[qca] [Bug 476562] New: RFC 9266: Channel Bindings for TLS 1.3

[Neustradamus]

https://bugs.kde.org/show_bug.cgi?id=476562

            Bug ID: 476562
           Summary: RFC 9266: Channel Bindings for TLS 1.3
    Classification: Frameworks and Libraries
           Product: qca
           Version: unspecified
          Platform: Other
                OS: Other
            Status: REPORTED
          Severity: critical
          Priority: NOR
         Component: general
          Assignee: unassigned-bugs at kde.org
          Reporter: Neustradamus at hotmail.com
                CC: aacid at kde.org, bradh at frogmouth.net,
                    justin at karneges.com
  Target Milestone: ---

Can you add the support of RFC 9266: Channel Bindings for TLS 1.3?
- https://datatracker.ietf.org/doc/html/rfc9266

Little details, to know easily:
- tls-unique for TLS =< 1.2
- tls-server-end-point
- tls-exporter for TLS = 1.3

I think that you have seen the jabber.ru MITM:
- https://notes.valdikss.org.ru/jabber.ru-mitm/
- https://snikket.org/blog/on-the-jabber-ru-mitm/
- https://www.devever.net/~hl/xmpp-incident
- https://blog.jmp.chat/b/certwatch

Thanks in advance.

Linked to:
- https://bugs.kde.org/show_bug.cgi?id=411184

-- 
You are receiving this mail because:
You are the assignee for the bug.