[Bug-wget] no post-handshake auth under gnutls

bug-wget

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Bug-wget] no post-handshake auth under gnutls

From:	Nikos Mavrogiannopoulos
Subject:	[Bug-wget] no post-handshake auth under gnutls
Date:	Mon, 08 Oct 2018 10:47:39 +0200

Hi,
 It seems that wget does not enable/use post-handshake authentication
with gnutls when running under TLS1.3.

The enabling of TLS1.3 although transparent for all uses cases, is not
for the use case where the server allows a client to connect without
certificate but requests authentication later after the location of
access is known. Under TLS1.2 this was working via a re-handshake, but
under TLS1.3 a client must enable and perform post-handshake
authentication instead.

A quick and dirty patch to demonstrate how to enable it, is attached.
If you wait until gnutls 3.6.5, there may be a simpler way to enable
it:
https://gitlab.com/gnutls/gnutls/merge_requests/766


More info at:
https://nikmav.blogspot.com/2018/05/gnutls-and-tls-13.html

regards,
Nikos

0001-Enable-post-handshake-auth-under-gnutls-on-TLS1.3.patch
Description: Text Data

[Prev in Thread]

Current Thread

[Next in Thread]

[Bug-wget] no post-handshake auth under gnutls, Nikos Mavrogiannopoulos <=
- Re: [Bug-wget] no post-handshake auth under gnutls, Tim Rühsen, 2018/10/08

Prev by Date: Re: [Bug-wget] Feature request
Next by Date: Re: [Bug-wget] no post-handshake auth under gnutls
Previous by thread: [Bug-wget] Feature request
Next by thread: Re: [Bug-wget] no post-handshake auth under gnutls
Index(es):
- Date
- Thread