Jump to content

Connection to klei failed (linux)

Groud

By Groud

    • Pending

When I launch the game, the game does not manage to connect to Klei's servers. I cannot play the game but offline. :/

I run the linux version (on Archlinux), via steam. The online servers check were OK, and the game runs perfectly on windows too. I used the same steam accounts on both OS. I have no idea what is happening. My internet connection works fine, I have no HTTP proxy set up nor any weird firewall settings. The game was working fine one month ago.

When I run steam via the shell, I realized that, when I try to connect, I get the following errors (they are also in the client_log.txt, which is the only log I could find on linux):

Quote

[00:00:07]: [MOTD] Downloading info    
[00:00:07]: SimLuaProxy::QueryServer()
[00:00:08]: [Steam] Auth Session Ticket requested...
[00:00:08]: CURL ERROR: (motd.klei.com) Error -50 setting GnuTLS cipher list starting with +VERS-TLS1.3:+SRP
[00:00:08]: [MOTD] Failed To Get MOTD Info from 'https://motd.klei.com/?game=dst&platform=STEAM&locale=FR&lang=french&user=76561197987038558' due to 0. Retrying (3).
[00:00:08]: [Steam] Got Auth Session Ticket
[00:00:08]: CURL ERROR: (login.kleientertainment.com) Error -50 setting GnuTLS cipher list starting with +VERS-TLS1.3:+SRP
[00:00:08]: [0] Account Failed (3): ""
[00:00:08]: [Warning] Empty error code received, dumping response:
[00:00:08]:
[00:00:08]: [Connect] PendingConnection::Reset(true)
[00:00:08]: failed_communication    
[00:00:08]: [Connect] PendingConnection::Reset(true)
[00:00:09]: CURL ERROR: (d2fr86khx60an2.cloudfront.net) Error -50 setting GnuTLS cipher list starting with +VERS-TLS1.3:+SRP

 

I suspect the CURL error is responsible for the problem but I can't tell more.

I hope you will have some time to check this bug. :)

Steps to Reproduce
Lauch the game and click on "Play"
Go to bugs

User Feedback


ghlin

Same issue here

 

after downgrading these three packages, the CURL error gone:


libcurl-gnutls (7.63.0-1 -> 7.62.0-1)
lib32-libcurl-gnutls (7.63.0-1 -> 7.62.0-1)
gnutls (3.6.5-1 -> 3.5.19-2)

 

(also noticed: pacman -Qi says gnutls is 3.6.x while lib32-gnutls is 3.5.x

Share this comment

Link to comment
Share on other sites
ColdSphinX

Same here,

Quote

[00:00:02]: CURL ERROR: (metric.kleientertainment.com) Error -50 setting GnuTLS cipher list starting with +VERS-TLS1.3:+SRP

Quote

[00:00:06]: CURL ERROR: (login.kleientertainment.com) Error -50 setting GnuTLS cipher list starting with +VERS-TLS1.3:+SRP
[00:00:06]: [0] Account Failed (6): ""

Trying regular curl on the same host works:

Quote

$ curl -v https://login.kleientertainment.com
*   Trying 34.226.164.193...
* TCP_NODELAY set
* Connected to login.kleientertainment.com (34.226.164.193) port 443 (#0)
* ALPN, offering h2
* ALPN, offering http/1.1
* successfully set certificate verify locations:
*   CAfile: /etc/ssl/certs/ca-certificates.crt
  CApath: none
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
* TLSv1.3 (IN), TLS handshake, Server hello (2):
* TLSv1.2 (IN), TLS handshake, Certificate (11):
* TLSv1.2 (IN), TLS handshake, Server key exchange (12):
* TLSv1.2 (IN), TLS handshake, Server finished (14):
* TLSv1.2 (OUT), TLS handshake, Client key exchange (16):
* TLSv1.2 (OUT), TLS change cipher, Change cipher spec (1):
* TLSv1.2 (OUT), TLS handshake, Finished (20):
* TLSv1.2 (IN), TLS handshake, Finished (20):
* SSL connection using TLSv1.2 / ECDHE-RSA-AES128-GCM-SHA256
* ALPN, server accepted to use h2
* Server certificate:
*  subject: OU=Domain Control Validated; OU=COMODO SSL Wildcard; CN=*.kleientertainment.com
*  start date: Apr 20 00:00:00 2018 GMT
*  expire date: May  5 23:59:59 2020 GMT
*  subjectAltName: host "login.kleientertainment.com" matched cert's "*.kleientertainment.com"
*  issuer: C=GB; ST=Greater Manchester; L=Salford; O=COMODO CA Limited; CN=COMODO RSA Domain Validation Secure Server CA
*  SSL certificate verify ok.
* Using HTTP2, server supports multi-use
* Connection state changed (HTTP/2 confirmed)
* Copying HTTP/2 data in stream buffer to connection buffer after upgrade: len=0
* Using Stream ID: 1 (easy handle 0x55e66b604db0)
> GET / HTTP/2
> Host: login.kleientertainment.com
> User-Agent: curl/7.63.0
> Accept: */*

So I guess the gameserver generates a different cipher list with no matching cipher in correlation to the klei webserver:

https://curl.haxx.se/libcurl/c/CURLOPT_SSL_CIPHER_LIST.html

https://www.ssllabs.com/ssltest/analyze.html?d=login.kleientertainment.com&s=34.226.164.193&latest

 

 

Share this comment

Link to comment
Share on other sites


Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

×
×
  • Create New...