Closed Bug 1427921 Opened 2 years ago Closed 2 years ago
Update TLS 1
.3 to draft-23
draft-23 will include two changes: - renumbering key_share to 51 - a new extension signature_algorithms_cert (50) We can get by in the short term with ignoring signature_algorithms_cert, because we currently ignore signature algorithms on the certificate chain. But we really need to support the key_share change.
Comment on attachment 8940007 [details] Bug 1427921 - RSA-PSS codepoints for TLS 1.3 draft-23, r?ekr Eric Rescorla (:ekr) has approved the revision. https://phabricator.services.mozilla.com/D355#8774
Attachment #8940007 - Flags: review+
Status: NEW → RESOLVED
Closed: 2 years ago
Resolution: --- → FIXED
Note that the second change is in 3.36. I won't backport that change because it doesn't have any material effect on code, it's just renaming and we will do better not having that sort of change in 3.35.
Comment on attachment 8945495 [details] Bug 1427921 - Update to TLS 1.3 draft-23, r?ekr Eric Rescorla (:ekr) has approved the revision. https://phabricator.services.mozilla.com/D352
Attachment #8945495 - Flags: review+
Just landed an addendum that restores PSS support. https://hg.mozilla.org/projects/nss/rev/7a5ecfb8bf8c
You need to log in before you can comment on or make changes to this bug.