On Wed, Apr 18, 2001 at 02:29:45PM -0400, George Lind wrote:
> I am running a server on NT. I am am using verify peer. The server is
> failing on the SSL_accept with an error message of
> "SSL3_GET_CLIENT_CERTIFICATE:no certificate returned". My SSL_accept is
> return a -1. The client is also using verify peer. Is the problem in my
> client or server?
That is hard to say.
* SSL_accept() should only stop with -1, when SSL_VERIFY_FAIL_IF_NO_PEER_CERT
and SSL_VERIFY_PEER are set. In this case, the client seems to be at
fault, as it does not return a certificate.
* You now have to check why the client does not send its certificate.
Maybe you can use openssl s_server and s_slient as reference applications.
Best regards,
Lutz
--
Lutz Jaenicke [EMAIL PROTECTED]
BTU Cottbus http://www.aet.TU-Cottbus.DE/personen/jaenicke/
Lehrstuhl Allgemeine Elektrotechnik Tel. +49 355 69-4129
Universitaetsplatz 3-4, D-03044 Cottbus Fax. +49 355 69-4153
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
