> On 4 Jul 2016, at 5:06 PM, Ilari Liusvaara <[email protected]> wrote: > > On Mon, Jul 04, 2016 at 03:46:00PM +0300, Yoav Nir wrote: >> Hi >> >> Based on an email exchange with Nikos Mavrogiannopoulos, I’ve submitted a PR. >> >> https://github.com/tlswg/rfc4492bis/pull/23 >> >> If there are no objections, I will accept it and submit version -08 this >> Friday. > > While scanning through, I noticed that the Ed25519 and Ed448 "curves" > are still there. I think negotiating those should be done the same way > as in TLS 1.3 (those would then appear as hash=7 signature=3/4 IIRC).
IMO this makes it very complex. TLS 1.3 replaces the old signature_algorithms extension that had pairs of signature algorithm/hash algorithm with one that has 16-bit values. It changes things for ECDSA as well. We’re not going to change ECDSA in TLS 1.2. So if we wanted to adopt that we would still interpret 0x04,0x03 as ECDSA (with whatever curve) along with SHA-256, while 0x07,0x03 would be Ed25519, not ECDSA with some unknown hash function 0x07. Seems strange to me, but I’ll make whatever changes the group wants. Yoav _______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
