[Mono-bugs] [Bug 71696][Nor] Changed - mutual authentication with TLS, client certificate verify
bugzilla-daemon@bugzilla.ximian.com
bugzilla-daemon@bugzilla.ximian.com
Tue, 12 Apr 2005 12:56:17 -0400 (EDT)
Please do not reply to this email- if you want to comment on the bug, go to the
URL shown below and enter your comments there.
Changed by sebastien@ximian.com.
http://bugzilla.ximian.com/show_bug.cgi?id=71696
--- shadow/71696 2005-04-12 12:37:12.000000000 -0400
+++ shadow/71696.tmp.20331 2005-04-12 12:56:17.000000000 -0400
@@ -1,12 +1,12 @@
Bug#: 71696
Product: Mono: Class Libraries
Version: unspecified
OS: SuSE 8.0
OS Details:
-Status: REOPENED
+Status: ASSIGNED
Resolution:
Severity: Unknown
Priority: Normal
Component: Mono.Security
AssignedTo: sebastien@ximian.com
ReportedBy: mark.wuesthoff@middsol.com
@@ -110,6 +110,33 @@
I'll try to get another test case using another server accepting
client certificates.
------- Additional Comments From mark.wuesthoff@middsol.com 2005-04-12 12:37 -------
yes, unfortunately an alert is not send. Sorry.
+
+------- Additional Comments From sebastien@ximian.com 2005-04-12 12:56 -------
+This is what I get when trying the sample on openssl with TLS:
+
+ACCEPT
+depth=1 /O=Middsol/L=Hamburg/ST=Germany/C=DE/CN=MiddsolDemoCA
+verify return:1
+depth=0 /C=DE/ST=Germany/O=Middsol/CN=MiddsolDemoCert
+verify return:1
+4349:error:1408809F:SSL routines:SSL3_GET_CERT_VERIFY:length
+mismatch:s3_srvr.c:1828:
+4349:error:140780E5:SSL routines:SSL23_READ:ssl handshake
+failure:s23_lib.c:180:
+
+and with SSL:
+
+ACCEPT
+depth=1 /O=Middsol/L=Hamburg/ST=Germany/C=DE/CN=MiddsolDemoCA
+verify return:1
+depth=0 /C=DE/ST=Germany/O=Middsol/CN=MiddsolDemoCert
+verify return:1
+4349:error:140780E5:SSL routines:SSL23_READ:ssl handshake
+failure:s23_lib.c:180:
+
+My guess is that the current SSL/TLS code is buggy. A bug has probably
+been introduced at some stage as there is no tests in SVN for mutual
+authentication.