[Help-gnutls] Re: Authentication during Handshake
Rainer Gerhards
rgerhards at gmail.com
Wed May 21 13:44:19 CEST 2008
Hi Nikos,
On Wed, May 21, 2008 at 1:08 PM, Nikos Mavrogiannopoulos
<n.mavrogiannopoulos at gmail.com> wrote:
> Simon Josefsson wrote:
>
>>> I still would see a lot of benefit in being able to check the remote
>>> peers identity BEFORE the Finished message is sent. That way, I could
>>> block access to not permitted peers at the risk of the DoS outlined
>>> above. Am I still overlooking something?
>>
>> No, I think that is correct. Nikos, any thoughts? You added some
>> callbacks during the handshake earlier, are any of those useful here?
>
> No unfortunately not. The callbacks I added are called after client
> hello is received. The callbacks you discuss need to be called after the
> certificate message is received.
Could you point me to the file where processing the certificate
message is done? I would be interested to see if I could add a
callback, and may it even just be to know how it is done ;)
Thanks,
Rainer
More information about the Gnutls-help
mailing list