[gnutls-devel] GnuTLS | +GROUP-X448:+GROUP-X25519 = invalid parameter (#1249)

Read-only notification of GnuTLS library development activities gnutls-devel at lists.gnutls.org
Wed Jun 23 16:46:05 CEST 2021

Daiki Ueno commented:

For performance reasons, the client tries to pick one to three top key shares, each of which belongs to a different types (i.e., ECDH with NIST curves, ECDH with Edwards curves, and FFDHE). On the other hand, those types are differentiated internally as `gnutls_pk_algorithm_t`, which provide different values for X25519 and X448, and thus the most recent key share overrides the previous one.

A solution would be to treat those values as in the same type when sending client key shares, or perhaps to extend the limit from three to four.

Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/issues/1249#note_609608790
You're receiving this email because of your account on gitlab.com.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20210623/26d0efae/attachment.html>

More information about the Gnutls-devel mailing list