Fails certificate authentication with GnuTLS
Fails certificate authentication with GnuTLS, but succeeds with OpenSSL.
This is with:
httpd-2.4.54-5.fc37.x86_64
mod_ssl-2.4.54-5.fc37.x86_64
libsoup3-3.1.3-1.fc38.x86_64
glib2-2.73.3-2.fc38.x86_64
glib-networking-2.74~rc-2.1.x86_64
gnutls-3.7.7-1.fc37.x86_64
openssl-3.0.5-2.fc37.x86_64
Setup local certificate login URL
Make sure you backup all the files before overwriting them, especially if you've configured your own local httpd server.
- unpack this configuration into the
/
- make sure the new directory and files are
chmod a+r
under/var/www/html/
, thus the content there is readable for the httpd; similarly set the executable flag (chmod a+x
) on all the directories in path/var/www/html/certlogin
, otherwise aForbidden
error can be returned by the server without trying the certificate login - all the directories in path
/var/www/html/certlogin
should be owned byroot:root
- start the httpd daemon (
sudo systemctl start httpd
)
Run the test app
- save this cert-auth.c - the first line contains a comment with a command how to build & run it
Running the test app with the GnuTLS backend enabled in the glib-networking results in error (#ff0000
):
libsoup_read_done_cb: Failed: Error performing TLS handshake: An unexpected TLS packet was received.
Running the test app with the OpenSSL backend enabled in the glib-networking results in success (#00ff00
):
libsoup_read_done_cb: did read 108 bytes:
<html><head><title>certLogin Site</title></head><body>
<h2>Cert Login Site</h2>
<p>hello</p>
</body></html>
Edited by Milan Crha