For the Windows TLS stack, TLS 1.3 codebase is somewhat separate from TLS <= 1.2, but we certainly read/review/fuzz/pen-test both 1.2 and 1.3.
Cheers, Andrei From: Uta <uta-boun...@ietf.org> On Behalf Of Salz, Rich Sent: Wednesday, July 13, 2022 2:00 PM To: Rob Sayre <say...@gmail.com>; Peter Saint-Andre <stpe...@stpeter.im> Cc: Benjamin Kaduk <ka...@mit.edu>; sec...@ietf.org; draft-ietf-uta-rfc7525bis....@ietf.org; last-c...@ietf.org; uta@ietf.org Subject: [EXTERNAL] Re: [Uta] [Last-Call] Secdir telechat review of draft-ietf-uta-rfc7525bis-09 * Every TLS implementation maintains divided codebases for 1.2 vs 1.3. No one reads the TLS 1.2 code very closely these days, in my experience Strongly disagree. OpenSSL, and its forks do not have a divided codebase. As for reading the code, I can’t argue with your experience, but in my experience this is not the case.
_______________________________________________ Uta mailing list Uta@ietf.org https://www.ietf.org/mailman/listinfo/uta
