Post handshake authentication is unsupported

RESOLVED FIXED in 3.43

Status

defect
RESOLVED FIXED
10 months ago
2 months ago

People

(Reporter: hkario, Unassigned)

Tracking

3.38
3.43

Firefox Tracking Flags

(Not tracked)

Details

Attachments

(1 attachment)

(Reporter)

Description

10 months ago
Using c84a61acb17d (few commits past 3.38)

When tstclnt is configured with TLS1.3 support and a certificate (-n nickname), the Client Hello message does not include the post_handshake_auth extension.

(I know that it's a known limitation, but I was unable to find any tracking bug for implementing it)

Comment 1

4 months ago
This adds handling of the post_handshake_auth extension in CH and exposes tls13_SendCertificateRequest as an experimental API.

Updated

4 months ago
QA Contact: franziskuskiefer
See Also: → 1511989

Comment 2

2 months ago
Status: NEW → RESOLVED
Last Resolved: 2 months ago
Resolution: --- → FIXED
Target Milestone: --- → 3.43
(Reporter)

Comment 3

2 months ago

see also: bug 1527958

(Reporter)

Comment 4

2 months ago

Is there a bug filed against Firefox to add support for it, if it is needed?

Flags: needinfo?(dueno)
(Reporter)

Comment 5

2 months ago

/me should really first check Blocks/Depends before asking questions

Flags: needinfo?(dueno)
You need to log in before you can comment on or make changes to this bug.