Package: curl
Version: 7.43.0-1
Severity: normal
sid seems to be changed from curl-openssl to curl-gnutls. As result client
certificates don't work anymore. The client cert packet just contains 0
certificates when 1 certificate is expected. It worked fine with curl-openssl.
I only get HTTP 403 when the apache is configured to require client
certificates.
(asd.crt is pem certificate and asd.key is the key)
curl -v --cert asd.crt --key asd.key --cacert manymanymany_certificates.crt
https://example.org/resource
The url could be something like https://auth.startssl.com/
And the client certificate packet looks like:
Secure Sockets Layer
TLSv1 Record Layer: Handshake Protocol: Certificate
Content Type: Handshake (22)
Version: TLS 1.0 (0x0301)
Length: 7
Handshake Protocol: Certificate
Handshake Type: Certificate (11)
Length: 3
Certificates Length: 0
But it should look like (seen with old curl-openssl)
Secure Sockets Layer
TLSv1.2 Record Layer: Handshake Protocol: Certificate
Content Type: Handshake (22)
Version: TLS 1.2 (0x0303)
Length: 4364
Handshake Protocol: Certificate
Handshake Type: Certificate (11)
Length: 4360
Certificates Length: 4357
Certificates (4357 bytes)
--- System information. ---
Architecture: amd64
Kernel: Linux 4.0.0-2-amd64
Debian Release: stretch/sid
500 unstable httpredir.debian.org
--- Package information. ---
Depends (Version) | Installed
=========================-+-=============
libc6 (>= 2.17) |
libcurl3 (= 7.37.1-1) |
zlib1g (>= 1:1.1.4) |
Package's Recommends field is empty.
Package's Suggests field is empty.
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
