This repository has been archived by the owner on Jun 30, 2020. It is now read-only.
Implement Peer Name #37
Comments
|
@puiterwijk originally commented: For certificates, this has been part of the initial Public API in #29 |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Originally reported by @npmccallum.
The
TLS_OPT_PEER_NAMEoption needs to be implemented, documented and tested. This option should be able to be set in conjunction with authentication methods to restrict the name of the authenticated peer (SRP: username, Cert: Subject).The ideal situation would be to make this a simple string. However, one question is how to use
TLS_OPT_PEER_NAMEwith getsockopt() after authentication. For SRP or PSK, this should be the authenticated username. I think for Certificates this should be the subject. This means users who want access tosubjectAltNamewill have to parse the certificate. But I think this is the most straightforward behavior.The text was updated successfully, but these errors were encountered: