stackoom
  简体   繁体   中英

TLS with out-of-band Pre-shared keys (PSKs) in Golang

 原文  2020-09-10 23:29:08       go/ ssl/ tls1.3

Question

I'm looking for a way to establish TLS sessions using out-of-bound PSK in Go. I control both the server and client.

Reading Golang TLS implementation , it seems like the library only supports PSK in session resumption where PSKs are obtained from previous sessions. In my scenario, though, PSK are established between the server and the client out-of-band, which AFAIK is "permitted" according to RFC 8446 ("TLS PSKs can be established out of band.") Does anyone know if Go supports that already or if there are other TLS libraries that do?

1 answers

solution1
 1  2020-09-11 05:14:25

TLS-PSK (or the RSA/DHE variants) is not currently (Go 1.15) supported in the standard library.

There is an issue that has been open since 2013 but no movement on it. Multiple comments in that issue advertise forks of crypto/tls with purported support for external pre-shared keys; use at your own risk.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question gRPC and HTTP 1 call on single port, with out using TLS in goLang RabbitMQ - Tls Connection - Golang Golang - TLS handshake error How to write out ecdsa keys using golang crypto? Golang - TLS with selfsigned certificate Issues with TLS connection in Golang Golang crypto/tls memory leak WebSocket over TLS: Golang / Gorilla TLS : Handshake Failure Using GoLang tls client Golang, processes and shared memory
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM