Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
TLS 1.3: fix exporter secret computation
on the client, if a client certificate was used, this was included in the transcript -- we now call it earlier on the server, an empty master secret was used, so the exporter secret never matched this has been validated with the OCaml-TLS implementation itself (now, a client and server talking to each other compute the same exporter secret). also a "openssl s_server" with a "test_client.exe" using TLS 1.3 compute the very same exporter key material now.
- Loading branch information