TLS Inner Application?

Simon Josefsson simon at josefsson.org
Tue Feb 8 18:51:05 CET 2011


Jouni Malinen <jkmalinen at gmail.com> writes:

> On Mon, Feb 7, 2011 at 11:50 AM, Simon Josefsson <simon at josefsson.org> wrote:
>> Is anyone using or cares about TLS/IA support in GnuTLS?  The
>> implementation of TLS/IA was done against a draft that has expired 5
>> years ago and that never made it into a proper RFC.  It would be nice to
>> remove obsolete stuff, so we want to remove it.
>
> There is a preliminary implementation of EAP-TTLSv1 in
> wpa_supplicant(peer) and hostapd(server). However, I do not know
> whether anyone really uses that, but there is indeed code that is
> currently assuming this functionality to be available in GnuTLS. That
> code is disabled by default in wpa_supplicant/hostapd, so removing
> this from GnuTLS would not break the default build. In addition,
> enabling of this code is not documented anywhere, so one would need to
> go through the source code to figure out how to enable this.

Thanks for information.  Do you know if you managed to do interop of
TLS/IA with anyone else?  I'm wondering if there is still some people
interested in the draft version of TLS/IA.

/Simon




More information about the Gnutls-devel mailing list