Brad Fritz <[email protected]> writes: > I am able to reproduce the problem using gnutls-cli v2.6.4 built from > source: > > ./src/gnutls-cli -d 4711 --x509cafile > /usr/share/ca-certificates/mozilla/ValiCert_Class_2_VA.crt api.smugmug.com
The server is buggy, it does not handle MAC padding correctly, since this appears to work: gnutls-cli -d 4711 --x509cafile /usr/share/ca-certificates/mozilla/ValiCert_Class_2_VA.crt api.smugmug.com --priority NORMAL:%COMPAT The %COMPAT keyword disables MAC padding. You can read about it here: http://www.gnu.org/software/gnutls/manual/html_node/On-Record-Padding.html /Simon _______________________________________________ Help-gnutls mailing list [email protected] http://lists.gnu.org/mailman/listinfo/help-gnutls
