Another renegotiation patch
Nikos Mavrogiannopoulos
nmav at gnutls.org
Fri Feb 26 19:03:56 CET 2010
Tomas Hoger wrote:
> Related to this... gnutls-cli currently does not break connection and
> exit when handshake error occurs during server-requested renegotiation
> (check_rehandshake() only prints rehandshake result).
>
> This can be tested as:
>
> $ gnutls-cli -p 666 ssltls.de
> ...
> - Simple Client Mode:
>
> GET /otherciphers/ HTTP/1.0
>
> *** Non fatal error: Rehandshake was requested by the peer.
> *** Received rehandshake request
> *** Fatal error: Safe renegotiation failed.
> *** Rehandshake Failed.
>
> No handshake_failure alert is sent, connection is not terminated.
Hi thanks for the report. Does the attached patch fix the issue for you?
regards,
Nikos
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: patch
URL: </pipermail/attachments/20100226/2beb9009/attachment.txt>
More information about the Gnutls-devel
mailing list