Ilari Liusvaara <ilariliusva...@welho.com> writes: >I recently (tried to) implement(ed) TLS 1.2 ciphersuite negotiation in a way >that always negotiates something if at least one valid configuration exists, >and respects TLS 1.2 rules. > >The resulting code was totally insane, and I am very much not surprised to >see buggy implementations. Nor can I say my implementation is not buggy, as >testing that mess is just about impossible (and it it will very much do GIGO >in order to maximize interop).
Do you have any more details on some of the issues you ran into? It'd be good to know for anyone else in this situation. (I've had to do the same thing, with awkward logic that backs off and retries different options if an earlier attempt fails. This was one of the motivators for the Grigg's Law cipher-suite handling in TLS-LTS). Peter. _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls