Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.
Sign upUnsupported algorithm on RTCDtlsTransport.start #752
Comments
This comment has been minimized.
This comment has been minimized.
|
Having said this, IIRC there can be multiple fingerprints. So, if all of the provided fingerprints have been created by an unsupported algorithm, |
This comment has been minimized.
This comment has been minimized.
|
The issue is much worse in Edge. If you call setRemoteParameters by passing sha-1 (not supported in Edge) , sha-224 (not supported in Edge) and the others sha-256, sha-384 and sha-512 (all of them supported in Edge), Edge raises InvalidParameters, so it seems that it just takes the first algorithm. |
This comment has been minimized.
This comment has been minimized.
|
But that's Edge-specific then. |
added a commit
that referenced
this issue
Sep 18, 2017
aboba
added
PR exists
1.1
labels
Sep 18, 2017
aboba
closed this
Sep 22, 2017
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
lgrahl commentedAug 30, 2017
•
edited
In the RTCDtlsTransport.start method, the implementation should check whether the fingerprint algorithm is supported and raise an appropriate exception.
For example, implementations may decide to not support SHA-1 but that does not make the DTLS parameters invalid. So, I don't think
InvalidParametersis what we want to raise. My proposal would beNotSupportedErroras it is also used in RTCCertificate.generateCertificate and in the Web Cryptography API for that purpose.Related tweet from @ibc: https://twitter.com/ibc_tw/status/902121596613271552