[openssl-project] Potentially bad news on TLS 1.3 compatibility (sans SNI)

Andy Polyakov appro at openssl.org
Wed Apr 18 14:43:54 UTC 2018

> ... what does not make any sense to me is what Google is doing.  Snatching defeat from the jaws of victory by needlessly forcing clients to downgrade to TLS 1.2.  Is there a justification for this?

It can either be a probe just to see if it's reasonable to demand it, or
establish a precedent that they can refer to saying "it was always like
that, *your* application is broken, not ours." Also note that formally
speaking you can't blame them for demanding it. But you can blame them
for demanding it wrong. I mean they shouldn't try to communicate through
OU of self-signed certificate, but by terminating connection with
missing_extension alert, should they?

More information about the openssl-project mailing list