[gnutls-help] gnutls_session_get_master_secret

[Nikos Mavrogiannopoulos]

On Sat, Apr 13, 2019 at 4:57 PM Jeremy Harris <jgh at wizmail.org> wrote:
>
> Has anything changed in the implementation of
> gnutls_session_get_master_secret() in recent GnuTLS versions?
>
> I'm getting a consistent all-zeroes result under 3.6.7
> (for a TLS1.3 session), called soon after gnutls_handshake()
> returns.

There is no master secret under TLS1.3, the secrets are derived quite
differently. What we probably missed is to mark this function as
TLS1.2 or earlier only.

regards,
Nikos