Peter Saint-Andre wrote:
Tony Finch wrote:
On Tue, 17 Jul 2007, Peter Saint-Andre wrote:
If you are referring to certificate validation, that is covered in RFC3920:
Of course. Thanks for reminding me!
Now, there *is* a question about s2s TLS that I started wondering about
while updating rfc3920bis recently, but it's related to TCP connections.
Server1 realizes that it needs an XML stream to Server2 in order to
route some stanzas. So Server1 completes address resolution via SRV or
whatever and opens a TCP connection to Server2. That happens on
TCPconn1. Then Server1 sends a stream header to Server2. So far so good.
RFC3920 says that for s2s there are 2 TCP connections. So in order to
send a response stream header to Server1, I assume that Server2 opens a
second TCP connection, which we'll call TCPconn2, and then sends the
response stream header over TCPconn2.
Correct?
I don't know if the spec needs to talk about this, but it couldn't hurt
(since it's different for c2s vs. s2s).
/psa
What is this 'stream header' you are refering to here ?
The actual stanzas to be routed ? then yes - anything else, then no.
- Mridul
