[gnutls-devel] GnuTLS | When negotiating TLS1.3 enforce certificate key usage (!902)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Wed Feb 6 05:51:41 CET 2019


Nikos Mavrogiannopoulos commented on a discussion on tests/common-cert-key-exchange.c:

>  		fail("Could not set key/cert: %s\n", gnutls_strerror(ret));
>  
>  	gnutls_init(&server, GNUTLS_SERVER);
> -	gnutls_credentials_set(server, GNUTLS_CRD_CERTIFICATE,
> -			       serverx509cred);
> -
> -
>  	if (server_priority)
>  		assert(gnutls_priority_set_direct(server, server_priority, NULL) >= 0);
>  	else
>  		assert(gnutls_priority_set_direct(server, client_prio, NULL) >= 0);
>  
> +	gnutls_credentials_set(server, GNUTLS_CRD_CERTIFICATE,

Nice catch, I've added asserts all over this file.

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/merge_requests/902#note_138614307
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20190206/0122948a/attachment-0001.html>


More information about the Gnutls-devel mailing list