On Mon, 13 Oct 2008, Sergey Gerasimenko wrote:

>> That's how your system is designed/installed, it's not something we (in the
>> curl project) have decided or even suggested to anyway.

> That is the funniest part. I have Ubuntu 8.04 and curl goes there with the
> system. Quite a lot of the packages (amarok etc.) depends for some reasons
> on libcurl-gnutls. Thus, I think ubuntu guys made it this way.

Yeah, it's going in different directions in different distros. Fedora is going
NSS, Debian and Ubuntu push towards GnuTLS while I think most other distros
are on OpenSSL train...

This adds complexity of course but in general I like it since it makes all
(well most at least) our SSL backends used and tested! Of course they all come
with their own sets of bugs and features...

>> Can you tell us a public URL we can try a test program with libcurl/GnuTLS
>> against to repeat the problem?

> I would be very grateful for your help. I can send you the URL, but you will
> also need a client key/certificate if you are going to test mutual auth.
> This information is rather private, thus how I can send it you? Is
> curl-support (at) haxx.se email ok?

Well, since I'm not an SSL layer expert maybe you should first make sure that
a small application that uses GnuTLS directly still works fine when
connecting/handshaking with this site? I mean to just first make sure that the
error is in how libcurl uses GnuTLS and nothing else.

-- 
  / daniel.haxx.se