#47236 [NEW]: Server Cert not captured when using TLS

Wed, 28 Jan 2009 20:41:59 -0800 

From:             BenBE at geshi dot org
Operating system: WinXP
PHP version:      5.2.8
PHP Bug Type:     OpenSSL related
Bug description:  Server Cert not captured when using TLS

Description:
------------
When trying to capture the server certificate of an TLS socket connection
using the stream_socket_client API no certificate is captured. If
connecting to the same host via SSL transport everything works fine. The
remote server is known to support TLSv1 properly.

Reproduce code:
---------------
<?php $mode = "tls";
$site_cert = NULL;
$context = stream_context_create();
$result = stream_context_set_option($context, $mode, 'verify_host',
true);
$result = stream_context_set_option($context, $mode, 'capture_peer_cert',
true);
if ($fp = stream_socket_client("$mode://ssl.example.de:443/", $errno,
$errstr, 30, STREAM_CLIENT_CONNECT, $context)) {
    if ($options = stream_context_get_options($context)) {
        var_dump($options);
        if (isset($options[$mode]) &&
isset($options[$mode]['peer_certificate'])) {
            $site_cert = $options[$mode]['peer_certificate'];
        }
    }
    fclose($fp);
}
if ($site_cert) {
    openssl_x509_export($site_cert, $str_cert);
    $pubkey = openssl_pkey_get_public($str_cert);
    $keyinfo = openssl_pkey_get_details($pubkey);
    var_dump($keyinfo);
}


Expected result:
----------------
The first var_dump should contain a resource for the peer_certificate,
both when $mode='ssl' AND $mode='tls'. The second dump should include the
PEM-encoded public key of the server as well as some info on the key.

Actual result:
--------------
When $mode is set to 'tls' the 'peer_certificate' index in the first dump
is missing and no second dump is written. When $mode='ssl' everything works
as expected.

-- 
Edit bug report at http://bugs.php.net/?id=47236&edit=1
-- 
Try a CVS snapshot (PHP 5.2):        
http://bugs.php.net/fix.php?id=47236&r=trysnapshot52
Try a CVS snapshot (PHP 5.3):        
http://bugs.php.net/fix.php?id=47236&r=trysnapshot53
Try a CVS snapshot (PHP 6.0):        
http://bugs.php.net/fix.php?id=47236&r=trysnapshot60
Fixed in CVS:                        
http://bugs.php.net/fix.php?id=47236&r=fixedcvs
Fixed in CVS and need be documented: 
http://bugs.php.net/fix.php?id=47236&r=needdocs
Fixed in release:                    
http://bugs.php.net/fix.php?id=47236&r=alreadyfixed
Need backtrace:                      
http://bugs.php.net/fix.php?id=47236&r=needtrace
Need Reproduce Script:               
http://bugs.php.net/fix.php?id=47236&r=needscript
Try newer version:                   
http://bugs.php.net/fix.php?id=47236&r=oldversion
Not developer issue:                 
http://bugs.php.net/fix.php?id=47236&r=support
Expected behavior:                   
http://bugs.php.net/fix.php?id=47236&r=notwrong
Not enough info:                     
http://bugs.php.net/fix.php?id=47236&r=notenoughinfo
Submitted twice:                     
http://bugs.php.net/fix.php?id=47236&r=submittedtwice
register_globals:                    
http://bugs.php.net/fix.php?id=47236&r=globals
PHP 4 support discontinued:          http://bugs.php.net/fix.php?id=47236&r=php4
Daylight Savings:                    http://bugs.php.net/fix.php?id=47236&r=dst
IIS Stability:                       
http://bugs.php.net/fix.php?id=47236&r=isapi
Install GNU Sed:                     
http://bugs.php.net/fix.php?id=47236&r=gnused
Floating point limitations:          
http://bugs.php.net/fix.php?id=47236&r=float
No Zend Extensions:                  
http://bugs.php.net/fix.php?id=47236&r=nozend
MySQL Configuration Error:           
http://bugs.php.net/fix.php?id=47236&r=mysqlcfg

Reply via email to