[gnutls-dev] GNUTLS_E_INTERNAL_ERROR in _gnutls_ciphertext2compressed

Simon Josefsson simon at josefsson.org
Sat Nov 17 10:36:04 CET 2007


ludovic.courtes at laas.fr (Ludovic Courtès) writes:

> Hi,
>
> Nikos Mavrogiannopoulos <nmav at gnutls.org> writes:
>
>> Then it might be another kind of bug. However I'd suggest that you try 
>> connecting to the most recent server (2.1.6). If that fails too could you
>> try different protocols (TLS 1.0 - SSL 3.0) and different algorithms (AES - 
>> ARCFOUR would be enough) at your connection and see which ones fail?
>
> It appears that `DHE_DSS_3DES_EDE_CBC_SHA1' works fine while
> `DHE_DSS_AES_128_CBC_SHA1' doesn't ("Decryption failed" on the server
> side right during handshake).  In both cases, this is TLS 1.1 (I tried
> 1.0 earlier but didn't notice any difference).
>
> Unfortunately, I won't have time to investigate more for the time being.

Is there anything to suggest that this behavior was introduced in the
2.1.x series?  I'm thinking something like that could held up our 2.2
release, but if the problem existed before, then it is not a new
problem.

/Simon




More information about the Gnutls-devel mailing list