Daniel McCarney
Daniel McCarney
> cpu closed this as completed in #135 now GitHub misunderstood "partially fix 135" as "fix 135" - I believe all that remains now is support for this in the...
No: https://github.com/rustls/rustls-platform-verifier/compare/v/0.3.4...main
@yerke Thanks! I updated this issue to reflect that the real world verification helper script was rewritten in #44. It's just the mock verification test cases that need similar treatment...
I think you could use [`TlsAcceptor::accept_with()`](https://docs.rs/tokio-rustls/latest/tokio_rustls/struct.TlsAcceptor.html#method.accept_with) to read early data from the `ServerConnection` provided to your callback `FnOnce`. If you experiment and find that works a PR adding an example...
> does it not make more sense to have it automatically read early data when you read from the stream? Early data reads must be handled separately from regular application...
> I was writing a CTF challenge on this so that's why I'm interested 🙂 Cool :-) > If I run nc localhost 8000, this will immediately print False. Since...
Thanks for filing an issue. Have you spoken to Amazon about why their CRLs do not include an IDP extension? Is this something a user can configure, or a baked-in...
Thanks for passing on their reply. I'll have to find time to page back in more context here. I agree the IDP extension is not required per 5280, but when...
Relaxing the check so that a CRL without an IDP ext. is considered authoritative for a cert with a CRL DP ext. iff the CRL issuer matches the cert issuer...
I said previously I was open to relaxing the behaviour: > Relaxing the check so that a CRL without an IDP ext. is considered authoritative for a cert with a...