Skip to content

[TLS 1.3] Preparations for externally provided PSKs#3617

Merged
reneme merged 2 commits intorandombit:masterfrom
Rohde-Schwarz:tls13/psk_preparations
Jul 8, 2023
Merged

[TLS 1.3] Preparations for externally provided PSKs#3617
reneme merged 2 commits intorandombit:masterfrom
Rohde-Schwarz:tls13/psk_preparations

Conversation

@reneme
Copy link
Copy Markdown
Collaborator

@reneme reneme commented Jul 6, 2023
edited
Loading

The TLS::Ticket class was introduced in Botan 3.0.0 (#3150). Given that externally provided PSKs will use the same structure, it would be great to generalize it a bit and rename it to TLS::PskIdentity (similar to its name in RFC 8446). This is breaking the public API of 3.0 somewhat (we added a deprecated typedef in case someone already started relying on it). @randombit Is that acceptable?

We doubt that we'll finish the actual implementation of the PSK support before 3.1, but it might be worthwhile to consider adding this already now.

@reneme reneme added this to the Botan 3.1.0 milestone Jul 6, 2023
@reneme reneme requested a review from randombit July 6, 2023 10:21
@coveralls
Copy link
Copy Markdown

coveralls commented Jul 6, 2023
edited
Loading

Coverage Status

coverage: 91.724% (-0.01%) from 91.738% when pulling 3d8605c on Rohde-Schwarz:tls13/psk_preparations into 8540671 on randombit:master.

reneme and others added 2 commits July 6, 2023 13:10
@reneme @FAlbertDev
Refactor: rename TLS::Ticket to TLS::PskIdentity
2c967a8 
This is a slight breakage of the public API introduced in Botan 3.0
to better reflect the dual usage of this structure for PSKs that
are used for session resumption as well as externally provided PSKs.

Co-Authored-By: Fabian Albert <fabian.albert@rohde-schwarz.com>
@reneme
Cipher_State::init_with_psk() takes the PRF algo
3d8605c
@reneme reneme force-pushed the tls13/psk_preparations branch from 48ce69b to 3d8605c Compare July 6, 2023 11:10
@reneme reneme marked this pull request as ready for review July 6, 2023 11:16
@reneme reneme mentioned this pull request Jul 6, 2023
Merged
randombit
randombit approved these changes Jul 8, 2023
View reviewed changes
Copy link
Copy Markdown
Owner

@randombit randombit left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

👍

SemVer is a promise we'll do our best, and in a situation like this where a very new API that isn't quite what we want a break is fine. I would guess most people would be much happier with a tiny API break and a full TLS 1.3 implementation vs "true SemVer" and then waiting 3 more years for TLS PSK support.

@reneme reneme merged commit 3a70598 into randombit:master Jul 8, 2023
@reneme reneme deleted the tls13/psk_preparations branch July 10, 2023 05:51
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@randombit randombit randombit approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

Botan 3.1.0

Development

Successfully merging this pull request may close these issues.

3 participants

@reneme @coveralls @randombit