[gnutls-devel] GnuTLS | gnutls_priority_set in post client hello function breaks handshake for clients with TLS versions < 1.3 (#580)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Fri Oct 5 12:29:52 CEST 2018


Parsing the SNI extension in mod_gnutls would mean basically re-implementing SNI parsing that GnuTLS does anyway, though, and as you noted it would break with encrypted SNI. Is there another hook that would be more suitable, i.e. at a point when GnuTLS has parsed the client hello, but before further parameters have been selected?

I'm facing a similar issue regarding ALPN, but that probably warrants a separate ticket and isn't a regression.

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/issues/580#note_106769571
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20181005/8a6b29fc/attachment-0001.html>


More information about the Gnutls-devel mailing list