Bug ID 1344925: TLS1.3 does not fall back to full handshake when Client Hello is missing the pre_shared_key

Last Modified: Jun 13, 2024

Affected Product(s):
BIG-IP LTM(all modules)

Known Affected Versions:
15.1.8.2, 15.1.9, 15.1.9.1, 15.1.10, 15.1.10.2, 15.1.10.3, 15.1.10.4, 17.1.0.2, 17.1.0.3, 17.1.1, 17.1.1.1, 17.1.1.2, 17.1.1.3

Opened: Aug 30, 2023

Severity: 3-Major

Symptoms

BIG-IP sends out a TLS Fatal Error (Handshake Failure) when TLS1.3 Client Hello is missing the 'pre_shared_key' extension when TLS session resumption is expected.

Impact

BIG-IP resets the connection with TLS Fatal Alert (Handshake Failure) instead of falling back to full TLS handshake.

Conditions

-- TLS1.3 Session resumption -- Client Hello is missing the 'pre_shared_key' extension (but has a valid 'key_share')

Workaround

Don't use TLS1.3 and session resumption.

Fix Information

None

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips