[gnutls-devel] GnuTLS | Disable TLS 1.3 dynamically during handshake if bad KX is enabed in priority (#825)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Sun Sep 8 11:50:21 CEST 2019




Nikos Mavrogiannopoulos commented:


> Now assume misconfigured client which sends TLS 1.3 + TLS 1.2 + GOST ciphersuite. Should they be able to interoperate?

Let's write the use cases we are interested to handle. As you write above we have:
 1. client which sends TLS 1.3 + TLS 1.2 + GOST ciphersuite
 2. client which sets up `-VER-TLS-ALL:+VER-TLS1.3:+KX-ALL`

For (1) the current behavior would be fine, as it will disable TLS1.3 and use GOST. For (2) all is ok if GOST is not in the `KX-ALL` (current situation). If at some point GOST gets into the `NORMAL` priority then effectively `-VER-TLS-ALL:+VER-TLS1.3:+KX-ALL` will be synonymous to NONE.

So as it is now, to my understanding, the problem with our handling of priority strings is that TLS-1.2 only key exchange (or even ciphers?) cannot be added in the default set. Do we agree on the problem?

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/issues/825#note_213864490
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20190908/f7238109/attachment-0001.html>


More information about the Gnutls-devel mailing list