[gnutls-devel] GnuTLS | Disable TLS 1.3 dynamically during handshake if bad KX is enabed in priority (#825)
Development of GNU's TLS library
gnutls-devel at lists.gnutls.org
Sun Sep 8 11:50:21 CEST 2019
Nikos Mavrogiannopoulos commented:
> Now assume misconfigured client which sends TLS 1.3 + TLS 1.2 + GOST ciphersuite. Should they be able to interoperate?
Let's write the use cases we are interested to handle. As you write above we have:
1. client which sends TLS 1.3 + TLS 1.2 + GOST ciphersuite
2. client which sets up `-VER-TLS-ALL:+VER-TLS1.3:+KX-ALL`
For (1) the current behavior would be fine, as it will disable TLS1.3 and use GOST. For (2) all is ok if GOST is not in the `KX-ALL` (current situation). If at some point GOST gets into the `NORMAL` priority then effectively `-VER-TLS-ALL:+VER-TLS1.3:+KX-ALL` will be synonymous to NONE.
So as it is now, to my understanding, the problem with our handling of priority strings is that TLS-1.2 only key exchange (or even ciphers?) cannot be added in the default set. Do we agree on the problem?
--
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/issues/825#note_213864490
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20190908/f7238109/attachment-0001.html>
More information about the Gnutls-devel
mailing list