Uploaded image for project: 'MariaDB Connector/C'
  1. MariaDB Connector/C
  2. CONC-695

Wrong certificate verification

    XMLWordPrintable

Details

    • Task
    • Status: Closed (View Workflow)
    • Major
    • Resolution: Fixed
    • 3.4.0
    • 3.4.3
    • TLS/SSL
    • None
    • Windows

    Description

      When connecting to a database server with a self signed certificate X509_get_verify_result returns X509_V_ERR_UNABLE_TO_GET_ISSUER_CERT_LOCALLY on Windows.

      Even if a fingerprint was specified the verification aborts and connection will be closed.
      The code only checks for self signed error codes.

      Solution: Instead of checking the last error by X509_get_verify_result, we need to register a callback function, which checks if a self signed error occured (SSL_CTX_set_verify).

      Attachments

        Activity

          People

            georg Georg Richter
            georg Georg Richter
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Git Integration

                Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.