Erlang/OTP Forums

Author

Message

< Erlang patches mailing list ~ Fix verification of ssl client when fail_if_no_peer_cert

Guest

Posted: Mon Apr 05, 2010 5:19 pm

Guest

Hello,

This bug only comes to light after a previous bug involving the
'fail_if_no_peer_cert' ssl option is fixed. I've included this patch
in the same branch as the other fix:

git fetch git://github.com/jinsky/otp.git ssl_opts_fix

The commit message is:

Fix verification of ssl client when fail_if_no_peer_cert

The SSL handshake fails when an ssl server is configured with the
'fail_if_no_peer_cert' option and a valid client sends its certificate
as instructed. On the server-side ssl:ssl_accept/2 will return
{error,esslerrssl}, and it will send an "Unexpected Message" SSL Alert
(type 10) to the client.

Thanks,

Rory

________________________________________________________________
erlang-patches (at) erlang.org mailing list.
See http://www.erlang.org/faq.html
To unsubscribe; mailto:erlang-patches-unsubscribe@erlang.org

Post received from mailinglist

Guest

Posted: Mon Apr 05, 2010 5:19 pm

Guest

All times are GMT

View next topic View previous topic Page 1 of 1 Erlang Forum - Trap Exit Forum Index ~ Erlang patches mailing list

This forum is locked: you cannot post, reply to, or edit topics.

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum

Hosted by Erlang Solutions | Powered by phpBB and NoseBleed 1.14

Search

Navigation

Erlang/OTP Projects

Documentation

Planet Trapexit

Bookmark

Personal tools

Erlang/OTP Forums

< Erlang patches mailing list ~ Fix verification of ssl client when fail_if_no_peer_cert