[prev in list] [next in list] [prev in thread] [next in thread] 

List:       subversion-issues
Subject:    [Issue 4509] New - serf does not store client SSL certificate passwords
From:       philip () tigris ! org
Date:       2014-06-06 11:03:00
Message-ID: iz4509 () subversion ! tigris ! org
[Download RAW message or body]

http://subversion.tigris.org/issues/show_bug.cgi?id=4509
                 Issue #|4509
                 Summary|serf does not store client SSL certificate passwords
               Component|subversion
                 Version|trunk
                Platform|All
                     URL|
              OS/Version|All
                  Status|NEW
       Status whiteboard|
                Keywords|
              Resolution|
              Issue type|DEFECT
                Priority|P3
            Subcomponent|libsvn_ra_serf
             Assigned to|issues@subversion
             Reported by|philip






------- Additional comments from philip@tigris.org Fri Jun  6 04:02:59 -0700 2014 -------
When using a client SSL certificate that needs a password Subversion no longer
attempts to store the password in the auth cache.  This is a regression from
1.7/neon where the password was stored.

When using neon the Subversion code decrypts the certificate using neon
functions, this allowed Subversion to determine whether a password was correct
and store it, see client_ssl_decrypt_cert() in session.c. When using serf the
Subversion code no longer decrypts the certificate and makes no attempt to store
the password.

------------------------------------------------------
http://subversion.tigris.org/ds/viewMessage.do?dsForumId=463&dsMessageId=3079997

To unsubscribe from this discussion, e-mail: [issues-unsubscribe@subversion.tigris.org].
[prev in list] [next in list] [prev in thread] [next in thread]