[gnutls-devel] GnuTLS | RFC7250 Raw public keys (!650)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Fri Nov 23 17:37:19 CET 2018


Tom commented on a discussion on lib/auth/cert.c:

>  
>  }
>  
> +
> +/* Locates the first certificate that holds a raw public-key.
> + * Currently it only makes sense to associate one raw pubkey per session.
> + * Associating more raw pubkeys with a session has no use because we
> + * don't know how to select the correct one.
> + */
> +static int
> +find_rawpk_cert(gnutls_session_t session,

It was not designed that way but currently it is. The structure of `_gnutls_select_client_cert` and `_gnutls_select_server_cert` differs currently too much to have `find_rawpk_cert` easily integrated into `_gnutls_select_server_cert`. We can change that in a cleanup patch and align the structure of the two functions. For now I will simply rename `find_rawpk_cert`.

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/merge_requests/650#note_119686114
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20181123/80f28fc4/attachment.html>


More information about the Gnutls-devel mailing list