[gnutls-dev] [PATCH] gnutls-cli -t <timeout>

Robert Millan [ackstorm] robert.millan at ackstorm.es
Wed May 30 13:09:22 CEST 2007


It seems that my mail didn't make it to the list.  I subscribed and resending it.

Btw, I found a bug in my previous patch, which is fixed here.

On Mon, May 28, 2007 at 07:19:03PM +0200, Robert Millan [ackstorm] wrote:
> On Mon, May 28, 2007 at 10:23:14AM +0200, Robert Millan [ackstorm] wrote:
> > On Sun, May 27, 2007 at 04:10:28PM +0200, Simon Josefsson wrote:
> > > 
> > > However, I'm not convinced this is the right fix.  I believe the servers
> > > are buggy here, and changing gnutls seems the wrong response.
> > > 
> > > What we may want to do is to improve the behaviour when we encounter a
> > > buggy server, which may include some kind of timeout or similar.
> > > However, if the server closed the connection, I think it should be
> > > possible to detect this, and then we can print a message.
> > 
> > I'm working on this atm.  I have almost completed a patch that implements this
> > timeout option (will send it RSN).
> > 
> > > To work on this, I need a way to reproduce it though.  Do you know of a
> > > server that exhibit this behaviour that we can use?
> > 
> > This works:  while sudo nc -lp 443 ; do true ; done
> > 
> > But please wait a day or two for my patch.
> 
> Here is it.  The SIGALRM feature was getting into the way, so I moved it to
> SIGHUP, which is more consistent with existing practice.
> 
> Works for dumb netcat-like servers, but is also useful for normal servers when
> you want to gather information about certificates without starting an HTTP
> session.

-- 
Robert Millan

ACK STORM, S.L. - http://www.ackstorm.es
-------------- next part --------------
A non-text attachment was scrubbed...
Name: timeout.diff
Type: text/x-diff
Size: 5284 bytes
Desc: not available
URL: </pipermail/attachments/20070530/fd75746f/attachment.diff>


More information about the Gnutls-devel mailing list