Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Implement RFC 8740 "Using TLS 1.3 with HTTP/2" #5396

Closed
candrews opened this issue May 13, 2020 · 1 comment
Closed

Implement RFC 8740 "Using TLS 1.3 with HTTP/2" #5396

candrews opened this issue May 13, 2020 · 1 comment

Comments

@candrews
Copy link

@candrews candrews commented May 13, 2020

RFC 8740 "Using TLS 1.3 with HTTP/2" updates RFC 7540 by forbidding TLS 1.3 post-handshake authentication, as an analog to the existing TLS 1.2 renegotiation restriction.

This RFC fixes a problem with the specifications which breaks the use of client certificate authentication when used with the combination of HTTP/2 and TLS 1.3.

See also:

@jay
Copy link
Member

@jay jay commented May 13, 2020

RFC 8740 "Using TLS 1.3 with HTTP/2" updates RFC 7540 by forbidding TLS 1.3 post-handshake authentication, as an analog to the existing TLS 1.2 renegotiation restriction.

Are we already doing this, and if not shouldn't the SSL library do it for us?

@bagder bagder closed this as completed in 5646e56 May 18, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

No branches or pull requests

3 participants