mirror of
https://github.com/brunoos/luasec.git
synced 2024-12-26 20:48:22 +01:00
4cecbb2783
These methods mirror the existing methods that fetch the peer certificate and chain. Due to various factors (SNI, multiple key types, etc.) it is not always trivial for an application to determine what certificate was presented to the client. However there are various use-cases where this is needed, such as tls-server-end-point channel binding and OCSP stapling. Requires OpenSSL 1.0.2+ (note: SSL_get_certificate() has existed for a very long time, but was lacking documentation until OpenSSL 3.0). |
||
---|---|---|
.. | ||
alpn | ||
certs | ||
chain | ||
curve-negotiation | ||
dane | ||
dhparam | ||
digest | ||
ecdh | ||
info | ||
key | ||
loop | ||
loop-gc | ||
luaossl | ||
multicert | ||
oneshot | ||
sni | ||
verification | ||
verify | ||
want | ||
wantread | ||
wantwrite | ||
README |
Directories: ------------ * alpn Test ALPN (Application-Layer Protocol Negotiation) support. * certs Contains scripts to generate the certificates used by the examples. Generate Root CA 'A' and 'B' first, then the servers and clients. * chain Example of certificate chain in handshake. * curve-negotiation Elliptic curve negotiation. * dhparam DH parameters for handshake. * digest Certificate digest. * ecdh Elliptic curve cipher. * info Information about the connection. * key Test encrypted private key. * loop Test successive connections between the server and the client (to check memory leak). * loop-gc Same of above, but the connection is not explicit closed, the gabage collector is encharge of that. * luaossl Integration with luaossl. * multicert Support to multiple certificate for dual RSA/ECDSA. * oneshot A simple connection example. * sni Support to SNI (Server Name Indication). * verification Retrieve the certificate verification errors from the handshake. * verify Ignore handshake errors and proceed. * want Test want() method. * wantread Test timeout in handshake() and receive(). * wantwrite Test timeout in send().