Re: 2.3.x regression in auth_cert.c:call_get_cert

gnutls-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: 2.3.x regression in auth_cert.c:call_get_cert_callback

From:	Joe Orton
Subject:	Re: 2.3.x regression in auth_cert.c:call_get_cert_callback
Date:	Mon, 31 Mar 2008 10:38:55 +0100
User-agent:	Mutt/1.5.17 (2007-11-01)

On Sat, Mar 29, 2008 at 12:08:46PM +0200, Nikos Mavrogiannopoulos wrote:
> Joe Orton wrote:
>> GnuTLS now fails if st->key.x509 is NULL; if I avoid that code path as 
>> below, it works again.  Is this not the correct way to be using the 
>> interface?  There is nothing much else that could be returned in key.x509 
>> for this case, AFAICS.
>
> You're right. I've reverted to the old behaviour.

Thanks.  With this applied and the new DN functions in 2.3.x, the last 
of the neon regressions relative to OpenSSL are now fixed and for the 
first time I get a 100% pass rate with neon's SSL test suite.  And due 
to the external signing callback in GnuTLS, neon supports one major 
feature which is not supported with OpenSSL - PKCS#11.

So, nice work, guys :)

joe

test.out
Description: Text document

[Prev in Thread]

Current Thread

[Next in Thread]

2.3.x regression in auth_cert.c:call_get_cert_callback, Joe Orton, 2008/03/28
- Re: 2.3.x regression in auth_cert.c:call_get_cert_callback, Nikos Mavrogiannopoulos, 2008/03/29
  - Re: 2.3.x regression in auth_cert.c:call_get_cert_callback, Joe Orton <=
    - Re: 2.3.x regression in auth_cert.c:call_get_cert_callback, Simon Josefsson, 2008/03/31
    - Re: 2.3.x regression in auth_cert.c:call_get_cert_callback, Joe Orton, 2008/03/31

Prev by Date: GNUTLS_E_UNEXPECTED_PACKET_LENGTH
Next by Date: Re: 2.3.x regression in auth_cert.c:call_get_cert_callback
Previous by thread: Re: 2.3.x regression in auth_cert.c:call_get_cert_callback
Next by thread: Re: 2.3.x regression in auth_cert.c:call_get_cert_callback
Index(es):
- Date
- Thread