[PATCH] QUIC: removed TLSv1.3 requirement from README

Maxim Konovalov maxim at nginx.com
Tue Apr 11 14:45:50 UTC 2023


On 11.04.2023 07:29, Roman Arutyunyan wrote:
> Hi,
> 
> On Mon, Apr 10, 2023 at 02:11:44PM -0700, Maxim Konovalov wrote:
>> On 10.04.2023 04:47, Roman Arutyunyan wrote:
>>> # HG changeset patch
>>> # User Roman Arutyunyan <arut at nginx.com>
>>> # Date 1681127095 -14400
>>> #      Mon Apr 10 15:44:55 2023 +0400
>>> # Branch quic
>>> # Node ID b14b0c9887fbf22e24bd0d0449a261ced466f78c
>>> # Parent  9ea62b6250f225578f703da5e230853a7a84df7d
>>> QUIC: removed TLSv1.3 requirement from README.
>>>
>>> TLSv1.3 is enabled by default since d1cf09451ae8.
>>>
>>> diff --git a/README b/README
>>> --- a/README
>>> +++ b/README
>>> @@ -119,10 +119,6 @@ 3. Configuration
>>>            ssl_early_data on;
>>> -    Make sure that TLS 1.3 is configured which is required for QUIC:
>>> -
>>> -        ssl_protocols TLSv1.3;
>>> -
>>>        To enable GSO (Generic Segmentation Offloading):
>> [...]
>>
>> Well, TLSv1.3 is still required.  You just don't need to add it to the list
>> of ssl_protocols.  I would remove it from the config example but keep a note
>> that QUIC relies on TLSv1.3.
> 
> We can keep a note, but I'd like to avoid the directive following the note.
> 
Looks good!

-- 
Maxim Konovalov


More information about the nginx-devel mailing list