Open
Bug 1637754
Opened 5 years ago
Updated 8 months ago
Implement RFC 8740 "Using TLS 1.3 with HTTP/2"
Categories
(Core :: Security: PSM, enhancement, P3)
Tracking
()
UNCONFIRMED
People
(Reporter: candrews, Unassigned)
Details
(Whiteboard: [psm-backlog])
User Agent: Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:76.0) Gecko/20100101 Firefox/76.0
Steps to reproduce:
RFC 8740 "Using TLS 1.3 with HTTP/2" updates RFC 7540 by forbidding TLS 1.3 post-handshake authentication, as an analog to the existing TLS 1.2 renegotiation restriction.
This RFC fixes a problem with the specifications which breaks the use of client certificate authentication when used with the combination of HTTP/2 and TLS 1.3.
See also:
- https://tools.ietf.org/html/rfc8740
- bug 1511989 regarding TLS 1.3 post-handshake authentication
- Relevant issue in Chrome: https://bugs.chromium.org/p/chromium/issues/detail?id=911653
|
||
Comment 1•5 years ago
|
||
Bugbug thinks this bug should belong to this component, but please revert this change in case of error.
Component: Untriaged → Security: PSM
Product: Firefox → Core
|
||
Updated•5 years ago
|
Severity: -- → S4
Priority: -- → P3
Whiteboard: [psm-backlog]
You need to log in
before you can comment on or make changes to this bug.
Description
•