[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

RE: Re: Re: Problem accessing server using TLS1.2

From: Bartosz Brodecki <bartek_at_nsense.net>
Date: Thu, 10 Jan 2013 23:53:29 -0800 (PST)

> On 9 January 2013 05:12, Bartosz Brodecki <bartek at nsense dot net> wrote:
> > Hi,
> >
> > using serf library makes different error (but I get possibility to select user certificate):
> > Unable to connect to a repository at URL 'https://myserver/repo'
> > Error running context: An error occurred during SSL communication
> >
> > And still TSVN start using TLS1.2.
> > I even upgraded TSVN to the newest nightly builds and still no luck.
> >
> > I'm sure that TSVN start negotiation using TSVN 1.2 (I also use different apps that only support TLS 1.0, and there are no problem, and no TLS1.2 from the client).
> >
> > Below is presented logs from apache server (with debug ssl):
> > [Wed Jan 09 04:35:40 2013] [debug] ssl_engine_kernel.c(1884): OpenSSL: Write: SSLv3 read client certificate B
> > [Wed Jan 09 04:35:40 2013] [debug] ssl_engine_kernel.c(1903): OpenSSL: Exit: error in SSLv3 read client certificate B
> > [Wed Jan 09 04:35:40 2013] [debug] ssl_engine_kernel.c(1903): OpenSSL: Exit: error in SSLv3 read client certificate B
> > [Wed Jan 09 04:35:40 2013] [info] [client xxx.xxx.0.6] SSL library error 1 in handshake (server myserver:443)
> > [Wed Jan 09 04:35:40 2013] [info] SSL Library Error: 336105671 error:140890C7:SSL routines:SSL3_GET_CLIENT_CERTIFICATE:peer did not return a certificate No CAs known to server for verification?
> > [Wed Jan 09 04:35:40 2013] [info] [client xxx.xxx.0.6] Connection closed to child 6 with abortive shutdown (server myserver:443)
> >
> > From sniffer I see that there are some problems with sending client certificate. After packet with user certificate server drops connection (by sending error with handshake).
>
> Have you tried the official subversion command line client? If that
> also fails then you could try asking on the subversion users mailing
> list.
>
> Simon

Hi,

I can access SVN using Unix* svn command line, or using different web-browser (like chrome, opera - they support TLS1.2, firefox - using TLS1.0).

For me some solution will be possibilities to disable support for TLS1.2 at TSVN config files.

BR,
Bartek

------------------------------------------------------
http://tortoisesvn.tigris.org/ds/viewMessage.do?dsForumId=4061&dsMessageId=3042635

To unsubscribe from this discussion, e-mail: [users-unsubscribe_at_tortoisesvn.tigris.org].
Received on 2013-01-11 12:27:35 CET

This is an archived mail posted to the TortoiseSVN Users mailing list.