Dropping down to GnuTLS 2.2.x worked!
Great work Joe!
Thanks,
Josh
> -----Original Message-----
> From: Joe Orton [mailto:jorton_at_redhat.com]
> Sent: Friday, April 18, 2008 9:37 AM
> To: Calahan, Joshua A CTR USAF AFMC AEDC/ATA
> Cc: Van Deman, Quint CTR US USJFCOM J7; Smith, Barbara CTR US USJFCOM
> J7; users_at_subversion.tigris.org
> Subject: Re: svn client & smartcard certificates
>
> On Fri, Apr 18, 2008 at 10:25:43AM -0400, Calahan, Joshua A CTR USAF
> AFMC AEDC/ATA wrote:
> > Hmmm. I get this for all commands:
> >
> > pakchois: module path [/usr/lib64/pkcs11]
> > pakchois: module directory '/usr/lib64/pkcs11'...
> > pakchois: loading /usr/lib64/pkcs11/libcoolkeypk11.so
> > pakchois: loaded coolkey OK.
> > Passphrase for 'PIN for token "XXXX" in slot "XXXX"':
> > svn: OPTIONS of 'XXXX': SSL negotiation failed: SSL error: GnuTLS
> internal error. (XXXX)
>
> Were you using GnuTLS 2.3.x? 2.3.x is the GnuTLS development branch
> and
> there was a bug which broke PKCS#11 with neon, and would fail like
> that.
> I think 2.3.6 has the fix, but I'd recommend sticking with 2.2.x for
> the
> time being.
>
> Regards,
>
> joe
Received on 2008-04-18 21:02:25 CEST