Handshake fails with Internal error in memory allocation

Andreas Metzler ametzler at downhill.at.eu.org
Fri May 2 11:56:58 CEST 2008

On 2008-05-01 Simon Josefsson <simon at josefsson.org> wrote:
> Andreas Metzler <ametzler at downhill.at.eu.org> writes:
> > Afaict this is not the case for openssl, this won't break gnutls:
> > openssl s_server -accept 666 -cert /etc/exim4/exim.crt -key
> > /etc/exim4/exim.key -CAfile /etc/ssl/certs/ca-certificates.crt

> But does openssl request a client certificate? 

I think so. Quoting gnutls-cli -d 10:

|<3>| HSK[8073c68]: CERTIFICATE REQUEST was received [9 bytes]

> The list of CAs isn't sent otherwise.

openssl s_server does not seem to send the list, gnutls-cli -d 10
output does not differ signficantly whether openssl s_server runs with 
or without -CAfile /etc/ssl/certs/ca-certificates.crt.

Thank's for the earlier explanations.
cu andreas
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'

More information about the Gnutls-devel mailing list