Hi again:
I just found out, that the order of certificates in the pkcs12 file is
the same, i.e. it starts with the key, then come 2 ca certificates and
then the user cert. If I reorder this, gnutls, subversion and neon
accept the pkcs12 key:
,
mv organisation-user.p12 organisation-user-wron
Hi!
Simon Josefsson schrieb:
> Friedrich Delgado Friedrichs writes:
> > I was lazy and gave the same file as x509 cert, ca and keyfile. The
> > important difference is that gnutls-cli does not like it if the key is
> > in the same file as the cert.
> I don't think so -- the problem is more likely
Friedrich Delgado Friedrichs writes:
> Ok, it's getting really interesting now, I've spotted an important
> difference:
>
> Simon Josefsson schrieb:
>> Friedrich Delgado Friedrichs writes:
>> > I did that, and re-tried the gnutls-cli line, with a different result:
>> >
>> > ,
>> > Processe
Ok, it's getting really interesting now, I've spotted an important
difference:
Simon Josefsson schrieb:
> Friedrich Delgado Friedrichs writes:
> > I did that, and re-tried the gnutls-cli line, with a different result:
> >
> > ,
> > Processed 3 CA certificate(s).
> > Processed 3 client cer
Friedrich Delgado Friedrichs writes:
> I did that, and re-tried the gnutls-cli line, with a different result:
>
> ,
> Processed 3 CA certificate(s).
> Processed 3 client certificates...
> Processed 3 client X.509 certificates...
> Resolving 'intern.organisation.org'...
> Connecting
Simon Josefsson schrieb:
> Friedrich Delgado Friedrichs writes:
> I suspect your key file is encrypted. The key file should contain a
> header like this:
Sure, and it's encrypted.
> Does it? If not, try adding '-nodes' to your 'openssl pkcs12' command
> line, and retry the gnutls-cli command.
Friedrich Delgado Friedrichs writes:
>> > Downgrading to libneon24-gnutls 0.28.2-6.1+b1 seemed to fix the
>> > problem at first, but I discovered today that it fails against a
>> > different server.
>> That is odd, but it is possible that earlier versions didn't check the
>> certs properly, or th
Hiho!
Simon Josefsson schrieb:
> Friedrich Delgado Friedrichs writes:
> > svn: OPTIONS von »https://my-repo.dom/svn/project/«: SSL negotiation
> > failed: SSL error: Key usage violation in certificate has been
> > detected. (https://my-repo.dom/svn/project/)
> This is often a simple administrator
Friedrich Delgado Friedrichs writes:
> reassign 530510 libneon27-gnutls
> found 530510 0.28.4-1
> thank you
>
> Ok, I hope it's all correct now. I'm terribly sorry for the noise!
No problem, we want to help but there is a history of a tendency in the
GnuTLS package that reporters group together
reassign 530510 libneon27-gnutls
found 530510 0.28.4-1
thank you
Ok, I hope it's all correct now. I'm terribly sorry for the noise!
Simon Josefsson schrieb:
> Can you explain how these bug reports suggests there is a bug in the
> GnuTLS packages?
I'm staying with libneon27-gnutls now, unless you
10 matches
Mail list logo
