gnutls-cli return codes [was: Re: confirmation that debian #480041 is a gnutls problem, and steps to reproduce]

Daniel Kahn Gillmor dkg at fifthhorseman.net
Fri Nov 21 20:37:01 CET 2008


On Fri 2008-11-21 02:24:02 -0500, Nikos Mavrogiannopoulos wrote:

> Daniel Kahn Gillmor wrote:
>
>> *** Non fatal error: Rehandshake was requested by the peer.
>> *** Fatal error: A TLS fatal alert has been received.
>> *** Received alert [10]: Unexpected message
>> *** Server has terminated the connection abnormally.
>> ---------------------------------
>
> Hello, this does not seem to be a gnutls error. The server merely
> asks for renegotiation, gnutls-cli ignores it (legal behavior) and
> server does not like it thus sends a fatal alert.

It looks to me like gnutls-cli has a return code of 0 in this
situation.  Wouldn't it make more sense to exit with a non-zero return
code when the server has terminated the connection abnormally?

     --dkg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 826 bytes
Desc: not available
URL: </pipermail/attachments/20081121/252efa82/attachment.pgp>


More information about the Gnutls-devel mailing list