← Back to team overview

mosquitto-users team mailing list archive

Advanced certificate verification

 

Hi,

Mosquitto broker is currently able to verify certificates based on CRLs. It is not possible to proceed to custom advanced verifications (eg: online controls using OCSP).
In the same way, Mosquitto client only allow to control (or not) the name of the certificate: if the certificate's name matches the hostname of the server then it is considered verified.

Is there any chance that Mosquitto allows to select a custom verify callback called by OpenSSL?

Cheers,
Remi

Follow ups