
  • Posts: 4

Topic: wolfSSL error: can't load ca file, Please run from wolfSSL home dir

Hello,

I just want to run TLS1.3 with pqc for experiments.
So, I'm just fallowing instructions at https://github.com/wolfSSL/wolfssl/blob/master/INSTALL and
I excuted codes like below, also I can find my ca files at my certs directory.
examples/server/server -v 4 -l TLS_AES_256_GCM_SHA384 \
      -A certs/falcon_level5_root_cert.pem \
      -c certs/falcon_level1_entity_cert.pem \
      -k certs/falcon_level1_entity_key.pem \
      --pqc P521_KYBER_LEVEL5

but, there's some error that:
wolfSSL error: can't load ca file, Please run from wolfSSL home dir
I cannot solve this error by my self.
so, I want to get some advice to someone
Please help me,, thank you.

Share

  • Registered: 2021-08-12
  • Posts: 66

Re: wolfSSL error: can't load ca file, Please run from wolfSSL home dir

Hi basak,

My name is Anthony and I'm a member of the wolfSSL team. Please note that the certificates are not included as part of wolfSSL.  They need to be generated. The instructions for generating them are at https://github.com/wolfSSL/osp/tree/mas … /README.md .

Please let us know about your progress with this experiment.

Warm regards, Anthony

Share

3 Reply by basak (edited by basak 2023-03-09 22:58:59)

  • Registered: 2023-03-07
  • Posts: 4

Re: wolfSSL error: can't load ca file, Please run from wolfSSL home dir

Hi Anthony,
First, I appreciate for your answer.
unfortunately, I already follow The instructions for generating them are at https://github.com/wolfSSL/osp/tree/mas … README.md,
But I have some error messages that following above instructions.
I excuted:
patch -p1 < /path/to/osp/oqs/openssl-sphincs.patch

error:
bash: /path/to/osp/oqs/openssl-sphincs.patch: No such file or directory
Also, I cannot find where is actually generating certificates for wolfssl,

+ I finally find how to generate CA files on openssl scripts,
Then should I move the CA files to wolfssl/certs directoy??

Can you explain more details for me?
It will be great help for my study and research.
Thank you for kindly answering even a beginner question smile


Best regards, Basak

Share

  • Registered: 2021-08-12
  • Posts: 66

Re: wolfSSL error: can't load ca file, Please run from wolfSSL home dir

Hi Basak,

I don't know your computer's directory setup so I cannot give you the exact commands you need to execute. When I say /path/to/osp/... I mean "The path to where you downloaded osp project to...."

Hope this helps!

Warm regards, Anthony

Share

  • Registered: 2021-08-12
  • Posts: 66

Re: wolfSSL error: can't load ca file, Please run from wolfSSL home dir

And yes, the generated files should be moved to wolfssl/certs/ directory

Share

  • Registered: 2023-03-07
  • Posts: 4

Re: wolfSSL error: can't load ca file, Please run from wolfSSL home dir

Sorry for late, Anthony.

I tried to patch with "path/to"part change to my directory of openssl, but my terminal couldn't find it.

so, I manually get .patch files from your git repository.

and generate certificate from openssl, and change names for wolfssl like falcon512.crt -> falcon_level1_cert.pem
and also move pem files to wolfssl/certs directory.

but, still I cannot start my server with it.

Share

  • Registered: 2021-08-12
  • Posts: 66

Re: wolfSSL error: can't load ca file, Please run from wolfSSL home dir

Hi Basak,

but, still I cannot start my server with it.

What error message are you seeing?

Share

  • Registered: 2021-08-12
  • Posts: 66

Re: wolfSSL error: can't load ca file, Please run from wolfSSL home dir

Note, you can also get the generated certificates from here: https://github.com/wolfSSL/wolfssl-examples/pull/375

Share

  • Registered: 2023-03-07
  • Posts: 4

Re: wolfSSL error: can't load ca file, Please run from wolfSSL home dir

I finally open my example  server! smile
Thank you for your help!!

Share