ssl: Implement TLS 1.3 state machine skeleton

Change-Id: I4b382a7907247cc2099951fdefa40f1511b1123e
author: Péter Dimitrov <[email protected]> 2018-10-23 09:31:12 +0200
committer: Péter Dimitrov <[email protected]> 2018-10-24 16:11:06 +0200
commit: 240dbea494958c0aa622dd2d7a336f0571470959 (patch)
tree: 087d411957e878a15bc1363feb537f74cc7c2451 /lib/ssl/src/tls_handshake.erl
parent: 1937d6b448f781264dca2a6d260446b875a4241b (diff)
download: otp-240dbea494958c0aa622dd2d7a336f0571470959.tar.gz
otp-240dbea494958c0aa622dd2d7a336f0571470959.tar.bz2
otp-240dbea494958c0aa622dd2d7a336f0571470959.zip
1 files changed, 8 insertions, 13 deletions
diff --git a/lib/ssl/src/tls_handshake.erl b/lib/ssl/src/tls_handshake.erl
index b39a7732e7..37f13fcbac 100644
--- a/lib/ssl/src/tls_handshake.erl
+++ b/lib/ssl/src/tls_handshake.erl
@@ -260,6 +260,8 @@ get_tls_handshake(Version, Data, Buffer, Options) ->
 %%--------------------------------------------------------------------
 %%% Internal functions
 %%--------------------------------------------------------------------
+handle_client_hello(Version = {3,4}, ClientHello, SslOpts, Info, Renegotiation) ->
+    tls_handshake_1_3:handle_client_hello(Version, ClientHello, SslOpts, Info, Renegotiation);
 handle_client_hello(Version, 
                     #client_hello{session_id = SugesstedId,
                                   cipher_suites = CipherSuites,
@@ -341,26 +343,19 @@ handle_server_hello_extensions(Version, SessionId, Random, CipherSuite,
 do_hello(undefined, _Versions, _CipherSuites, _Hello, _SslOpts, _Info, _Renegotiation) ->
     ?ALERT_REC(?FATAL, ?PROTOCOL_VERSION);
 do_hello(Version, Versions, CipherSuites, Hello, SslOpts, Info, Renegotiation) ->
-    case tls_record:is_higher({3,4}, Version) of
-        true -> %% TLS 1.2 and older
-            case ssl_cipher:is_fallback(CipherSuites) of
+    case ssl_cipher:is_fallback(CipherSuites) of
+        true ->
+            Highest = tls_record:highest_protocol_version(Versions),
+            case tls_record:is_higher(Highest, Version) of
                 true ->
-                    Highest = tls_record:highest_protocol_version(Versions),
-                    case tls_record:is_higher(Highest, Version) of
-                        true ->
-                            ?ALERT_REC(?FATAL, ?INAPPROPRIATE_FALLBACK);
-                        false ->
-                            handle_client_hello(Version, Hello, SslOpts, Info, Renegotiation)
-                    end;
+                    ?ALERT_REC(?FATAL, ?INAPPROPRIATE_FALLBACK);
                 false ->
                     handle_client_hello(Version, Hello, SslOpts, Info, Renegotiation)
             end;
         false ->
-            %% Implement TLS 1.3 statem ???
-            ?ALERT_REC(?FATAL, ?PROTOCOL_VERSION)
+            handle_client_hello(Version, Hello, SslOpts, Info, Renegotiation)
     end.
 
-
 %%--------------------------------------------------------------------
 enc_handshake(#hello_request{}, {3, N}) when N < 4 ->
     {?HELLO_REQUEST, <<>>};
author	Péter Dimitrov <[email protected]>	2018-10-23 09:31:12 +0200
committer	Péter Dimitrov <[email protected]>	2018-10-24 16:11:06 +0200
commit	240dbea494958c0aa622dd2d7a336f0571470959 (patch)
tree	087d411957e878a15bc1363feb537f74cc7c2451 /lib/ssl/src/tls_handshake.erl
parent	1937d6b448f781264dca2a6d260446b875a4241b (diff)
download	otp-240dbea494958c0aa622dd2d7a336f0571470959.tar.gz otp-240dbea494958c0aa622dd2d7a336f0571470959.tar.bz2 otp-240dbea494958c0aa622dd2d7a336f0571470959.zip