~boringcactus/gemifedi: stub out TLS 1.3 client cert verification too

18a145c1d9193620622fd57a665f5990b89f7ae4 — Melody Horn 2 years ago d0dca71

stub out TLS 1.3 client cert verification too

patch browse .tar.gz

1 files changed, 5 insertions(+), 1 deletions(-)

M src/client_cert_fix.rs

M src/client_cert_fix.rs => src/client_cert_fix.rs +5 -1

@@ 22,7 22,6 @@ impl rustls::ClientCertVerifier for TrustAnyClientCertOrAnonymous {
     }
 
     fn client_auth_root_subjects(&self, _sni: Option<&DNSName>) -> Option<rustls::DistinguishedNames> {
-        log::debug!("uhhh what the hell is client_auth_root_subjects");
         Some(rustls::DistinguishedNames::new())
     }
 


@@ 35,4 34,9 @@ impl rustls::ClientCertVerifier for TrustAnyClientCertOrAnonymous {
         log::debug!("verification? also never heard of it");
         Ok(rustls::HandshakeSignatureValid::assertion())
     }
+
+    fn verify_tls13_signature(&self, _message: &[u8], _cert: &Certificate, _dss: &rustls::internal::msgs::handshake::DigitallySignedStruct) -> Result<rustls::HandshakeSignatureValid, TLSError> {
+        log::debug!("verification? also never heard of it");
+        Ok(rustls::HandshakeSignatureValid::assertion())
+    }
 }