When exchanging certificates, either during a server handshake, or an E2E handshake, there needs to be an API that would expose the certificate verification procedure to end-clients so that they could render the process interactive and allow the user to perform a "leap of faith".
A branch of wocky that is accommodating the implementation of this is here: http://git.collabora.co.uk/?p=user/eitan/wocky.git;a=summary A telepathy-gabble branch is soon to follow..
Updated spec is here: http://git.collabora.co.uk/?p=user/eitan/telepathy-spec.git;a=summary Gabble implementation is here: http://git.collabora.co.uk/?p=user/eitan/telepathy-gabble.git;a=summary Wocky changes are here: http://git.collabora.co.uk/?p=user/eitan/wocky.git;a=summary This all works together, awaiting review and cosimoc's XTLS implementation.
I am working on another approach for this, outlined here: http://lists.freedesktop.org/archives/telepathy/2010-June/004621.html Updated spec branch is here http://git.collabora.co.uk/?p=user/cosimoc/telepathy-spec.git;a=shortlog;h=refs/heads/xtls-proposal I yet have to implement it in Gabble.
What's going on in this bug? Is this still work in progress?
This has been resolved elsewhere, see org.freedesktop.Telepathy.Channel.Type.ServerTLSConnection
Use of freedesktop.org services, including Bugzilla, is subject to our Code of Conduct. How we collect and use information is described in our Privacy Policy.