GnuTLS issue (Mandos Server/Client)

Nathanael D. Noblet nathanael at gnat.ca
Thu Apr 3 17:14:18 UTC 2014


On Thu, 2014-04-03 at 16:05 +0200, Nikos Mavrogiannopoulos wrote:
> On Wed, 2014-04-02 at 10:50 -0600, Nathanael D. Noblet wrote:
> > CentOS 6 = gnutls 2.8.5
> > F20      = gnutls 3.1.20
> > The server is a python app and sets the priority string as follows:
> > priority=SECURE256:!CTYPE-X.509:+CTYPE-OPENPGP
> > this is fed to some gnutls function somewhere in the stack.
> 
> Does it really use TLS with openpgp certificates? If yes, I doubt you
> could make 2.8.5 interoperate with gnutls 3.1.20. GnuTLS was modified in
> 3.1.x to adhere with RFC6091 which was incompatible the previous attempt
> to have openpgp keys to TLS.

Hello,

  Yes it uses TLS and opengpg certificates. So gnutls 3.1.20 can't use
both new and old methods I presume?





More information about the devel mailing list