> (Please let's not re-open that thread). Indeed, let's agree to disagree on this.
Cheers, Andrei -----Original Message----- From: TLS [mailto:tls-boun...@ietf.org] On Behalf Of Viktor Dukhovni Sent: Monday, January 11, 2016 3:43 PM To: tls@ietf.org Subject: Re: [TLS] Deprecating TLS 1.0, 1.1 and SHA1 signature algorithms On Mon, Jan 11, 2016 at 11:38:25PM +0000, Andrei Popov wrote: > Yes, per RFC 5246: > " If the client provided a "signature_algorithms" extension, then all > certificates provided by the server MUST be signed by a > hash/signature algorithm pair that appears in that extension." Yes. Though for the record, and as discussed ad nauseam before, this is a bug in the RFC, and should not be implemented as written. (Please let's not re-open that thread). Ideally, at some point SChannel will implement the TLS 1.3 draft bug fix also for TLS 1.2. -- Viktor. _______________________________________________ TLS mailing list TLS@ietf.org https://na01.safelinks.protection.outlook.com/?url=https%3a%2f%2fwww.ietf.org%2fmailman%2flistinfo%2ftls&data=01%7c01%7cAndrei.Popov%40microsoft.com%7cf0ce972e5c7b41e5454f08d31ae0fe01%7c72f988bf86f141af91ab2d7cd011db47%7c1&sdata=1s56rzccDOpU1SudCjc4k1LeVmeVsPxqy6XeGDZhQTM%3d _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
