Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Improve GnuTLS compatibility options
TLSv1.0, no safe renegotiation, no padding. For some reason, large amounts of padding are causing the Intel servers to kick me off — although gnutls-cli is allowed to use large amounts of padding with getting disconnected, and I can't see *why* there's a difference. So there's something else odd going on here, and disabling padding is just a workaround. I bet I forget about this, and I bet it comes back to bite me one day. And it'll serve me right for being lazy and not following it up properly right now. But still, there's plenty more GnuTLS porting work to be done and I've spent long enough staring at packet traces already today. Disable safe renegotiation because we've previously observed that some servers are behind crappy firewalls that'll block *any* extension. Signed-off-by: David Woodhouse <David.Woodhouse@intel.com>
- Loading branch information