On 4 August 2017 at 22:50, Sean Turner <s...@sn3rd.com> wrote: > At our IETF 99 session, there was support in the room to adopt > draft-thomson-tls-record-limit [0]. We need to confirm this support on the > list so please let the list know whether you support adoption of the draft > and are willing to review/comment on the draft before 20170818. If you > object to its adoption, please let us know why.
It is 20170818 now where I am, so I'm going to provide an update before the chairs make their minds up. I have a patch for NSS that implements this (including the assumptions in PR #1). TLS was easy. For some structural reasons DTLS wasn't as simple because you have to be aware of record size limits when fragmenting handshake messages. I ended up having to restructure a function or two and break down some bad/previously-ok assumptions, but it wasn't especially difficult. As a bonus, we will now be marginally more efficient with our DTLS handshake. I ended up implementing for SSLv3 through to TLS 1.3. Should anyone want to test, please contact me privately. This will eventually hit NSS trunk, but probably not until we sort out the TLS 1.3 deployment challenges. _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
