netopeer2 icon indicating copy to clipboard operation
netopeer2 copied to clipboard

Published 20 hours ago verified publisher icon CESNET

Capability missing in Server hello message

Open j1y3p4rk opened this issue 3 years ago • 4 comments

Hi michalvasko,

After successful TLS handshake and secure channel establishment, server sends hello message. I think 'truststore' and 'keystore' capabilities are missing in the hello message from server side. Shouldn't those two modules be included in the capability exchange?

Picture1 e

j1y3p4rk avatar Feb 09 '22 14:02 j1y3p4rk

Yet again, no, they should not (last bullet) be there.

michalvasko avatar Feb 09 '22 14:02 michalvasko

Thanks for the quick reply. Then, shouldn't it list other modules like acm, x509-cert-to-name above either?

j1y3p4rk avatar Feb 09 '22 14:02 j1y3p4rk

Why shouldn't it, they are all YANG 1.0 modules.

michalvasko avatar Feb 09 '22 14:02 michalvasko

Ah, okay, understood! Thanks 👍 :-)

j1y3p4rk avatar Feb 09 '22 14:02 j1y3p4rk