Post handshake authentication is unsupported

RESOLVED FIXED in 3.43

Status

defect
RESOLVED FIXED
11 months ago
3 months ago

People

(Reporter: hkario, Unassigned)

Tracking

3.38
3.43
Dependency tree / graph

Firefox Tracking Flags

(Not tracked)

Details

Attachments

(1 attachment)

Reporter

Description

11 months ago
Using c84a61acb17d (few commits past 3.38)

When tstclnt is configured with TLS1.3 support and a certificate (-n nickname), the Client Hello message does not include the post_handshake_auth extension.

(I know that it's a known limitation, but I was unable to find any tracking bug for implementing it)

Comment 1

5 months ago
This adds handling of the post_handshake_auth extension in CH and exposes tls13_SendCertificateRequest as an experimental API.

Updated

5 months ago
QA Contact: franziskuskiefer
See Also: → 1511989

Comment 2

3 months ago
Status: NEW → RESOLVED
Last Resolved: 3 months ago
Resolution: --- → FIXED
Target Milestone: --- → 3.43
Reporter

Comment 3

3 months ago

see also: bug 1527958

Reporter

Comment 4

3 months ago

Is there a bug filed against Firefox to add support for it, if it is needed?

Flags: needinfo?(dueno)
Reporter

Comment 5

3 months ago

/me should really first check Blocks/Depends before asking questions

Flags: needinfo?(dueno)
You need to log in before you can comment on or make changes to this bug.