[Mono-bugs] [Bug 617100] New: Certificate error sending certified email
bugzilla_noreply at novell.com
bugzilla_noreply at novell.com
Thu Jun 24 09:22:26 EDT 2010
http://bugzilla.novell.com/show_bug.cgi?id=617100
http://bugzilla.novell.com/show_bug.cgi?id=617100#c0
Summary: Certificate error sending certified email
Classification: Mono
Product: Mono: Class Libraries
Version: 2.6.x
Platform: x86-64
OS/Version: All
Status: NEW
Severity: Normal
Priority: P5 - None
Component: System.Security
AssignedTo: spouliot at novell.com
ReportedBy: stefano.sapienti at apsystems.it
QAContact: mono-bugs at lists.ximian.com
Found By: ---
Blocker: ---
Created an attachment (id=371500)
--> (http://bugzilla.novell.com/attachment.cgi?id=371500)
Certificates
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US)
AppleWebKit/533.4 (KHTML, like Gecko) Chrome/5.0.375.70 Safari/533.4
Sending certified mail works or not depending on the mail provider. Using the
same code (provided inside attachment) I'm able to send certified emails with
google and another local provider but not with a third local provider
(specified in attachment).
Reproducible: Always
Steps to Reproduce:
More detailed infos inside attachment
1. mozroots --import --machine --ask-remove
2. certmgr -ssl -m smtps://smtpserver:465 (this port is for ssl, for tls port
25 is used but cetmgr fails)
For Google this is enough, for this provider I need to manually add
certificates (attached) to stores:
3. certmgr --add -c -m CA /tmp/certca.crt
4. certmgr --add -c -m Trust /tmp/certroot.cer
5. reboot
6. Send Mail with the provided sample
Actual Results:
System.Net.Mail.SmtpException: Message could not be sent. --->
System.IO.IOException: The authentication or decryption has failed. --->
System.InvalidOperationException: SSL authentication error:
RemoteCertificateNotAvailable, RemoteCertificateChainErrors
at System.Net.Mail.SmtpClient.<callback>m__3 (System.Object sender,
System.Security.Cryptography.X509Certificates.X509Certificate certificate,
System.Security.Cryptography.X509Certificates.X509Chain chain, SslPolicyErrors
sslPolicyErrors) [0x00000] in <filename unknown>:0
Expected Results:
Mail Sent. If I add the Ca certificate also to Trust store:
7. certmgr --add -c -m Trust /tmp/certca.crt
8. reboot
9. Send Mail
the RemoteCertificateChainErrors disappear
System.Net.Mail.SmtpException: Message could not be sent. --->
System.IO.IOException: The authentication or decryption has failed.
---> System.InvalidOperationException: SSL authentication error:
RemoteCertificateNotAvailable at System.Net.Mail.SmtpClient.m__3
(System.Object sender,
System.Security.Cryptography.X509Certificates.X509Certificate
certificate, System.Security.Cryptography.X509Certificates.X509Chain
chain, SslPolicyErrors sslPolicyErrors) [0x00000] in :0
I have to use this code in an ASP.Net application but it fails also if used in
a console application. In MS.Net it's enough to add certca.crt to the trusted
CA store of sending machine.
--
Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug.
More information about the mono-bugs
mailing list