#675 xchat won't reconnect if certificate has expired

closed-fixed
nobody
None
5
2004-07-04
2004-07-02
Arny
No

bug 878935 provided patch to allow connection even if
the server's certificate had expired. Unfortunately a
bug still remains:

if using a SSL server with an expired certificate, even
with the "accept invalid certificate" option, if the
connection is reset for any reason (time out,
/reconnect, etc) Xchat will fail reconnecting to the
server and will state that "Certificate has expired":

*** When initialy connecting:
--- Valid since May 15 14:46:41 2003 GMT to May 14
14:46:41 2004 GMT
--- * Chiper info:
--- Version: TLSv1/SSLv3, cipher AES256-SHA (256 bits)
--- * Verify E: self signed certificate.? (18) -- Ignored
--- Connected. Now logging in..

*** when reconnecting:
--- Public key algorithm: rsaEncryption (1024 bits)
--- Public key algorithm uses ephemeral key with
-1073749000 bits
--- Sign algorithm md5WithRSAEncryption (0 bits)
--- Valid since May 15 14:46:41 2003 GMT to May 14
14:46:41 2004 GMT
--- * Chiper info:
--- Version: TLSv1/SSLv3, cipher AES256-SHA (256 bits)
--- Connection failed. Error: certificate has expired.?
(10)

Tested on Xchat 2.0.6, 2.0.8

Discussion

  • Arny
    Arny
    2004-07-02

    • status: open --> closed
     
  • Arny
    Arny
    2004-07-02

    Logged In: YES
    user_id=430390

    the bug is also present in xchat 2.0.7
    the bug is fixed in 2.0.10

     
  • Peter Zelezny.
    Peter Zelezny.
    2004-07-04

    • status: closed --> closed-fixed