Bug in _add_priority adds duplicates and unwanted algorithms.

Nikos Mavrogiannopoulos nmav at gnutls.org
Thu Nov 15 23:51:42 CET 2012


On 11/15/2012 07:57 PM, Tim Kosse wrote:

> Hi,
> 
> when setting a priority string of SECURE256:+SECURE128, I noticed that on some platforms, 3DES was included in the list of ciphers, but is lacking on most platforms. Notably, MinGW cross-compiles with -O2 are affected.
> The problem is in _add_priority in gnutls_priority.c, where the continue statement in the inner loop should have instead returned to the beginning of the outer loop. The result is that ciphers are added multiple times and depending what$
> These two patches fix the problem and also enable the print-ciphersuites example to be built by default.


Thanks, both are applied. For the print-ciphersuites, you could do the
same using gnutls-cli. (and the options -l and --priority XXX).

regards,
Nikos




More information about the Gnutls-devel mailing list