Author Lee Eric
Recipients Lee Eric, christian.heimes
Date 2019-02-02.06:09:54
SpamBayes Score -1.0
Marked as misclassified Yes
Message-id <1549087795.05.0.177157894622.issue35888@roundup.psfhosted.org>
In-reply-to
Content
Hi,

I'm not sure if this is the right place to ask after I exhausted several communication ways. I'm trying to use standard ssl module to get the server certificate details. If I understand correctly, the certificate I can get only when the TLS/SSL handshake is done. Which means, if the server uses mTLS to authenticate client and I use ssl module to try to get the peer certificate w/o client certificate, I would not get the result due to the handshake is not complete.

I would like to know if there's any method that I can get the certificate even the handshake is not complete. Also, as the very initial handshake stage, in Server Hello the service side has sent out the server certificate already.

If the standard ssl module is designed in this behavior, is there any other module I can use to bypass the completed handshake to get the server certificate?

Thanks.

Eric
History
Date User Action Args
2019-02-02 06:09:59Lee Ericsetrecipients: + Lee Eric, christian.heimes
2019-02-02 06:09:55Lee Ericsetmessageid: <1549087795.05.0.177157894622.issue35888@roundup.psfhosted.org>
2019-02-02 06:09:54Lee Ericlinkissue35888 messages
2019-02-02 06:09:54Lee Ericcreate