Author christian.heimes
Recipients christian.heimes
Date 2019-06-27.10:33:29
SpamBayes Score -1.0
Marked as misclassified Yes
Message-id <>
Enabling TLS 1.3 post handshake auth also enables cert chain validation. OpenSSL documents SSL_VERIFY_POST_HANDSHAKE as ignored for client side. However tls_process_server_certificate in the client state machine code does not ignore the flag and checks for a correct cert chain.

see and
Date User Action Args
2019-06-27 10:33:29christian.heimessetrecipients: + christian.heimes
2019-06-27 10:33:29christian.heimessetmessageid: <>
2019-06-27 10:33:29christian.heimeslinkissue37428 messages
2019-06-27 10:33:29christian.heimescreate