[gnutls-devel] GnuTLS | ext/record_size_limit: add function to get record_size_limit (!1989)

Read-only notification of GnuTLS library development activities gnutls-devel at lists.gnutls.org
Wed Jul 16 03:11:56 CEST 2025 


Wilfred Mallawa created a merge request: https://gitlab.com/gnutls/gnutls/-/merge_requests/1989

Project:Branches: twilfredo/gnutls:wilfred/record-size-tls-test to gnutls/gnutls:master
Author:   Wilfred Mallawa




<!-- Add a description of the new feature/bug fix. Reference any relevant bugs. -->

* Add function to get record_size_limit

Currently the kernel has no way of receiving the record size limit specified by an endpoint, and as such, it defaults to
using the maximum 16K size. This is problematic if an endpoint specifies a lower limit during the handshake in the
record size limit extension, as the kernel will not respect this constraint.

This patch adds a new function to record_size_limit extension library to extract
the endpoints maximum record size limit if negotiated. This can be used
by tlshd [1] to pass this information to the kernel [2], such that the kernel
can respect record size constrains of the endpoint.

Signed-off-by: Wilfred Mallawa <wilfred.mallawa at wdc.com>

[1] tlshd integration: https://github.com/twilfredo/ktls-utils/commits/wilfred/record-size-tls-test/
[2] kernel integration: https://github.com/twilfredo/spdm-linux/commits/wilfred/record-size-tls-test/

## Checklist
 * [x] Commits have `Signed-off-by:` with name/author being identical to the commit author
 * [x] Code modified for feature
 * [ ] Test suite updated with functionality tests
 * [ ] Test suite updated with negative tests
 * [x] Documentation updated / NEWS entry present (for non-trivial changes)
 * [ ] CI timeout is 2h or higher (see Settings/CICD/General pipelines/Timeout)

## Reviewer's checklist:
 * [ ] Any issues marked for closing are addressed
 * [ ] There is a test suite reasonably covering new functionality or modifications
 * [ ] Function naming, parameters, return values, types, etc., are consistent and according to `CONTRIBUTION.md`
 * [ ] This feature/change has adequate documentation added
 * [ ] No obvious mistakes in the code

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/merge_requests/1989
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20250716/1ec883cb/attachment.html>

More information about the Gnutls-devel mailing list