On Monday, July 13, 2015 10:30:06 am Martin Rex wrote: > Section 7.4.1.4 Hello Extensions and its subsections are clearly IRRELEVANT > for a client that does not use Hello Extensions.
If you want to put it that way, sure, however they are NOT irrelevant for a _server_ that does use hello extensions. This is a direct part of the TLS 1.2 spec, therefore it is very well established that not sending the extension is a direct request for SHA1, and the server supporting this extension is required to interpret it that way. The expectations on what to do in lieu of that working are bad; that's what we want to fix here. Dave _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
