[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
gnutls_safe_renegotiation_set?
From: |
Simon Josefsson |
Subject: |
gnutls_safe_renegotiation_set? |
Date: |
Mon, 03 May 2010 15:58:23 +0200 |
User-agent: |
Gnus/5.110011 (No Gnus v0.11) Emacs/23.1 (gnu/linux) |
The new gnutls_safe_renegotiation_set API doesn't seem to influence
rehandshakes -- i.e., I cannot first handshake successfully with the
extension, call the API with flag=0, and then do a rehandshake that does
not use the extension. Is this intentional?
See new self test tests/safe-renegotiation/srn2 to reproduce it. I
expected that it would fail, but it doesn't.
More generally, why do we need this API at all? Isn't the natural thing
to use the priority strings to disable the extension? Same question
about gnutls_safe_negotiation_set_initial.
/Simon
- gnutls_safe_renegotiation_set?,
Simon Josefsson <=