[PATCH] Load "app:" keys by URL

Nikos Mavrogiannopoulos nmav at gnutls.org
Thu Apr 28 07:53:33 PDT 2016


On Mon, Apr 25, 2016 at 5:19 PM, Kevin Cernekee <cernekee at gmail.com> wrote:
>> Would it make sense to include that support in gnutls directly?
> The JS<->NaCl message passing interface is used for all RPCs between
> the two modules, so I suspect that some of the implementation details
> will vary from one app to the next.

Tricky to add indeed.

> It would be easy for gnutls to send messages from NaCl->JS through
> PPAPI if everyone agreed on the format to use, but the app would still
> have to have code to "demux" the gnutls and app-specific messages,
> similar to this:
> https://chromium.googlesource.com/apps/nacl-openconnect/+/22dc518480bdf366f04f00c2ea5850cd680ad986/vpn_instance.cc#162
> One thing that would have helped (slightly) is if the library user was
> allowed to override the "system:" or "pkcs11:" prefix.

That I plan to add in 3.5.0.

regards,
Nikos



More information about the openconnect-devel mailing list