handshake fails (unimplemented/disabled feature requested?)

Christian Parpart trapni at gentoo.org
Tue Jul 20 23:51:27 CEST 2010 

Hey all,

I've written a little http server, also providing SSL,
but while the ssl andshake, I now get the following
(it once worked but sometimes failed with the trace below):

1279662272.980041: SslSocket: handshake()
1279662272.980041: ssl: gnutls [4] REC[0x22845d0]: Expected Packet[0]
Handshake(22) with length: 1
1279662272.980041: ssl: gnutls [4] REC[0x22845d0]: Received Packet[0]
Handshake(22) with length: 85
1279662272.980041: ssl: gnutls [4] REC[0x22845d0]: Decrypted Packet[0]
Handshake(22) with length: 85
1279662272.980041: ssl: gnutls [6] BUF[HSK]: Inserted 85 bytes of Data(22)
1279662272.980041: ssl: gnutls [6] BUF[REC][HD]: Read 1 bytes of Data(22)
1279662272.980041: ssl: gnutls [6] BUF[REC][HD]: Read 3 bytes of Data(22)
1279662272.980041: ssl: gnutls [3] HSK[0x22845d0]: CLIENT HELLO was
received [85 bytes]
1279662272.980041: ssl: gnutls [6] BUF[REC][HD]: Read 81 bytes of Data(22)
1279662272.980041: ssl: gnutls [6] BUF[HSK]: Inserted 4 bytes of Data
1279662272.980041: ssl: gnutls [6] BUF[HSK]: Inserted 81 bytes of Data
1279662272.980041: ssl: gnutls [3] HSK[0x22845d0]: Client's version: 3.0
1279662272.980041: ssl: gnutls [2] ASSERT: gnutls_db.c:326
1279662272.980041: ssl: gnutls [2] ASSERT: gnutls_db.c:246
1279662272.980041: ssl: gnutls [2] ASSERT: gnutls_extensions.c:140
1279662272.980041: SslSocket: onClientHello()
1279662272.980041: ssl: gnutls [2] ASSERT: gnutls_handshake.c:376
1279662272.980041: ssl: gnutls [2] ASSERT: gnutls_handshake.c:535
1279662272.980041: ssl: gnutls [2] ASSERT: gnutls_handshake.c:2335
1279662272.980041: ssl: gnutls [2] ASSERT: gnutls_handshake.c:3000
1279662272.980041: ssl: gnutls [6] BUF[HSK]: Cleared Data from buffer
1279662272.980041: SslSocket: SSL handshake failed (-1250): An
unimplemented or disabled feature has been requested.


What did I do wrong? Well, I at least know, that I've successfully
declared the algorithm
priorities to { tls1.2, tls1.1, tls1.0, ssl3 }, so this can't be it. but
what feature is gnutls
here saying, which I am missing (possibly not enabled)?

Many thanks in advance,
Christian Parpart.

More information about the Gnutls-help mailing list