Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Implement RFC 8740 "Using TLS 1.3 with HTTP/2" #5396

Closed
candrews opened this issue May 13, 2020 · 1 comment
Closed

Implement RFC 8740 "Using TLS 1.3 with HTTP/2" #5396

candrews opened this issue May 13, 2020 · 1 comment
Labels
feature-request HTTP/2 TLS

Comments

@candrews
Copy link

@candrews candrews commented May 13, 2020

RFC 8740 "Using TLS 1.3 with HTTP/2" updates RFC 7540 by forbidding TLS 1.3 post-handshake authentication, as an analog to the existing TLS 1.2 renegotiation restriction.

This RFC fixes a problem with the specifications which breaks the use of client certificate authentication when used with the combination of HTTP/2 and TLS 1.3.

See also:
@jay jay added the HTTP/2 label May 13, 2020
@jay
Copy link
Member

@jay jay commented May 13, 2020

RFC 8740 "Using TLS 1.3 with HTTP/2" updates RFC 7540 by forbidding TLS 1.3 post-handshake authentication, as an analog to the existing TLS 1.2 renegotiation restriction.

Are we already doing this, and if not shouldn't the SSL library do it for us?

@bagder bagder closed this as completed in 5646e56 May 18, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
feature-request HTTP/2 TLS
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@bagder @candrews @jay