Re: "known in advance" public key authentication?

help-gnutls

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: "known in advance" public key authentication?

From:	Nikos Mavrogiannopoulos
Subject:	Re: "known in advance" public key authentication?
Date:	Wed, 14 Nov 2012 18:17:45 +0100
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:10.0.10) Gecko/20121027 Icedove/10.0.10

On 11/13/2012 09:01 PM, Ivan Shmakov wrote:

>>>>>> Nikos Mavrogiannopoulos <address@hidden> writes:
> 
> […]
> 
>  > You'll have to sign it using gnutls_x509_crt_privkey_sign ().  It is
>  > better the check the certtool source for other possible options.
> 
>       ACK, thanks.
> 
>       So, I've ended up with the code MIME'd.  Then, however,
>       gnutls_handshake () fails with GNUTLS_E_PK_SIG_VERIFY_FAILED.
>       Do I understand it correctly that such an error points to some
>       bug in the certificate signing part?

It means that the TLS signature in the session cannot be verified using
the provided certificate. Could it be a mismatch between your
certificate and the private key? Did you try with certtool generated
certificates? I'd suggest to increase verbosity in order to find out
what is the actual reason of failure.

regards,
Nikos

[Prev in Thread]

Current Thread

[Next in Thread]

"known in advance" public key authentication?, Ivan Shmakov, 2012/11/07
- Re: "known in advance" public key authentication?, Graham Murray, 2012/11/07
  - Re: "known in advance" public key authentication?, Daniel Kahn Gillmor, 2012/11/07
    - Re: "known in advance" public key authentication?, Ivan Shmakov, 2012/11/07
    - Re: "known in advance" public key authentication?, Daniel Kahn Gillmor, 2012/11/07
    - Re: "known in advance" public key authentication?, Nikos Mavrogiannopoulos, 2012/11/07
    - Re: "known in advance" public key authentication?, Ivan Shmakov, 2012/11/11
    - Re: "known in advance" public key authentication?, Nikos Mavrogiannopoulos, 2012/11/13
    - Re: "known in advance" public key authentication?, Ivan Shmakov, 2012/11/13
    - Re: "known in advance" public key authentication?, Nikos Mavrogiannopoulos <=
    - Re: "known in advance" public key authentication?, Ivan Shmakov, 2012/11/19
  - Re: "known in advance" public key authentication?, Ivan Shmakov, 2012/11/07
- Re: "known in advance" public key authentication?, Ilari Liusvaara, 2012/11/07
- Re: "known in advance" public key authentication?, Florian Weimer, 2012/11/07
  - Re: "known in advance" public key authentication?, Nikos Mavrogiannopoulos, 2012/11/07
    - Re: "known in advance" public key authentication?, Florian Weimer, 2012/11/15
    - Re: "known in advance" public key authentication?, Nikos Mavrogiannopoulos, 2012/11/18
    - Re: "known in advance" public key authentication?, Florian Weimer, 2012/11/18
  - Re: "known in advance" public key authentication?, Ivan Shmakov, 2012/11/07
    - Re: "known in advance" public key authentication?, Daniel Kahn Gillmor, 2012/11/08

Prev by Date: Re: No longer a Web site at gnutls.org?
Next by Date: Re: "known in advance" public key authentication?
Previous by thread: Re: "known in advance" public key authentication?
Next by thread: Re: "known in advance" public key authentication?
Index(es):
- Date
- Thread