[gnutls-devel] GnuTLS | Support multiple identities for TLS 1.3 PSK (#1385)

Read-only notification of GnuTLS library development activities gnutls-devel at lists.gnutls.org
Tue Jul 19 14:18:02 CEST 2022

Hannes Reinecke created an issue: https://gitlab.com/gnutls/gnutls/-/issues/1385

## Description of the feature:
Support multiple identities for PSK in TLS 1.3 as per RFC 8446 4.2.11.

## Applications that this feature may be relevant to:
NVMe-over-Fabrics TLS encryption has defined several possible identities per client.
To correctly support TLS 1.3 the client would need to include all of those identities in the Pre-Shared-Key ClientHello extension. With gnutls this is currently not possible, and so we have to restart negotiation when the wrong PSK had been presented.

## Is this feature implemented in other libraries (and which)
Not that I am aware.

Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/issues/1385
You're receiving this email because of your account on gitlab.com.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20220719/98a1fa87/attachment.html>

More information about the Gnutls-devel mailing list