IETF Logo Mail Archive

Re: [TLS] Supported Versions extension

Brian Smith <brian@briansmith.org> Mon, 17 October 2016 20:40 UTC

Return-Path: <brian@briansmith.org>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BF0EF1297C6 for <tls@ietfa.amsl.com>; Mon, 17 Oct 2016 13:40:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Level:
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=briansmith-org.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ubMfqsFU0LsW for <tls@ietfa.amsl.com>; Mon, 17 Oct 2016 13:40:33 -0700 (PDT)
Received: from mail-io0-x232.google.com (mail-io0-x232.google.com [IPv6:2607:f8b0:4001:c06::232]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 13F6012940F for <tls@ietf.org>; Mon, 17 Oct 2016 13:40:33 -0700 (PDT)
Received: by mail-io0-x232.google.com with SMTP id q192so201512001iod.0 for <tls@ietf.org>; Mon, 17 Oct 2016 13:40:33 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=briansmith-org.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=G+NL7zsjyXBbsKWIbH7SVg6v6uxosEDp9GXtJZ6TszU=; b=g5y2cs50bG4gKwjd8FrfkAhN6SV1yiL85uB/fImCbCA8ydseZ7q7cIuuGWtzsJBdDh NqLe9bCaukMxhdfjXCjRDv9Kp/2H96Wv1cfx2YNaYTPzu3In14RfEosuMhAo6nEw3tCZ uuzbinFhilV6qr9tLukfZyt0AK+iCOW3+DuHb9daEFqHL9Qmatvz+gJvhE2mL0hW/p8V MTuQBFaS6k8bm+0G1dynxg9MSccFpGWxyvDCV4hXjNsEpn3p2oEX2YCPbu22t7cWNQub l7cdPDwuClgn/a5oDuR7NhdKcL5oXSfpmzYtvJMr4XB3LOnyOnyqI3DJlPqFC2/rdMRF hrpg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=G+NL7zsjyXBbsKWIbH7SVg6v6uxosEDp9GXtJZ6TszU=; b=d5hFm97+hg1y8hvMxYxnmQyto8ZrReji7FWPjrl3LtdlTo7LKsQEE/kCpi0Rm4ijUw jSA4I3VmzE1EnBZtv7caA/6ZQsfU63JCwgLtkIT+zhKPEe5RW1fhhR/Y2Qqly6S4vYGZ 5Z+/MdfInSnAF5ZJB6f7G9LVUwCu4eN5KnOAL0A1CO3QsyqUXkSXz4O3dlLy07T3m0E7 IEOYkBpiafein0OPgE72PvphVkV+qpPwQoR0huVmhaR6zNCro1wAdXJRdK7VNF2z2wBp ORF6yt3XRqQokaUG9ihblsknw8bxRIYRXTmFy0zmoxK0DzAThDpa2TLZ6oFC4pm01xj5 aQtQ==
X-Gm-Message-State: AA6/9RmxCCmeEb5IUa7w4E2A+nksphHIipC9s0BghRpx/Sd7vKrjm2bgvcuvuHxEqZUlZr0KNePYLgeUGpcQ0w==
X-Received: by 10.107.154.134 with SMTP id c128mr28956775ioe.184.1476736832362; Mon, 17 Oct 2016 13:40:32 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.36.85.83 with HTTP; Mon, 17 Oct 2016 13:40:31 -0700 (PDT)
In-Reply-To: <20161017203741.GA26847@LK-Perkele-V2.elisa-laajakaista.fi>
References: <1536297.j5uQUWNHeS@pintsize.usersys.redhat.com> <CAFewVt6_6PK09DjTQZnU5eKLVgJG7o8e7wDheANBQU4ms-Oe7w@mail.gmail.com> <20161017203741.GA26847@LK-Perkele-V2.elisa-laajakaista.fi>
From: Brian Smith <brian@briansmith.org>
Date: Mon, 17 Oct 2016 10:40:31 -1000
Message-ID: <CAFewVt6dJ1vgn8411jx3ftC9Z5Sgs_rB0F==WLNv_=ZVf6DLRw@mail.gmail.com>
To: Ilari Liusvaara <ilariliusvaara@welho.com>
Content-Type: multipart/alternative; boundary="001a1140b9a451f0b1053f1596aa"
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/wAWStgrfB2mxjaJfP3LxjKYrhx4>
Cc: "<tls@ietf.org>" <tls@ietf.org>
Subject: Re: [TLS] Supported Versions extension
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 17 Oct 2016 20:40:35 -0000

Ilari Liusvaara <ilariliusvaara@welho.com> wrote:

> Omitting TLS 1.2 causes failures in some downnegotiation cases (when there
> are higher versions supported, but not overlapping).
>

Could you provide a concrete example, please?

Thanks,
Brian
--
https://briansmith.org/

v2.23.0 | Report a Bug | By Email