curl icon indicating copy to clipboard operation
curl copied to clipboard
verified publisher icon curl

RFC 9266: Channel Bindings for TLS 1.3 support

Open Neustradamus opened this issue 3 years ago • 4 comments

Can you add the support of RFC 9266: Channel Bindings for TLS 1.3?

  • https://datatracker.ietf.org/doc/html/rfc9266

Little details, to know easily:

  • tls-unique for TLS =< 1.2
  • tls-exporter for TLS = 1.3

Thanks in advance.

Neustradamus avatar Jul 29 '22 18:07 Neustradamus

Thanks, but this description sounds as if you're asking for a new feature/change. We use this tracker for bugs and issues only, we put ideas to work on in the future in the TODO document. We basically drown in good ideas so they don't do much use in our tracker.

If you really want to see this happen, start working on an implementation and submit a PR for it or join the mailing list and talk up more interest for it and see what help from others you can get!

bagder avatar Jul 31 '22 17:07 bagder

@bagder: @jas4711 who has added SCRAM support in curl with GNU SASL, has worked on this support in gsasl too.

  • https://github.com/curl/curl/pull/6372

Neustradamus avatar Aug 01 '22 14:08 Neustradamus

I'm afraid I don't know what channel bindings are or what the benefits of adding support for them are, so I can't even add a note to the TODO document. Therefore, I cannot offer to do that part.

bagder avatar Aug 07 '22 21:08 bagder

see #7196

bagder avatar Aug 08 '22 07:08 bagder