[gnutls-devel] GnuTLS | Disable TLS 1.3 dynamically during handshake if bad KX is enabed in priority (#825)
Development of GNU's TLS library
gnutls-devel at lists.gnutls.org
Tue Sep 3 11:00:05 CEST 2019
Dmitry Eremin-Solenikov commented:
I have stumbled upon this when I tried copying if-SRP-disable-1.3 code for VKO-GOST. It causes now errors with `gnutls-cli-debug`. I will try adding more robust code (that will check if we should disable TLS 1.3 or VKO depending on TLS 1.2 being enabled). However in general I think that having a server which supports both TLS 1.3 with current ciphersuites and TLS 1.2 with SRP or VKO-GOST is a legitimate setup.
--
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/issues/825#note_211475280
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20190903/7d836a6c/attachment.html>
More information about the Gnutls-devel
mailing list