Re: RFC 9266: Channel Bindings for TLS 1.3

help-gsasl

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: RFC 9266: Channel Bindings for TLS 1.3

From:	Simon Josefsson
Subject:	Re: RFC 9266: Channel Bindings for TLS 1.3
Date:	Sun, 31 Jul 2022 20:15:51 +0200
User-agent:	Gnus/5.13 (Gnus v5.13) Emacs/27.1 (gnu/linux)

* Neustradamus * <neustradamus@hotmail.com> writes:

> Can you add the support of RFC 9266: Channel Bindings for TLS 1.3?
> - https://datatracker.ietf.org/doc/html/rfc9266

Hi.  Good idea -- I have added support for this now, see:

https://gitlab.com/gsasl/gsasl/-/merge_requests/5/commits
https://gitlab.com/gsasl/gsasl/-/merge_requests/5/diffs

Please try building from git or test a tarball:

https://gitlab.com/gsasl/gsasl/-/jobs/2794287493/artifacts/file/gsasl-2.0.1.8-90f5.tar.gz

Consider it untested!  It would be nice to interop test this against
some other implementation, is anyone aware of any?

A short dummy exchange from the self-tests:

C: p=tls-exporter,,n=user,r=ov7HyW+T2RKwlXo3MJvmJRwz [N]
S: r=ov7HyW+T2RKwlXo3MJvmJRwzbA+WVByM0g09p7K97AE88m4t,s=unXgikoFGYDOzU2r,i=4096 
[N]
C: 
c=cD10bHMtZXhwb3J0ZXIsLGZub3Jk,r=ov7HyW+T2RKwlXo3MJvmJRwzbA+WVByM0g09p7K97AE88m4t,p=zpQcc5XT6Cy0wAdbE4DyRCGk28obruzi1Uy4NNHLb2g=
 [N]
S: v=4Otl7EAkgXn1hkYhOZ0uVyDz2mSbMZ6wfTvFaqQhttU= [O]

/Simon

signature.asc
Description: PGP signature

[Prev in Thread]

Current Thread

[Next in Thread]

RFC 9266: Channel Bindings for TLS 1.3, * Neustradamus *, 2022/07/27
- Re: RFC 9266: Channel Bindings for TLS 1.3, Simon Josefsson <=

Prev by Date: RFC 9266: Channel Bindings for TLS 1.3
Previous by thread: RFC 9266: Channel Bindings for TLS 1.3
Index(es):
- Date
- Thread