Ubuntu
subversion package

https access broken (with optional client certs)

Bug #441954 reported by Andreas Jellinghaus on 2009-10-04

This bug report is a duplicate of: Bug #294648: svn over https with client certificates broken (regression in intrepid). Edit Remove

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	subversion (Ubuntu)	New	Undecided	Unassigned

Bug Description

Binary package hint: subversion

I tested karmic and the https access to svn servers configured with optional client
certificates (so you can for example read without authenticating yourself, but
write access needs authentication with a client certificate) is broken.

steps to reproduce:
svn co http://www.opensc-project.org/svn/test/trunk http
-> works
svn co https://www.opensc-project.org/svn/test/trunk https
-> works on 8.04, broken on all releases since, including karmic

source of the problem: gnutls doesn't implement SSL properly.
openssl did, so the old 8.04 packages linked against openssl
work fine.

yes, I know, the problem has been reported several times for 8.10 and 9.04,
but nothing ever happened. so I tested again for 9.10/karmic and to get your
attention to this problem, so maybe it will be fixed this time before release,
here is a new bug report. (see 366928 for older bug reports)

Revision history for this message

Max Bowsher (maxb) wrote on 2009-11-10:

Hi Andreas,

Thanks for your report, however duplicate bugs just make the bugtracker more confusing, so I shall set this one as a duplicate of the earliest report of the same issue I have found, bug 294648.

Perhaps you could follow up there, elaborating on your reproduction steps? For me on Karmic, running "svn co https://www.opensc-project.org/svn/test/trunk" results in a prompt for a client certificate prompt - I'm not sure what to do at that point, and whether that constitutes working or not working.