Hi,
GNUTLS compression is obsolete due to security issues.
regards,
--
Sylvain
--- WWW/Library/Implementation/tidy_tls.h
+++ WWW/Library/Implementation/tidy_tls.h
@@ -45,7 +45,6 @@
struct {
int protocol[GNUTLS_MAX_ALGORITHM_NUM];
int encrypts[GNUTLS_MAX_ALGORITHM_NUM];
- int compress[GNUTLS_MAX_ALGORITHM_NUM];
int key_xchg[GNUTLS_MAX_ALGORITHM_NUM];
int msg_code[GNUTLS_MAX_ALGORITHM_NUM];
} priority;
@@ -61,7 +60,6 @@
typedef struct {
gnutls_certificate_type_t cert;
gnutls_cipher_algorithm_t encrypts;
- gnutls_compression_method_t compress;
gnutls_kx_algorithm_t key_xchg;
gnutls_mac_algorithm_t msg_code;
gnutls_protocol_t protocol;
--- src/tidy_tls.c
+++ src/tidy_tls.c
@@ -368,7 +368,6 @@
result->encrypts = gnutls_cipher_get(ssl->gnutls_state);
result->key_xchg = gnutls_kx_get(ssl->gnutls_state);
result->msg_code = gnutls_mac_get(ssl->gnutls_state);
- result->compress = gnutls_compression_get(ssl->gnutls_state);
result->cert = gnutls_certificate_type_get(ssl->gnutls_state);
}
@@ -556,13 +555,6 @@
m->priority.encrypts[n] = 0;
/*
- * List the compression algorithms in decreasing order of priority.
- */
- n = 0;
- m->priority.compress[n++] = GNUTLS_COMP_NULL;
- m->priority.compress[n] = 0;
-
- /*
* List the key exchange algorithms in decreasing order of priority.
*/
n = 0;
_______________________________________________
Lynx-dev mailing list
[email protected]
https://lists.nongnu.org/mailman/listinfo/lynx-dev
