Open YuriL180821 opened 11 months ago
Hello @AWS-C-IO team!
Could you please provide suggestion/timelines about fix for the problem?
Regards, Yurii.
Thanks for opening this issue. This is something that we want to fix, but I don't have a timeline for when this will be completed. I will make sure to update here with the progress.
Describe the bug
AcquireCredentialsHandleA return 0x80090331 for TLS1.3 protocol which leads to negotiation error AWS_IO_TLS_ERROR_NEGOTIATION_FAILURE. Same methods with same credentials works fine for lower TLS versions
Expected Behavior
AcquireCredentialsHandleA should return SEC_E_OK for any TLS protocol versions
Current Behavior
AcquireCredentialsHandleA fails for latest master on given moment https://github.com/awslabs/aws-c-io/blob/a3555c86bd10149a1ab0c1b2810756ec54cfbe3a/source/windows/secure_channel_tls_handler.c#L1738
Reproduction Steps
activate AWS_IO_TLSv1_3 version for tls handler
Possible Solution
According to MS learn https://learn.microsoft.com/en-us/answers/questions/708734/tls-1-3-doesnt-work-on-windows-11-through-schannel
SCH_CREDENTIALS - Win32 apps | Microsoft Learn
i.e current sc_ctx->credentials which is pointer to SCHANNEL_CRED structure
should be replaced on SCH_CREDENTIALS
Additional Information/Context
aws-c-io version used
v0.13.31
Compiler and version used
MSVS 2022 Professional
Operating System and version
Windows 11 x64