Draft: daemon/tls: client-side re-authentication support for tls1.3

gnutls 3.6.5 manual

(https://www.gnutls.org/manual/gnutls.html#TLS-1_002e3-re_002dauthentication-and-re_002dkey)

says

To make re-authentication transparent to the application when requested by the server,
use the GNUTLS_AUTO_REAUTH and GNUTLS_POST_HANDSHAKE_AUTH flags on the gnutls_init call.
In that case the re-authentication will happen in the call of gnutls_record_recv that
received the reauthentication request. 

So it should work, but it isn't tested