[Modules] mod_gnutls: any chance for TLS-PSK (previous msg was wrong!)
Nikos Mavrogiannopoulos
n.mavrogiannopoulos at gmail.com
Wed Nov 17 06:37:21 EST 2010
On Wed, Nov 17, 2010 at 11:12 AM, Hardy Griech <ntbox at mardys.de> wrote:
> I admit, I'm confused...
> I've tested two mod_gnutls setups: one with RSA key exchange, the other
> with PSK. Test client for both cases is gnutls-cli. Command lines are
> gnutls-cli --x509cafile ~/ssl/demoCA/cacert.pem --x509keyfile
> ~/ssl/client_key.pem --x509certfile ~/ssl/client_cert.pem --port 443
> --insecure qnap110.fritz.box --debug 11
[...]
> Both connections return the expected http, and _both_ end with a fatal
> error:
> *** Fatal error: A TLS packet with unexpected length was received.
> *** Server has terminated the connection abnormally.
Ah ok, the fatal error you see it's because apache terminates the
connection without exchanging the TLS closure alerts. I don't think
this is possible to fix. It's not that serious.
regards,
Nikos
More information about the Modules
mailing list