Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
Server handshakes with mismatched public/private key pair #507
mbedTLS does not verify that the public/private key pair matches when doing a handshake, resulting in client side public key signature verification errors if they don't match. This was tested on 2.2.1.
If this is the desired behavior then the documentation of
added a commit
Sep 13, 2018
@attilamolnar Thanks for your report, and sorry for taking so long to reply!
We think the behaviour is as intended, since the check can be computationally expensive, which turned out to be a problem for some users depending on their workflow. So we're going to apply your suggestion and update the documentation to clarify that and reference