Closed yuhaoth closed 1 year ago
TLS 1.2 PSK identities and TLS 1.3 PSK identities are fundamentally different objects at the protocol level. IMO it would be misleading to report them in the same place.
I would be somewhat amenable to adding distinct functionality for s_server -www
to report the TLS 1.3 PSK identity selected (if any; note that multiple identities can be provided), modulo the general unmaintainability of the s_server
codebase.
Thanks @kaduk . I expect that.
For PSK mode in tls1.3 s_server,
PSK identity
field in http response does not contain value. And tls1.2 psk mode return the psk identity provide by client.I tried the issue with 1.1.1a and 3.0.2. Both got same result. I guess the behavior of TLS1.3 should be same with TLS1.2 for PSK mode.
To reproduce the issue with below commands. All certification files can be found in https://github.com/Mbed-TLS/mbedtls/tree/development/tests/data_files