Re: netcat cert hash validation broken

2020-01-07 Thread Theo Buehler
On Tue, Jan 07, 2020 at 03:32:02PM +0100, Alexander Bluhm wrote: > Hi, > > When the netcat server should check the certificate hash of the > client, it always succeeds. So nc -c -H -l is always successful, > no matter what certificate the client provides. > > The bug is that the TLS context of t

netcat cert hash validation broken

2020-01-07 Thread Alexander Bluhm
Hi, When the netcat server should check the certificate hash of the client, it always succeeds. So nc -c -H -l is always successful, no matter what certificate the client provides. The bug is that the TLS context of the listen socket is used instead of the accepted connection. Also I would like