New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

TLS 1.3 support using picotls #1204

Merged
merged 15 commits into from Feb 22, 2017

Conversation

Projects
None yet
1 participant
@kazuho
Member

kazuho commented Feb 20, 2017

[picotls] is our in-house, tiny, optimized implementation of the upcoming TLS 1.3. The PR implements draft-18 of the protocol.

Features included in this PR:

  • server-side of TLS 1.3
  • key-exchanges: secp256r1 and X25519
  • resumption
  • zero-RTT
  • SNI
  • ALPN
  • OCSP stapling

ToDos:

  • correctly handle partial record receives
  • log session IDs (no need, since we don't log session tickets for TLS 1.2)
  • support for logging secrets (since we cannot do this in OpenSSL 1.0.2)
  • log if the request was early-data
  • it's hard, and we might not need this; let's postpone
  • testing

@kazuho kazuho merged commit 8cd4bde into master Feb 22, 2017

0 of 2 checks passed

continuous-integration/travis-ci/pr The Travis CI build is in progress
Details
continuous-integration/travis-ci/push The Travis CI build is in progress
Details

@kazuho kazuho added this to the v2.2 milestone Feb 28, 2017

@jbergstroem jbergstroem referenced this pull request Mar 27, 2017

Closed

h2o: tls 1.3 support #147

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment