Hi, Let me test this against gnutls-cli (with --post-handshake-auth),and I'll tell you something ASAP. It's a short patch, shouldn't be too hard to verify this.
On 23/3/19 18:04, Tim Rühsen wrote:
Thank you Daniel and Diresh. I don't think we should send the post handshake extension in case no client certificate is given.
Neither do I. It's basically nonsense. But I don't know if OpenSSL is smart enough in this regard.
