[Help-gnutls] Re: X.509 authentication and `GNUTLS_CERT_REQUIRE'

Ludovic Courtès ludovic.courtes at laas.fr
Mon May 14 14:26:38 CEST 2007


Simon Josefsson <simon at josefsson.org> writes:

> I think this sounds like a good situation.  The application can provide
> many user credentials, and GnuTLS will pick one of them that matches the
> CA information sent from the server.  It won't pick one of them if none
> of them matches the CA information.  If the application wants to decide
> for itself which certificate to send, and possibly send one that doesn't
> match any CA sent by the server, it has to use the callback interface.

Ok, sounds good.


More information about the Gnutls-help mailing list