Daniel Shahaf <d...@daniel.shahaf.name> writes:

> Subversion uses Serf, which uses OpenSSL, which talks to an SSL implementation
> on the server.  The root cause of the error is known to the SSL implementation
> on the server (that's why you see it in the error log).  It's not obvious that
> OpenSSL on the client side even knows what the root cause is.

In this case the client knows exactly what is wrong, it's the one
closing the connection because:

140258270184704:error:140AB18E:SSL routines:SSL_CTX_use_certificate:ca md too 
weak:../ssl/ssl_rsa.c:303:

Could we get our client to show that error?  We would need a new serf
API to marshal the error message back to Subversion.

-- 
Philip

Reply via email to