[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#8650) EAGAIN from gnutls_handshake not respected

Full_Name: Ryan Tandy
Version: RE24
OS: Debian
Submission from: (NULL) (
Submitted by: ryan


That bug's submitter seems to have unintentionally configured their slapd with
the entire list of system CAs. They're fixing it, but we have a bug here too.

When the ServerHello is larger than 16kb, gnutls_handshake can return
GNUTLS_E_AGAIN. In theory this was always possible, but I'm only seeing it
happen with gnutls 3.x and haven't the exact change responsible.

We need to loop gnutls_handshake until it completes, like we do already in the
re-handshake case.