[gnutls-devel] GnuTLS | add support for 0-RTT (!775)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Thu Nov 1 17:30:25 CET 2018


Daiki Ueno commented on a discussion on tests/suite/testcompat-tls13-openssl.sh:

>  	kill ${PID}
>  	wait
>  
> +	# Try resumption with early data
> +	echo_cmd "${PREFIX}Checking TLS 1.3 with resumption with early data..."
> +	testdir=`create_testdir tls13-openssl-resumption`
> +	eval "${GETPORT}"
> +	launch_bare_server $$ s_server -quiet -www -accept "${PORT}" -keyform pem -certform pem ${OPENSSL_DH_PARAMS_OPT} -key "${RSA_KEY}" -cert "${RSA_CERT}" -CAfile "${CA_CERT}" -early_data
> +	PID=$!
> +	wait_server ${PID}
> +
> +	echo "This file contains early data sent by the client" > "${testdir}/earlydata.txt"
> +	${VALGRIND} "${CLI}" ${DEBUG} -p "${PORT}" 127.0.0.1 --priority "NORMAL:-VERS-ALL:+VERS-TLS1.3:+GROUP-ALL${ADD}" --earlydata "${testdir}/earlydata.txt" --insecure --inline-commands <<< $(echo -e "^resume^\nGET / HTTP/1.0\r\n\r\n")| tee "${testdir}/client.out" >> ${OUTPUT}

I realized that the later version of OpenSSL stopped supporting early data with  `-www` option (not sure if there is a plan to add it back, with support for RFC8470). I've removed the HTTP stuff for now.

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/merge_requests/775#note_113872284
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20181101/df24c49d/attachment-0001.html>


More information about the Gnutls-devel mailing list