Re: gnutls_safe_renegotiation

gnutls-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: gnutls_safe_renegotiation_set?

From:	Nikos Mavrogiannopoulos
Subject:	Re: gnutls_safe_renegotiation_set?
Date:	Mon, 3 May 2010 16:21:29 +0200

On Mon, May 3, 2010 at 3:58 PM, Simon Josefsson <address@hidden> wrote:
> The new gnutls_safe_renegotiation_set API doesn't seem to influence
> rehandshakes -- i.e., I cannot first handshake successfully with the
> extension, call the API with flag=0, and then do a rehandshake that does
> not use the extension.  Is this intentional?

Never thought of such usage of it. I see no reason to allow such
behavior since it will only complicate code without offering new
functionality or advantage.

> More generally, why do we need this API at all?  Isn't the natural thing
> to use the priority strings to disable the extension?  Same question
> about gnutls_safe_negotiation_set_initial.

They are not really needed. We could remove them. They were left there
to allow similar behavior with other functions that can also be set
with priority strings.

regards,
Nikos

[Prev in Thread]

Current Thread

[Next in Thread]

gnutls_safe_renegotiation_set?, Simon Josefsson, 2010/05/03
- Re: gnutls_safe_renegotiation_set?, Nikos Mavrogiannopoulos <=
  - Re: gnutls_safe_renegotiation_set?, Simon Josefsson, 2010/05/03
    - Re: gnutls_safe_renegotiation_set?, Simon Josefsson, 2010/05/21

Prev by Date: gnutls_safe_renegotiation_set?
Next by Date: safe renegotiation: confirming consensus
Previous by thread: gnutls_safe_renegotiation_set?
Next by thread: Re: gnutls_safe_renegotiation_set?
Index(es):
- Date
- Thread