[Mono-bugs] [Bug 79986][Nor] Changed - TlsException at TlsClientCertificate.ProcessAsTls1 using SslServerStream

bugzilla-daemon at bugzilla.ximian.com bugzilla-daemon at bugzilla.ximian.com
Mon Nov 20 11:32:02 EST 2006 

Please do not reply to this email- if you want to comment on the bug, go to the
URL shown below and enter your comments there.

Changed by sebastien at ximian.com.

http://bugzilla.ximian.com/show_bug.cgi?id=79986

--- shadow/79986	2006-11-20 10:57:31.000000000 -0500
+++ shadow/79986.tmp.11657	2006-11-20 11:32:02.000000000 -0500
@@ -1,13 +1,13 @@
 Bug#: 79986
 Product: Mono: Class Libraries
 Version: 1.2
 OS: GNU/Linux [Other]
 OS Details: 
-Status: REOPENED   
-Resolution: 
+Status: RESOLVED   
+Resolution: NOTABUG
 Severity: Unknown
 Priority: Normal
 Component: Mono.Security
 AssignedTo: sebastien at ximian.com                            
 ReportedBy: pawel.sakowski at mindbreeze.com               
 QAContact: mono-bugs at ximian.com
@@ -135,6 +135,26 @@
 product-specific logic.
 
 Or are you saying that Mono doesn't support both clientcert-less and
 clientcert-ful connections to one server anymore and I should provide
 separate endpoints for those two cases? Or should I use another
 constructor or another class to support both?
+
+------- Additional Comments From sebastien at ximian.com  2006-11-20 11:32 -------
+The parameter is named "clientCertificateRequired", the keyword is
+*required*, not requested nor optional. The API used is the one MS
+defined in the Fx 1.2 preview and it won't be changed inside
+Mono.Security (but we will support the new 2.0 API inside System.dll).
+
+It's possible that the parameter was broken somewhere in the 1.1.13.x
+series (a lot of SSL/TLS bugs have been fixed in the last year) but it
+wasn't the original (nor documented) intention.
+
+> Good for you that a scenario exists where SslServerStream works.
+> However, that doesn't help me much.
+
+Well it would be "Good for you" too (and much helpful) if you looked
+the sample code I referenced earlier. There you'll find an example
+that does just what you are asking, optional support of client-side
+certificates - including server side source code using
+Mono.Security.dll and the test cases using WGET.
+

More information about the mono-bugs mailing list