> > One Thing of note that I forgot in my initial post and that > was partially mentioned by Johan: > > Can you try some tests without svn, for instance set up apache to > > serve a simple static page protected by client cert authentication, > > and try to access that with that cert using openssl 0.9.8g > vs. 0.9.8k? > > The access via the dav_svn module in a web browser from the > failing client works like a charm. There are no error > messages, the SSL handshake works fine. the content of the > repository is shown in the browser. This also works from all > our regular workstations. > > So this Problem seems to be subversion specific. > > > I will setup a test server on thursday with a current version > of apache, subversion and openssl and test if the failing > client still has problems.
That may or may not be true. If the browser you used has it's own SSL handling code (happens more than you might expect) then you haven't tested the openSSL client libraries yet. To make absolutely sure that you are testing the OpenSSL library on your machine, use the command line tool: http://www.openssl.org/docs/apps/s_client.html# Use any and all options to give you a good understanding of what might be going wrong. For example: -debug -showcerts Sorry, it took a while to find the docs for it. I recommend routing the debug information to a file so you can review it later. Confidentiality Note: The information contained in this message, and any attachments, may contain proprietary and/or privileged material. It is intended solely for the person or entity to which it is addressed. Any review, retransmission, dissemination, or taking of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited. If you received this in error, please contact the sender and delete the material from any computer.