[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: gnutls 2.9.10 breaks exim4 TLS (Denying unsafe (re)negotiation.)
From: |
Nikos Mavrogiannopoulos |
Subject: |
Re: gnutls 2.9.10 breaks exim4 TLS (Denying unsafe (re)negotiation.) |
Date: |
Sat, 08 May 2010 09:58:04 +0200 |
User-agent: |
Thunderbird 2.0.0.24 (X11/20100411) |
Andreas Metzler wrote:
> Hello,
> I have not managed to reproduce the error with gnutls-cli. When
> looking at exim's tls code
> http://git.exim.org/exim.git/blob_plain/HEAD:/exim-src/src/tls-gnu.c
> one big difference to gnutls-cli is that exim only uses the specific
> gnutls_*_set_priority() functions while gnutls-cli *always* invokes
> gnutls_priority_set_direct() in the first place. Perhaps an
> unintended dependency on gnutls_priority_*() was introduced?
How easy would it be for exim to use gnutls_priority_* functions? The
others have been deprecated for quite a time. Moreover it would be
easier for exim to setup a configuration string for the
priority_set_direct function.
regards,
Nikos