This page (revision-1) was last changed on 29-Nov-2024 16:16 by UnknownAuthor

Only authorized users are allowed to rename pages.

Only authorized users are allowed to delete pages.

Page revision history

Version Date Modified Size Author Changes ... Change note

Page References

Incoming links Outgoing links
Supported_versions
Supported_versions

Version management

Difference between version and

At line 1 added 25 lines
!!! Overview
[{$pagename}] is a [TLS extension] defined in [TLS 1.3]
[{$pagename}] [TLS extension] is used by the [client] to indicate which versions of [TLS] it supports. The [TLS extension] contains a list of supported versions in preference order, with the most preferred version first. Implementations of this specification [MUST] send this [TLS extension] containing all versions of [TLS] which they are prepared to negotiate (for this specification, that means minimally [0x0304|TLS 1.3], but if previous versions of [TLS] are supported, they [MUST] be present as well).
%%prettify
{{{
struct {
ProtocolVersion versions<2..254>;
} SupportedVersions
}}} /%
If this [TLS extension] is __not__ present, [servers] which are compliant with this specification [MUST] negotiate [TLS 1.2] or prior as specified in [RFC 5246], even if [ClientHello].[legacy_version] is 0x0304 or later. Servers [MAY] abort the [TLS Handshake] upon receiving a [ClientHello] with [legacy_version] 0x0304 or later.
If this extension is present, servers [MUST] ignore the [ClientHello].[legacy_version] value and [MUST] use only the "[{$pagename}]" extension to determine [client] preferences.
Servers [MUST] only select a version of [TLS] present in the [{$pagename}] extension and [MUST] ignore any unknown versions that are present in that extension. Note that this mechanism makes it possible to negotiate a version prior to T[LS 1.2] if one side supports a sparse range.
Implementations of [TLS 1.3] which choose to support prior versions of [TLS] [SHOULD] support [TLS 1.2]. [Servers] should be prepared to receive [ClientHellos] that include this [{$pagename}] [TLS extension] but do not include 0x0304 in the list of versions.
The [server] [MUST NOT] send the "[{$pagename}]" extension. The [server]'s selected version is contained in the [ServerHello].version field as in previous versions of [TLS].
!! More Information
There might be more information for this subject on one of the following:
[{ReferringPagesPlugin before='*' after='\n' }]
This page (revision-1) was last changed on 29-Nov-2024 16:16 by UnknownAuthorTop