]> git.ipfire.org Git - thirdparty/strongswan.git/commit
projects / thirdparty / strongswan.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 06abdf1) | patch
eap-tls: Add support for TLS 1.3
authorTobias Brunner <tobias@strongswan.org>
Tue, 17 Jan 2023 14:06:40 +0000 (15:06 +0100)
committerTobias Brunner <tobias@strongswan.org>
Wed, 22 Feb 2023 12:34:53 +0000 (13:34 +0100)
commit5401a74d3608be19a4a883c10d4bd89e73c6ee60
tree3f3b23a27ce7b3658a6ea8a1beac29a31ff47ebetree
parent06abdf1d31f5cee7ee90611e2ee7f390b2a3c9a4commit | diff
eap-tls: Add support for TLS 1.3

As defined in RFC 9190, a "protected success indication" (0x00) is sent
from the server to the client over the TLS connection when using TLS 1.3.

The client responds with an empty EAP message, which is interpreted as
acknowledgement in our stack.

If we ever support session resumption with tunneled methods such as
EAP-TTLS, we'd have to send such an indication there too.
src/libcharon/plugins/eap_tls/eap_tls.c diff | blob | blame | history
src/libtls/tls_eap.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.