Handshake -> psk_key_exchange_modes

Peter Dimitrov peterdmv@REDACTED
Wed Nov 13 12:34:39 CET 2019


This is a bug in the current implementation when configuring a TLS server
to support TLS 1.2 or lower and using option {handshake, hello} to pause
the handshake. (The {handshake, hello} option is not yet implemented for
TLS 1.3.)

What happens here is that the client apparently sends a
psk_key_exchange_modes extension and possibly even a pre_shared_key
extension in its ClientHello. These extensions are used in TLS 1.3 when
trying to resume a session with a ticket received in a previous session.

Please report this issue on https://bugs.erlang.org/!


-----Original Message-----
From: erlang-questions <erlang-questions-bounces@REDACTED> On Behalf Of
Oliver Bollmann
Sent: den 6 november 2019 10:58
To: erlang-questions <erlang-questions@REDACTED>
Subject: Handshake -> psk_key_exchange_modes


0) Erlang/OTP 22 [erts-10.5.3] [source] [64-bit] [smp:16:16] [ds:16:16:10]
[async-threads:1] [hipe]

1) client_server:start(). -> Port

2) Open browser: https://localhost:Port using Safari,Chrome

3) exception error: no function clause matching


(ssl_handshake.erl, line 1492)

      in function  maps:map_1/2 (maps.erl, line 252)

      in call from maps:map_1/2 (maps.erl, line 252)

      in call from maps:map/2 (maps.erl, line 243)

      in call from ssl_connection:handshake/2 (ssl_connection.erl, line 127)

      in call from client_server:start/0 (client_server.erl, line 42)

Any Hints?



Oliver Bollmann
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://erlang.org/pipermail/erlang-questions/attachments/20191113/8b4833fb/attachment.htm>

More information about the erlang-questions mailing list