[gnutls-dev]Re: exim + gnutls

Nikos Mavroyanopoulos nmav@gnutls.org
Sat Nov 2 20:57:02 2002


On Sat, Nov 02, 2002 at 04:00:19PM +0000, Philip Hazel wrote:

> > > 4. When investigating the cipher suites, I noticed that GnuTLS uses an
> > >    underscore between the components, whereas OpenSSL uses a hyphen. Is
> > >    there a standard for this? OpenSSL actually complains if you use an
> > >    underscore. For the moment, I have put in code to convert between
> > >    underscores and hyphens as necessary.
> > Why does this cause problem?
> It doesn't cause a problem with GnuTLS. It only caused me a technical
> problem because I have tests which I run with both GnuTLS and OpenSSL,
> and OpenSSL doesn't like cipher names that contain underscores.
> However, the culture difference might cause problems of understanding
> for people that are swapping from one library to the other. That's why I
> wondered if there was any standard.

Well the only standard is rfc2246, which names ciphersuites as
TLS_RSA_EXPORT_WITH_RC4_40_MD5. However gnutls, does not really use
ciphersuites directly on the priority functions. That decision was because,
at least for some programs, it's much easier, to set priorities on individual 
ciphers and key exchange methods, than having a large list of cipher 
suites to select from.



> 
> Regards,
> Philip
> 
> -- 
> Philip Hazel            University of Cambridge Computing Service,
> ph10@cus.cam.ac.uk      Cambridge, England. Phone: +44 1223 334714.
> 

-- 
Nikos Mavroyanopoulos
Email: nmav at gnutls org