[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Help-gnutls] non-existing CA bundle
From: |
Nikos Mavrogiannopoulos |
Subject: |
Re: [Help-gnutls] non-existing CA bundle |
Date: |
Fri, 8 Apr 2005 02:09:28 +0200 |
User-agent: |
KMail/1.7.2 |
On Friday 08 April 2005 00:02, Daniel Stenberg wrote:
> Hi
>
> I've made an obervation that looks like a bug to me:
>
> I have a test case that sets a ca cert bundle like this:
>
> /* set the trusted CA cert bundle file */
> rc = gnutls_certificate_set_x509_trust_file(cred,
> cafile,
> GNUTLS_X509_FMT_PEM);
>
> The cafile points to a file name of a file that doesn't exist.
> This then returns -64 properly indicating a file error.
> If I then proceed (ignoring the error) and later make a gnutls_handshake(),
> it will never succeed. It seems to only return GNUTLS_E_AGAIN for a very
> long time. (I'm using non-blocking sockets).
This looks strange.. Could you use something like:
static void tls_log_func(int level, const char *str)
{
fprintf(stderr, "|<%d>| %s", level, str);
}
and after global_init()
gnutls_global_set_log_function(tls_log_func);
gnutls_global_set_log_level(2);
and send the output?
--
Nikos Mavrogiannopoulos
- [Help-gnutls] non-existing CA bundle, Daniel Stenberg, 2005/04/07
- Re: [Help-gnutls] non-existing CA bundle,
Nikos Mavrogiannopoulos <=
- Re: [Help-gnutls] non-existing CA bundle, Daniel Stenberg, 2005/04/08
- Re: [Help-gnutls] non-existing CA bundle, Nikos Mavrogiannopoulos, 2005/04/08
- Re: [Help-gnutls] non-existing CA bundle, Daniel Stenberg, 2005/04/08
- Re: [Help-gnutls] non-existing CA bundle, Nikos Mavrogiannopoulos, 2005/04/09
- Re: [Help-gnutls] non-existing CA bundle, Daniel Stenberg, 2005/04/09
- Re: [Help-gnutls] non-existing CA bundle, Daniel Stenberg, 2005/04/09
- Re: [Help-gnutls] non-existing CA bundle, Daniel Stenberg, 2005/04/09