[Help-gnutls] GNUTLS ERROR: A TLS fatal alert has been received.

Lennart Koopmann lennart at scopeport.org
Sun Jul 6 16:48:06 CEST 2008


Thank you again, Nikos! :)

The --priority "NORMAL:+ANON-DH" allows a connection with my anonymous
test client!

* connection from ::ffff:127.0.0.1, port 43292
- Anonymous Diffie-Hellman parameters
 - Using prime: 1032 bits
 - Secret key: 1023 bits
 - Peer's public key: 1024 bits
- Version: TLS1.1
- Key Exchange: ANON-DH
- Cipher: CAMELLIA-256-CBC
- MAC: SHA1
- Compression: NULL

Best regards
Lennart

Am Sonntag, den 06.07.2008, 12:02 +0300 schrieb Nikos Mavrogiannopoulos:
> Nikos Mavrogiannopoulos wrote:
> > Lennart Koopmann wrote:
> >> Hello everyone,
> >>
> >> i installed GNUTLS version 2.5.1 from hand because the one from the
> >> Fedora repository is too old.
> >> When i try to anonymous connect to a "gnutls-server --http" my client
> >> returns:
> >>
> >> *** Handshake failed
> >> GNUTLS ERROR: A TLS fatal alert has been received.
> >>
> >> The server says:
> >>
> >> Error in handshake
> >> Error: Could not negotiate a supported cipher suite.
> >>
> >> Could you please help me with that? I don't really know how to proceed
> >> now. I can upload the source code of my test program if you want. It's
> >> mostly a copy & paste from the documentation. (7.3.1 Simple Client
> >> Example with Anonymous Authentication)
> > 
> > For debugging you can use the -d 4 (or higher) option to gnutls-serv and
> > see with details what was the reason of failure. On your own program you
> > can use gnutls_global_set_log_function and gnutls_global_set_log_level.
> 
> But probably what you need is to run gnutls-serv with the option
> --priority "NORMAL:+ANON-DH". To see other possibilities use the
> gnutls-serv -l.
> 
> regards,
> Nikos
> 
> 






More information about the Gnutls-help mailing list