New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

TLS 1.3 support using picotls #1204

merged 15 commits into from Feb 22, 2017


None yet
1 participant

kazuho commented Feb 20, 2017

[picotls] is our in-house, tiny, optimized implementation of the upcoming TLS 1.3. The PR implements draft-18 of the protocol.

Features included in this PR:

  • server-side of TLS 1.3
  • key-exchanges: secp256r1 and X25519
  • resumption
  • zero-RTT
  • SNI
  • ALPN
  • OCSP stapling


  • correctly handle partial record receives
  • log session IDs (no need, since we don't log session tickets for TLS 1.2)
  • support for logging secrets (since we cannot do this in OpenSSL 1.0.2)
  • log if the request was early-data
  • it's hard, and we might not need this; let's postpone
  • testing

@kazuho kazuho merged commit 8cd4bde into master Feb 22, 2017

0 of 2 checks passed

continuous-integration/travis-ci/pr The Travis CI build is in progress
continuous-integration/travis-ci/push The Travis CI build is in progress

@kazuho kazuho added this to the v2.2 milestone Feb 28, 2017

@jbergstroem jbergstroem referenced this pull request Mar 27, 2017


h2o: tls 1.3 support #147

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment