I finally got around to digging into it further today:
There’s changes in Erlang OTP 24.3.4.3 that cause a bug with ‘middlebox compatibility mode’ in TLSv1.3, whereas with ‘compatibility mode’ it’s supposed to act as if it’s using TLSv1.2 even if it intends to use actually use TLSv1.3 (by doing a “Change Cipher Spec” after server/client hello), if I understand correctly. Nonetheless, there’s some internal logic in Erlang that screws up in that specific release pertaining to this.
The issue was fixed in 24.3.4.5
Meanwhile the OTP releases of Rebased seems to come with Erlang OTP 24.3.4.4 (affected by bug), and while the latest source releases pull in 24.3.4.2 (before the bug).
So I’m stuck with this until there’s another OTP build of Rebased pushed out, or have to switch to a source install.
arcanicanis /
npub1pm…wd4ts
2024-02-07 23:28:48
in reply to nevent1q…64hv
Author Public Key
npub1pmt6lj9sff80t4fvzn75d3j7g5kk9jjs537keafg0mfgykndymms5wd4tsPublished at
2024-02-07 23:28:48Event JSON
{
"id": "f4b36248206be39a5f475ed6b4d95eed977b782c95b0d37fab0393aef5466d00",
"pubkey": "0ed7afc8b04a4ef5d52c14fd46c65e452d62ca50a47d6cf5287ed2825a6d26f7",
"created_at": 1707348528,
"kind": 1,
"tags": [
[
"p",
"35c327905920ee1d1c2aa110208fc4f08807928dcea1ffbf9f3ad5418bbe56ea",
"wss://relay.mostr.pub"
],
[
"e",
"8c5d8a12e0c090770ec98ae30324dc367fbe8e1bc67efb08b66a03e3f8528cb9",
"wss://relay.mostr.pub",
"reply"
],
[
"proxy",
"https://were.social/objects/b88b3cda-7b07-4f9d-8fed-7a7081c05ac4",
"activitypub"
]
],
"content": "I finally got around to digging into it further today:\n\nThere’s changes in Erlang OTP 24.3.4.3 that cause a bug with ‘middlebox compatibility mode’ in TLSv1.3, whereas with ‘compatibility mode’ it’s supposed to act as if it’s using TLSv1.2 even if it intends to use actually use TLSv1.3 (by doing a “Change Cipher Spec” after server/client hello), if I understand correctly. Nonetheless, there’s some internal logic in Erlang that screws up in that specific release pertaining to this.\n\nThe issue was fixed in 24.3.4.5\n\nMeanwhile the OTP releases of Rebased seems to come with Erlang OTP 24.3.4.4 (affected by bug), and while the latest source releases pull in 24.3.4.2 (before the bug).\n\nSo I’m stuck with this until there’s another OTP build of Rebased pushed out, or have to switch to a source install.",
"sig": "d7c41903b6f30cb1e293d7da089c0d2ab49a45af30e0fdc93256800814bcc75238c3119e01b2ddd056f4312cc85a3d7e18f7fea63a423ee20411c833f6f39ff2"
}