HTTP.SBR Enhancements

Note that these changes are contained within the ASHNET 1.11.162 library update and are not actually dependent on any particular A-Shell version.

•   Support secure protocols TLS 1.1 and TLS 1.2 in HTTP.SBR via the new flags:

Symbol

Value

Description

XHTTPF_SSL_TLS11

&h01000000

TLS 1.1 (or higher)

XHTTPF_SSL_TLS12

&h02000000

TLS 1.2 (or higher)

 

•   Fix problems with the ashnet.log file (XHTTPF_DEBUG) not getting written or released under some circumstances.

•   Remove 100 character limit on header lines included at the top of the request (using XHTTPF_HDRBODY). Maximum length is now unlimited, which is useful when headers include lengthy signatures or digests.

•   Append a connection failure code to the XHTTPF_GETSTSTXT return string, as well as the ashnet.log file to assist with debugging failed connections. See the A-Shell Reference > HTTP.SBR > Connection Failure Codes for a listing of the codes and meanings.

Code

Meaning / Description

0

Success

 

Non-secure Connections

1

empty hostname

2

DNS lookup failed

3

DNS timeout

4

Aborted by application.

5

Internal failure.

6

Connect Timed Out

7

Connect Rejected (or failed for some other reason)

50

HTTP proxy authentication failure.

98

Async operation in progress.

99

Product is not unlocked.

 

Secure Connections (SSL/TLS)

100

TLS internal error.

101

Failed to send client hello.

102

Unexpected handshake message.

103

Failed to read server hello.

104

No server certificate.

105

Unexpected TLS protocol version.

106

Server certificate verify failed (the server certificate is expired or the cert's signature verification failed).

107

Unacceptable TLS protocol version.

109

Failed to read handshake messages.

110

Failed to send client certificate handshake message.

111

Failed to send client key exchange handshake message.

112

Client certificate's private key not accessible.

113

Failed to send client cert verify handshake message.

114

Failed to send change cipher spec handshake message.

115

Failed to send finished handshake message.

116

Server's Finished message is invalid.