[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Help-gnutls] Re: TLS/OpenPGP draft expiring soon
From: |
Ludovic Courtès |
Subject: |
[Help-gnutls] Re: TLS/OpenPGP draft expiring soon |
Date: |
Fri, 02 Feb 2007 16:16:36 +0100 |
User-agent: |
Gnus/5.110006 (No Gnus v0.6) Emacs/21.4 (gnu/linux) |
Hi,
Simon Josefsson <address@hidden> writes:
> Hi! Actually, the tools works fine without your patch, IF I use a
> newly generated key.
Hmm, but without the patch, the DH parameters aren't used since the
invocation of `gnutls_certificate_set_dh_params ()' is commented out,
are they?
> I suspect OpenCDK uses the wrong RSA key to encrypt and/or decrypt the
> data. I have several old and expired keys in my private key. IIRC,
> even GnuPG had a similar problem with my key some time ago.
Then the key is to blame. ;-)
Or at least GnuTLS should return a more appropriate error, like
`GNUTLS_A_CERTIFICATE_EXPIRED'.
Thanks,
Ludovic.