Skip to content

TLS 1.3 support using picotls #1204

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 15 commits into from
Feb 22, 2017
Merged

TLS 1.3 support using picotls #1204

merged 15 commits into from
Feb 22, 2017

Conversation

kazuho
Copy link
Member

@kazuho kazuho commented Feb 20, 2017
edited
Loading

[picotls] is our in-house, tiny, optimized implementation of the upcoming TLS 1.3. The PR implements draft-18 of the protocol.

Features included in this PR:

  • server-side of TLS 1.3
  • key-exchanges: secp256r1 and X25519
  • resumption
  • zero-RTT
  • SNI
  • ALPN
  • OCSP stapling

ToDos:

  • correctly handle partial record receives
  • log session IDs (no need, since we don't log session tickets for TLS 1.2)
  • support for logging secrets (since we cannot do this in OpenSSL 1.0.2)
  • log if the request was early-data
  • it's hard, and we might not need this; let's postpone
  • testing

@kazuho kazuho force-pushed the kazuho/picotls branch 2 times, most recently from d9c2e58 to d82b5bd Compare February 20, 2017 14:44
@kazuho kazuho merged commit 8cd4bde into master Feb 22, 2017
@kazuho kazuho mentioned this pull request Feb 27, 2017
Merged
@kazuho kazuho added this to the v2.2 milestone Feb 28, 2017
@jbergstroem jbergstroem mentioned this pull request Mar 27, 2017
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
v2.2
Development

Successfully merging this pull request may close these issues.
1 participant
@kazuho