OpenSSL and Early data
Honza Prachař
jan.prachar at gmail.com
Wed Dec 5 23:39:15 UTC 2018
Hello! FYI there is an issue with TLS 1.3 Early data in OpenSSL –
https://github.com/openssl/openssl/issues/7757
So maybe you would want to consider ignoring Early data with HTTP/2 and
OpenSSL. Or try to fix the problem on the nginx side, i.e. do not call
SSL_read_early_data() until all pending data is written with
SSL_write_early_data().
Best regards
Jan Prachař
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.nginx.org/pipermail/nginx-devel/attachments/20181206/b649b3eb/attachment.html>
More information about the nginx-devel
mailing list