Closed Bug 1643123 Opened 4 years ago Closed 4 years ago

Support SSL_ExportEarlyKeyingMaterial with External PSKs

Tracking

(Not tracked)

Status:

RESOLVED FIXED

Milestone:

3.54

People

(Reporter: kjacobs, Assigned: kjacobs)

References

Details

Attachments

(1 file)

Bug 1643123 - Allow External PSKs to be used with Early Export 4 years ago Kevin Jacobs [:kjacobs] 47 bytes, text/x-phabricator-request		Details \| Review

Kevin Jacobs [:kjacobs]

Assignee

Description

•

4 years ago

•

Edited

Bug 1603042 added external PSK support, but it did not enable such PSKs to work with Early Export.

~~We also don't seem to have any test coverage around SSL_ExportEarlyKeyingMaterial, so this bug will fix both issues.~~ We do have coverage for resumption PSKs already. This was a searchfox bug that shows no usages of the function.

Kevin Jacobs [:kjacobs]

Assignee

Comment 1

•

4 years ago

Attached file Bug 1643123 - Allow External PSKs to be used with Early Export — Details

This patch adjusts tls13_exporter to pull the hash algorithm from the first PSK when a suite is not configured yet, which allows early export with external PSKs.

Kevin Jacobs [:kjacobs]

Assignee

Comment 2

•

4 years ago

https://hg.mozilla.org/projects/nss/rev/d211f3013abb7063ec17884b11fec960e59c6598

Status: ASSIGNED → RESOLVED

Closed: 4 years ago

Resolution: --- → FIXED

Target Milestone: --- → 3.54

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Support SSL_ExportEarlyKeyingMaterial with External PSKs

Categories

(NSS :: Libraries, defect)

Tracking

(Not tracked)

People

(Reporter: kjacobs, Assigned: kjacobs)

References

Details

Crash Data

Security

(public)

User Story

Attachments

(1 file)

Description

Comment 1

Comment 2

Attachment

General

Description

File Name

Content Type