SSL client certificate verify problems (RSA)
Per Andersson
avtobiff@REDACTED
Mon Oct 11 18:42:55 CEST 2010
Hi!
When setting #ssl.verify = 2 (verify = verify_peer, fail_if_no_peer_cert = true;
if I understand correctly), and the client sends a certificate the SSL
connection crashes.
The investigation I have made indicates that this happens when
ssl_handshake:certificate_verify/6 is called, because PublicKey seems to be an
integer() and public_key:decrypt_public/3 assumes PublicKey is a
#'RSAPublicKey'.
Should public_key:decrypt_public/3 be extended to also take PublicKey formatted
as an integer()?
Best regards,
Per
More information about the erlang-bugs
mailing list