Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Certificate validation in pion/dtls #55

Closed
daenney opened this issue Jul 26, 2019 · 3 comments
Closed

Certificate validation in pion/dtls #55

daenney opened this issue Jul 26, 2019 · 3 comments
Assignees

Comments

@daenney
Copy link

daenney commented Jul 26, 2019

This is not a bug, but a heads-up. We've just merged a change to enable certificate validation, as well as being able to provide your own Root CA pool etc, much like crypto/tls does: pion/dtls#81. It'll go out once we tag v1.5.0.

Nothing changes for go-coap, it's just that there's now some additional fields in dtls.Config that can be set to control this behaviour. I don't think any of it needs to be set by default but it might be good to review it real quick in case it might cause problems.

@jkralik jkralik self-assigned this Aug 14, 2019
@jkralik
Copy link
Member

jkralik commented Aug 14, 2019

Thank you. I updated go-coap to pions/dtls 1.5 but I have some questions:

  • How can I set certificate chain to config -> why is not used tls.Certificate instead of x509.Certificate with privatekey ?
  • How can I verify ceritificate chain with VerifyPeerCertificate ? -> I suggest to use same type function as is tls.Config.VerifyPeerCertificate.

@jkralik
Copy link
Member

jkralik commented Nov 4, 2019

Waiting for branch v2: pion/dtls#99

@jkralik
Copy link
Member

jkralik commented Feb 14, 2020

Supported by #82

@jkralik jkralik closed this as completed Feb 14, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants