[
https://issues.apache.org/jira/browse/QPID-5356?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Cliff Jansen updated QPID-5356:
-------------------------------
Attachment: QPID-5356-0.patch
Patch to force usage of supplied client certificates only
> Windows can provide an unspecified client certificate in SSL negotiation
> ------------------------------------------------------------------------
>
> Key: QPID-5356
> URL: https://issues.apache.org/jira/browse/QPID-5356
> Project: Qpid
> Issue Type: Bug
> Components: C++ Client
> Affects Versions: 0.24
> Environment: Windows, SSL
> Reporter: Cliff Jansen
> Assignee: Cliff Jansen
> Fix For: 0.27
>
> Attachments: QPID-5356-0.patch
>
>
> By default, the SChannel package from Microsoft will attempt to guess an
> appropriate client certificate during SSL/TLS negotiation if a client
> certificate is requested by the server and none is supplied by the client in
> its credentials structure. This behavior can be changed to only work with an
> explicitly specified certificate (if any) by the client.
> By doing so, the behavior of clients is made more consistent across platforms
> and this eliminates unexpected false positives in testing.
--
This message was sent by Atlassian JIRA
(v6.1#6144)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
