Windows TLS handshake error
I searched for bugs that mention this issue and found none so here is my bug report.
I have all linux clients running Gajim, except one. A windows 10 user. Wouldn't you know it, he is the head cheese and needs the security of two way authentication for the whole xmpp security. I am running openfire 4.1.2 on debian jessie. I have Gajim clients on manjaro arch (v. 16.7), ubuntu 16.04 (v,16.5), and windows 10. (v. 16.7)
Note: Two way auth works well on both arch and ubuntu so I know it is not a server side issue or Gajim on linux.
I do know most of the development has been on the Linux side. Thank you all for your hard work. This issue is with the windows client (that I wish I didn't have to support).
openfire has the cert installed as "trusted" and "accept self signed" is ticked. --all this works for the linux clients
steps to recreate test system = windows 10 (running in virtualbox. 1 cpu, 2GB RAM)
I save the security cert in a .p12 format to the windows certificate store. Than I point to the path of the cert in Gajim, tick "certificate is encrypted" when I try to connect it asks for a password (the one I used to secure the .p12 file), here are the logs from Gajim. It fails to handshake.
see file for error logs xmpp_gajim_windows_handshake_error.txt
Troubleshooting: if I enter nothing for a password when prompted to auth the .p12 crt = same failure and error output I point to the cert in the documents\opensslpem folder to start with. if I point to the cert in the C:\Users\winblows\AppData\Roaming\Microsoft\SystemCertificates\My\Certificates = same failure if I try connecting using the IM client Swift I get similar errors. I can post the logs here if anyone is interested. Since this forum is focused on Gajim I wasn't sure if they are wanted or would be helpful. I tried three different certs all fail in the same way. After creating the the certs I always check to see if they are valid, they all have been. I disabled the windows firewall = same failure the first two certs I created with example.net as the FQDN the third I tried the FQDN of the openfire server instance xmpp.example.net == same failure
Any ideas? Thanks again for all the work you guys do on this project. I am very new to coding. What I make out is that the handshake is failing and the challenge is not being given by gajim on windows, or not given in the correct format.