Re: deprecating gnutls_transport_set

help-gnutls

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: deprecating gnutls_transport_set_lowat()

From:	Nikos Mavrogiannopoulos
Subject:	Re: deprecating gnutls_transport_set_lowat()
Date:	Wed, 22 Jun 2011 08:47:21 +0200

On Wed, Jun 22, 2011 at 2:36 AM, Lucas De Marchi
<address@hidden> wrote:
> Hi,
> I'm a contributor of ConnMan project and we use gnutls. Recently
> gnutls deprecated the function gnutls_transport_set_lowat() and it
> seems there's no active developer in ConnMan to know what we have to
> do. Should we just remove that call or do we have to do something
> else?

Hello,
 If you are using gnutls 2.12.0 or later removing it is the right
option. That is because you disable the lowat functionality by calling
it as: gnutls_transport_set_lowat(gnutls_channel->session, 0).

I also see that you use the priority string
"NORMAL:!VERS-TLS1.1:!VERS-TLS1.0", which disables everything except
SSL 3.0. This is not the best balance between interoperability and
security. I'd suggest you follow the guidelines at:
http://www.gnu.org/software/gnutls/manual/html_node/Interoperability.html#Interoperability

regards,
Nikos

[Prev in Thread]

Current Thread

[Next in Thread]

deprecating gnutls_transport_set_lowat(), Lucas De Marchi, 2011/06/21
- Re: deprecating gnutls_transport_set_lowat(), Nikos Mavrogiannopoulos <=

Prev by Date: deprecating gnutls_transport_set_lowat()
Next by Date: return value of gnutls_record_check_pending
Previous by thread: deprecating gnutls_transport_set_lowat()
Next by thread: return value of gnutls_record_check_pending
Index(es):
- Date
- Thread