[gnutls-help] TLS 1.3 post-handshake authentication vs. exceptions

Ludovic Courtès ludo at gnu.org
Wed Jun 12 14:02:51 CEST 2019


Nikos Mavrogiannopoulos <nmav at gnutls.org> skribis:

> On Fri, Jun 7, 2019 at 1:04 PM Ludovic Courtès <ludo at gnu.org> wrote:


>> The problem here is that you could get a GNUTLS_E_REAUTH_REQUEST
>> exception in the middle of a read from an I/O ports.  This breaks
>> abstraction because the caller of that read call may not know that the
>> port happens to be a GnuTLS record port.
> That should be similar to GNUTLS_E_REHANDSHAKE error. I'm not sure if
> that can be the right solution but there is the option of

Indeed, GNUTLS_AUTO_REAUTH looks like a simple solution.



More information about the Gnutls-help mailing list