|
From: | Steve Dispensa |
Subject: | Renegotiation patch |
Date: | Mon, 11 Jan 2010 22:33:29 -0600 |
All,
Here is an updated patch that conforms to the latest secure renegotiation draft (draft-ietf-tls-renegotiation-03). Included are a 570-line patch plus two new source files implementing the extension.
This patch is still not quite perfect, but I wanted to get it into people's hands sooner rather than later, so here it is. Some of the remaining shortcomings:
- Correct error return values (rather than -1)
- Send appropriate alerts, as required by the draft
- Documentation of the two new API's, as well as of the design
- Automated test cases
- Additional interoperability testing
I've tested the basic functionality, but additional testing and code review would be much appreciated. The API's are still defaulted to secure (as opposed to interoperable) mode, which should probably change for the short run.
-Steve
gnutls-renegotiation-patch
Description: gnutls-renegotiation-patch
ext_safe_renegotiation.c
Description: ext_safe_renegotiation.c
ext_safe_renegotiation.h
Description: ext_safe_renegotiation.h
[Prev in Thread] | Current Thread | [Next in Thread] |