[Mono-dev] Remothing through HTTPS

Yngve Zackrisson yngve.zackrisson at mobila-kontoret.se
Wed Oct 12 05:24:52 EDT 2005 

On Tue, 2005-10-11 at 21:29, Sebastien Pouliot wrote:
> Hello Yngve,
> 
> On Mon, 2005-10-10 at 11:17 +0200, Yngve Zackrisson wrote:
> > Hallo Sebastien,
> > 
> > Great news!
> > 
> > I have got HTTPS working through .NET Remoting 
> > with Win32 MS .NET on the client side 
> > and Linux Mono on the server side.
> 
> Indeed! :-)
> 
> > The changes I had to do in Mono was in 
> > the library  System.Runtime.Remoting.Channels.Http and 
> > in the source HttpServer.cs.
> > 
> > Everything seems to work fine now, 
> > even upload of large files. 
> 
> Does this includes your certificate chaining problem ?
> 

No :-(.

During my run I get the error code #-2146762486 on the console 
(CERT_E_CHAINING problem). (The code is pretty much the same 
as in your solution for mutual authentication).
I am (pretty) sure I have added the root certificate (cacert17.cer) 
to the Mono machine Trust store.
It probably works because the return value is hard coded to true :-|.



(
Currently I have problem to execute programs like certmgr and mono.
I get: 

$ mono --debug --trace=none Program.exe
$ 
$ ** ERROR **:file handles.c: line 546 (_wapi_lookup_handle): assertion
failed: (shared_handle_data->type == type)
$ aborting...
$ Aborted
$ 

This does not happen all the time but only sometimes.

I searched the internet for this error message an it seems to 
be a known bug in some build scripts (for Mono 1.1.9.1).
I think I read somewhere someone writing that 
this "has disappeared" in Mono 1.1.9.2.
FYI. I run Linux Fedora Core 3 with Mono 1.1.9.1 on my server.
)



> > Thank You very much for your support.
> > 
> > If you want the solution I send you the source.
> 
> Yes! Please send to the mailing-list any changes you had to made in the
> class library to make this happen.
> 

I attached the code for HttpServer.cs. 
My changed code is surrounded by YZAC-START: and :YZAC-END.
The solution is not generalized and requires the .p12 file 
to be located in the actual bin directory and 
be named 'server17-cert.p12' with the password 'service'.
(Don't bother about the debug messages passed to the console).

Is it possible to get this feature into the Mono standard?.
Preferable we would like this to be configurable through 
the remoting's channel properties (with properties like: 
bool isSecure, X509Certificate certificate, 
RSA privatekey(, string password, ...))
 - i. e. similar to what exists i XSP.
Could You check with those working with 
the Remoting part of Mono if this is possible?.



Regards



Yngve Zackrisson


-------------- next part --------------
A non-text attachment was scrubbed...
Name: HttpServer.cs
Type: text/x-csharp
Size: 31492 bytes
Desc: not available
Url : http://lists.ximian.com/pipermail/mono-devel-list/attachments/20051012/dd031047/attachment.bin

More information about the Mono-devel-list mailing list