Join GitHub today
GitHub is home to over 31 million developers working together to host and review code, manage projects, and build software together.Sign up
[TLS 1.3] Enable post-handshake auth for OpenSSL 1.1.1 #3026
Curl does neither call
I noticed the issue while I was working on PHA support for Python. I wanted to verify my implementation with curl...
It might be sufficient to just call the function. I'm not fully sure how the actual PHA handshake works with HTTP. If I understand the Apache mod_ssl implementation correctly, then it's like HTTP STARTTLS. The server sends a HTTP connection upgrade request along a CertRequest TLS message. The client response with an upgrade confirmation along with Certificate, CertificateVerify, and Finish TLS message.