OpenSSL and Early data

Honza Prachař jan.prachar at
Wed Dec 5 23:39:15 UTC 2018

Hello! FYI there is an issue with TLS 1.3 Early data in OpenSSL –

So maybe you would want to consider ignoring Early data with HTTP/2 and
OpenSSL. Or try to fix the problem on the nginx side, i.e. do not call
SSL_read_early_data() until all pending data is written with

Best regards
Jan Prachař
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the nginx-devel mailing list