We implement an NetXDuo TLS 1.3 connection using STM32F429.
TLS 1.3 is enabled, but it is disabled in code line 684 in nx_secure_tls_session_create_ext.c
if (NX_SECURE_TLS_TLS_1_3_ENABLED)
tls_session->nx_secure_tls_1_3_supported = NX_FALSE;
endif
and not enabled again, when the cipher suites are not detected:
if (NX_SECURE_TLS_TLS_1_3_ENABLED)
if ((ciphersuite_table[i].nx_secure_tls_ciphersuite >> 8) == 0x13)
{
/* Enable TLS 1.3 only if the ciphersuite required by RFC 8446 is provided. */
tls_session->nx_secure_tls_1_3_supported = NX_TRUE;
}
endif
Our server would accept ciphersuites as:
Cipher Suite: TLS_AES_128_GCM_SHA256 (0x1301)
Cipher Suite: TLS_CHACHA20_POLY1305_SHA256 (0x1303)
Cipher Suite: TLS_AES_256_GCM_SHA384 (0x1302)
Can you specify what cipher suites are implemented for RFC 8446 (TLS1.3) ?
Is there a list somewhere in documentation or otherwise available?
If our needed cipher suites are not implemented, how would we get on with this?
? https://video2.skills-academy.com/en-us/azure/rtos/netx-duo/netx-secure-tls/chapter3#cryptographic-methods
Thank you.