Details
-
Bug
-
Resolution: Out of scope
-
P2: Important
-
None
-
5.12.5
-
None
-
macOS 10.14.6, openssl 1.1.1d (compiled Qt myself)
Description
I have Qt configured with openssl. And I just tested TLS 1.3 support. In my setup we're always asking for having client certificates. That is working fine with TLS 1.2 but with 1.3, on the client socket, the encrypted signa is emitted even when the client is not presenting a certificate.
I'm attaching a simple example to reproduce it.
The typical output with TLS 1.3 is:
port 52631
qt.network.ssl: Error receiving trust for a CA certificate
qt.network.ssl: Error receiving trust for a CA certificate
incoming connection 14
WAIT FOR CONNECTED true
WAIT FOR ENCRYPTED true
But waitForEncrypted should not return true because it is supposed to present a client certificate. With tls 1.2, wait for encrypted fails, which is expected.