[gnutls-dev] [charlesduffy@isgenesis.com: Bug#210358: gnutls-bin: client fails out on supposedly non-fatal errors (regression)]

Ivo Timmermans ivo@o2w.nl
Thu Sep 11 09:59:02 2003 

--K8nIJk4ghYZn606h
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline

FYI


	Ivo

-- 
`Contrariwise,' continued Tweedledee, `if it was so, it might be; and
if it were so, it would be; but as it isn't, it ain't. That's logic.'
	- Lewis Carroll, `Through the Looking-Glass'

--K8nIJk4ghYZn606h
Content-Type: message/rfc822
Content-Disposition: inline

Return-Path: <ivo@o2w.nl>
X-Original-To: o2w@schaapje.org
Delivered-To: ivo@schaapje.org
Received: from mail.o2w.nl (mail.o2w.nl [213.227.141.209])
	by juarez.schaapje.org (Postfix) with ESMTP id 47CC04A
	for <o2w@schaapje.org>; Thu, 11 Sep 2003 02:03:39 +0200 (CEST)
Received: by mail.o2w.nl (Postfix, from userid 1001)
	id 1270D35C6A; Thu, 11 Sep 2003 02:03:39 +0200 (CEST)
Delivered-To: ivo@o2w.nl
Received: from master.debian.org (master.debian.org [146.82.138.7])
	by mail.o2w.nl (Postfix) with ESMTP id 8E61E35C68
	for <ivo@o2w.nl>; Thu, 11 Sep 2003 02:03:38 +0200 (CEST)
Received: from debbugs by master.debian.org with local (Exim 3.35 1 (Debian))
	id 19xEvP-00059b-00; Wed, 10 Sep 2003 19:03:03 -0500
X-Loop: owner@bugs.debian.org
Subject: Bug#210358: gnutls-bin: client fails out on supposedly non-fatal errors (regression)
Reply-To: Charles Duffy <charlesduffy@isgenesis.com>,
	210358@bugs.debian.org
Resent-From: Charles Duffy <charlesduffy@isgenesis.com>
Resent-To: debian-bugs-dist@lists.debian.org
Resent-Cc: Ivo Timmermans <ivo@debian.org>
Resent-Date: Thu, 11 Sep 2003 00:03:02 UTC
Resent-Message-ID: <handler.210358.B.106323813118057@bugs.debian.org>
X-Debian-PR-Message: report 210358
X-Debian-PR-Package: gnutls-bin
X-Debian-PR-Keywords: 
Received: via spool by submit@bugs.debian.org id=B.106323813118057
          (code B ref -1); Thu, 11 Sep 2003 00:03:02 UTC
Received: (at submit) by bugs.debian.org; 10 Sep 2003 23:55:31 +0000
Received: from net-66.219.42.66.customer.corenap.com (smtp.isgenesis.com) [66.219.42.66] 
	by master.debian.org with esmtp (Exim 3.35 1 (Debian))
	id 19xEo5-0004gu-00; Wed, 10 Sep 2003 18:55:29 -0500
Received: from duffbox.internal.isgenesis.com (duffbox.internal.isgenesis.com [::ffff:10.0.0.141])
  (AUTH: LOGIN ccd, )
  by smtp.isgenesis.com with esmtp; Wed, 10 Sep 2003 18:55:28 -0500
From: Charles Duffy <charlesduffy@isgenesis.com>
To: Debian Bug Tracking System <submit@bugs.debian.org>
Message-Id: <1063238127.684.22.camel@duffbox>
Mime-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 7bit
X-Mailer: Ximian Evolution 1.4.4 
Date: Wed, 10 Sep 2003 18:55:27 -0500
Delivered-To: submit@bugs.debian.org
Resent-Sender: Debian BTS <debbugs@master.debian.org>
X-Spam-Status: No, hits=-1.9 required=5.0
	tests=DEBIAN_BTS_BUG,RESENT_TO,X_LOOP
	version=2.55
X-Spam-Level: 
X-Spam-Checker-Version: SpamAssassin 2.55 (1.174.2.19-2003-05-19-exp)
X-Bogosity: No, tests=bogofilter, spamicity=0.000000, version=0.14.2.cvs.20030804

Subject: gnutls-bin: client fails out on supposedly non-fatal errors (regression)
Package: gnutls-bin
Version: 0.8.9-2
Severity: normal

The gnutls-cli from 0.8.9-2 doesn't handle incoming alerts except during the
handshake process -- unlike the 0.3.5 release which, despite its other
failings, has proper error handling for said case.

Most particularly, cli.c includes no gnutls_error_is_fatal call (in "simple
client mode" after the handshake) to check the fatality of any negative return
values from gnutls_read; rather, all errors are assumed to be fatal.
Correspondingly, there is no support except during the handshake for printing
alerts received to the user -- which also existed in 0.3.5 code.

This is additionally an issue for developers writing code based off the
included sample client, who may be lead to believe that all error codes are
necessarily fatal at this point.

-- System Information:
Debian Release: testing/unstable
Architecture: i386
Kernel: Linux duffbox 2.4.22-rc1-dis7 #5 Sun Sep 7 09:51:13 CDT 2003 i686
Locale: LANG=C, LC_CTYPE=C

Versions of packages gnutls-bin depends on:
ii  libc6                         2.3.2-6    GNU C Library: Shared libraries an
ii  libgcrypt1                    1.1.12-3   LGPL Crypto library - runtime libr
ii  libgnutls7                    0.8.9-2    GNU TLS library - runtime library
ii  liblzo1                       1.08-1     A real-time data compression libra
ii  libopencdk4                   1:0.4.2-3  Open Crypto Development Kit (OpenC
ii  libpopt0                      1.7-2      lib for parsing cmdline parameters
ii  libtasn1-0                    0.1.2-1    Manage ASN.1 structures (runtime)
ii  zlib1g                        1:1.1.4-14 compression library - runtime

-- no debconf information


--K8nIJk4ghYZn606h--