[Help-gnutls] Re: TLS/OpenPGP draft expiring soon
Ludovic Courtès
ludovic.courtes at laas.fr
Fri Feb 2 16:16:36 CET 2007
Hi,
Simon Josefsson <simon at josefsson.org> writes:
> Hi! Actually, the tools works fine without your patch, IF I use a
> newly generated key.
Hmm, but without the patch, the DH parameters aren't used since the
invocation of `gnutls_certificate_set_dh_params ()' is commented out,
are they?
> I suspect OpenCDK uses the wrong RSA key to encrypt and/or decrypt the
> data. I have several old and expired keys in my private key. IIRC,
> even GnuPG had a similar problem with my key some time ago.
Then the key is to blame. ;-)
Or at least GnuTLS should return a more appropriate error, like
`GNUTLS_A_CERTIFICATE_EXPIRED'.
Thanks,
Ludovic.
More information about the Gnutls-help
mailing list