Added support for RFC7366 (encrypt then authenticate)

It implements a revised version of RFC7366, to avoid interoperability issues: http://www.ietf.org/mail-archive/web/tls/current/msg14349.html This is currently enabled by default, unless %NO_ETM, or %COMPAT is specified.
author: Nikos Mavrogiannopoulos <nmav@redhat.com> 2014-11-03 14:23:48 +0100
committer: Nikos Mavrogiannopoulos <nmav@redhat.com> 2014-11-03 17:09:01 +0100
commit: e93cef18471962b001dac0f792cb569f1a4cde58 (patch)
tree: a8e33fc6c302a7126fc177d1f4a8f0e16fabf52b /src/common.c
parent: e29d027872fb61a6e7117d3b920626bbc638ac64 (diff)
download: gnutls-e93cef18471962b001dac0f792cb569f1a4cde58.tar.gz
1 files changed, 3 insertions, 1 deletions
diff --git a/src/common.c b/src/common.c
index 9b2d08ba10..dd61d45dd9 100644
--- a/src/common.c
+++ b/src/common.c
@@ -559,7 +559,9 @@ int print_info(gnutls_session_t session, int verbose, int print_cert)
 	if (gnutls_session_ext_master_secret_status(session)!=0)
 		printf(" extended master secret,");
 	if (gnutls_safe_renegotiation_status(session)!=0)
-		printf(" safe renegotiation");
+		printf(" safe renegotiation,");
+	if (gnutls_session_etm_status(session)!=0)
+		printf(" EtM,");
 	printf("\n");
 
 #ifdef ENABLE_DTLS_SRTP
author	Nikos Mavrogiannopoulos <nmav@redhat.com>	2014-11-03 14:23:48 +0100
committer	Nikos Mavrogiannopoulos <nmav@redhat.com>	2014-11-03 17:09:01 +0100
commit	e93cef18471962b001dac0f792cb569f1a4cde58 (patch)
tree	a8e33fc6c302a7126fc177d1f4a8f0e16fabf52b /src/common.c
parent	e29d027872fb61a6e7117d3b920626bbc638ac64 (diff)
download	gnutls-e93cef18471962b001dac0f792cb569f1a4cde58.tar.gz