-
Notifications
You must be signed in to change notification settings - Fork 365
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add method to Scandium for setting trusted RPKs #301
Comments
|
True, but it would be nice to be able to check this in Scandium and not in the application, so that the handshake is aborted. |
I agree, it would be nice to have something along the lines of the PSKStore for RPKs as well. |
Referring to the comment from boaks: How do I check the same thing at the client side? The server's public key seems to be encapsulated in the ClientHandshaker and I cannot find an (obvious) method to access it at client side. |
I've written some code to solve this issue, what is the preferred procedure for contributing this? |
The raw public keys are used to create the
|
Did a pull request with code for that feature. Please review. |
Should be solve with the merging of your PR. |
When doing a raw-public-key handshake according to RFC 7250 the raw public key of the other peer is said to be verified out-of-band.
I would like to have a feature in Scandium where I can add a list of trusted raw public keys, from which I will accept DTLS connections (and reject others).
The text was updated successfully, but these errors were encountered: