Closed Bug 1427921 Opened 2 years ago Closed 2 years ago

Update TLS 1.3 to draft-23

Categories

(NSS :: Libraries, enhancement)

3.35
enhancement
Not set

Tracking

(Not tracked)

RESOLVED FIXED

People

(Reporter: mt, Assigned: mt)

References

(Blocks 1 open bug)

Details

Attachments

(2 files)

draft-23 will include two changes:

 - renumbering key_share to 51
 - a new extension signature_algorithms_cert (50)

We can get by in the short term with ignoring signature_algorithms_cert, because we currently ignore signature algorithms on the certificate chain.  But we really need to support the key_share change.
Blocks: 1427994
Blocks: 1428208
Comment on attachment 8940007 [details]
Bug 1427921 - RSA-PSS codepoints for TLS 1.3 draft-23, r?ekr

Eric Rescorla (:ekr) has approved the revision.

https://phabricator.services.mozilla.com/D355#8774
Attachment #8940007 - Flags: review+
https://hg.mozilla.org/projects/nss/rev/1dd546143b8f28c1090bf78c1d7ba941d2c81e60
Status: NEW → RESOLVED
Closed: 2 years ago
Resolution: --- → FIXED
Note that the second change is in 3.36.  I won't backport that change because it doesn't have any material effect on code, it's just renaming and we will do better not having that sort of change in 3.35.
Comment on attachment 8945495 [details]
Bug 1427921 - Update to TLS 1.3 draft-23, r?ekr

Eric Rescorla (:ekr) has approved the revision.

https://phabricator.services.mozilla.com/D352
Attachment #8945495 - Flags: review+
Just landed an addendum that restores PSS support.

https://hg.mozilla.org/projects/nss/rev/7a5ecfb8bf8c
You need to log in before you can comment on or make changes to this bug.