For the Windows TLS stack, TLS 1.3 codebase is somewhat separate from TLS <= 1.2, but we certainly read/review/fuzz/pen-test both 1.2 and 1.3.
Cheers, Andrei From: Uta <[email protected]> On Behalf Of Salz, Rich Sent: Wednesday, July 13, 2022 2:00 PM To: Rob Sayre <[email protected]>; Peter Saint-Andre <[email protected]> Cc: Benjamin Kaduk <[email protected]>; [email protected]; [email protected]; [email protected]; [email protected] Subject: [EXTERNAL] Re: [Uta] [Last-Call] Secdir telechat review of draft-ietf-uta-rfc7525bis-09 * Every TLS implementation maintains divided codebases for 1.2 vs 1.3. No one reads the TLS 1.2 code very closely these days, in my experience Strongly disagree. OpenSSL, and its forks do not have a divided codebase. As for reading the code, I can’t argue with your experience, but in my experience this is not the case.
_______________________________________________ Uta mailing list [email protected] https://www.ietf.org/mailman/listinfo/uta
