Ubuntu
software-center package

Bug #1043011
Comment #10

Comment 10 for bug 1043011

Revision history for this message

Michael Vogt (mvo) wrote on 2012-12-12:

#10

Thanks for your bugreport.

This bug is showing ssl issues for multiple urls, it appears like some are working (for me at least) and one does not.
It looks like this is a issue with our usage of the webkit/glib-http component that has a less robust ssl implementation
than e.g. firefox.

I get:
$ gnutls-cli --x509cafile /etc/ssl/certs/ca-certificates.crt -p 443 verifiedbyvisa.barclays.co.uk
...
- Peer's certificate is trusted

$ gnutls-cli --x509cafile /etc/ssl/certs/ca-certificates.crt -p 443 www.securesuite.net
..
- Peer's certificate is trusted

But also:
$ gnutls-cli --verbose --x509cafile /etc/ssl/certs/ca-certificates.crt -p 443 secure2.arcot.com
Processed 160 CA certificate(s).
Resolving 'secure2.arcot.com'...
Connecting to '216.136.151.43:443'...
*** Fatal error: A TLS fatal alert has been received.
*** Received alert [47]: Illegal parameter
*** Handshake has failed
GnuTLS error: A TLS fatal alert has been received.

Ubuntusoftware-center package

Comment 10 for bug 1043011

Ubuntu
software-center package