[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [libmicrohttpd] Post-Handshake Authentication Support
From: |
Christian Grothoff |
Subject: |
Re: [libmicrohttpd] Post-Handshake Authentication Support |
Date: |
Mon, 15 Apr 2019 17:39:50 +0200 |
User-agent: |
Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.6.1 |
Hi Tim,
Hi Kumar,
Thanks for looking up the GnuTLS versions required.
Patch for both flags is in Git master now:
ef15b53c..1917b866
Let me know if anything is amiss.
Happy hacking!
Christian
On 4/14/19 5:21 PM, Tim Rühsen wrote:
> Hello Christian,
>
> if you are at it, please consider adding GNUTLS_ENABLE_EARLY_DATA as
> well. That allows the server to accept 0-RTT packets for TLS 1.3 -
> something we would like to test as well with Wget2.
>
> GNUTLS_ENABLE_EARLY_DATA: since 3.6.5
> GNUTLS_POST_HANDSHAKE_AUTH: since 3.6.3
>
> Regards, Tim
>
> On 14.04.19 11:24, Kumar Mallikarjuna wrote:
>> Hi again,
>>
>> It appears that during GnuTLS session initialization, we need to pass a
>> flag, namely |GNUTLS_POST_HANDSHAKE_AUTH, so| that the TLS server is
>> capable of using the said feature.
>> For that, I think for that MHD's code might need to be modified. If
>> there is a workaround please let me know.
>>
>> Thanking you,
>> Kumar Mallikarjuna
>>
>> On Sat, Apr 13, 2019 at 9:21 PM Kumar Mallikarjuna
>> <address@hidden <mailto:address@hidden>> wrote:
>>
>> image.gif
>> Oh, okay. Thanks!
>>
>> Regards,
>> Kumar Mallikarjuna
>>
>> On Sat, Apr 13, 2019 at 9:03 PM Christian Grothoff
>> <address@hidden <mailto:address@hidden>> wrote:
>>
>> This is TLS-specific, you should ask on the GnuTLS mailinglist.
>> MHD can
>> give you the GnuTLS handle, if GnuTLS has an API for it, then it is
>> supported...
>>
>> Happy hacking!
>>
>> Christian
>>
>> On 4/13/19 5:18 PM, Kumar Mallikarjuna wrote:
>> > Hi everyone,
>> >
>> > Can anyone let me know if libmicrohttpd currently supports
>> > Post-Handshake Authentication
>> > <https://tools.ietf.org/html/draft-ietf-tls-tls13-28#page-78>
>> for TLS 1.3?
>> >
>> > Thank you!
>> >
>> > Best regards,
>> > Kumar Mallikarjuna
>>
>
signature.asc
Description: OpenPGP digital signature