[gnutls-devel] GnuTLS | Fix handshake segfault if no privkey is supplied (!1657)

Read-only notification of GnuTLS library development activities gnutls-devel at lists.gnutls.org
Fri Oct 21 06:43:23 CEST 2022

Daiki Ueno commented:

Although this certainly would fix the original issue, I'm not sure if `_gnutls_privkey_compatible_with_sig` is the best place to add the check.

As the server must have a private key when certificate authentication is used, IMO a more appropriate place would be somewhere in `lib/auth/cert.c` (e.g., `_gnutls_select_server_cert` or `call_get_cert_callback`, where `session->internals.selected_key` is looked up but not found).

Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/merge_requests/1657#note_1144068451
You're receiving this email because of your account on gitlab.com.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20221021/09bc7ce4/attachment.html>

More information about the Gnutls-devel mailing list