[gnutls-devel] GnuTLS | lib/psk: Add gnutls_psk_allocate_{client, server}_credentials2 (!1939)

Read-only notification of GnuTLS library development activities gnutls-devel at lists.gnutls.org
Tue Mar 18 08:23:10 CET 2025




Hannes Reinecke commented on a discussion on lib/ext/pre_shared_key.c: https://gitlab.com/gnutls/gnutls/-/merge_requests/1939#note_2402261306

 >  			uint8_t ipsk[MAX_HASH_SIZE];
 >  
 >  			prf = pskcred->binder_algo;
 > +			if (prf)
 > +				mac = GNUTLS_MAC_NONE;

Well, that's bit non-obvious, and probably should be changed. I use the check 'mac == GNUTLS_MAC_SHA384' to trigger a re-check, so if an algorithm is set I need to specify 'mac = GNUTLS_MAC_NONE' to avoid rechecking.
So yeah, that needs to be reworked.

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/merge_requests/1939#note_2402261306
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20250318/e46a401c/attachment.html>


More information about the Gnutls-devel mailing list