tls-server: Mutual authentication support for TLS 1.3
authorPascal Knecht <pascal.knecht@hsr.ch>
Fri, 30 Oct 2020 14:15:30 +0000 (15:15 +0100)
committerTobias Brunner <tobias@strongswan.org>
Fri, 12 Feb 2021 13:35:23 +0000 (14:35 +0100)
commitd2fc9b0961c6963397aa28b42d9562d2aa944c28
treea4f0e0aad3ecdcc4f5b93ac976b8bc200855d406
parentdc49d457a289f5686975b1784bceda4f5f209cbf
tls-server: Mutual authentication support for TLS 1.3

This commit also addresses the side effect that additional messages have
an influence on the derivation of the application traffic secrets. Therefore,
key derivation is relocated after the server finished message has been sent,
so the additional messages from the client (Certificate, CertificateVerify)
don't affect the key derivation. Only the outbound key is switched there, the
inbound key remains in use until the client's finished message has been
processed.
src/libtls/tests/suites/test_socket.c
src/libtls/tls_crypto.c
src/libtls/tls_server.c