Ilya Shipitsin

@a-denoyelle , I ran QUIC Interop on ngtcp2. surprisingly, no test passed on LibreSSL. logs (both QuicTLS and LibreSSL) attached. just for "handshake" testcase

I rebuilt on https://github.com/haproxy/haproxy/commit/7acdc3f6ffa69ba97d9f25532f2b7dd1ef390564 (LibreSSL master branch) [logs-handshake-7acdc3f6ffa69ba97d9f25532f2b7dd1ef390564.zip](https://github.com/user-attachments/files/15777676/logs-handshake-7acdc3f6ffa69ba97d9f25532f2b7dd1ef390564.zip)

I've played a little with automation https://github.com/chipitsine/quic-interop-experiments/tree/main/.github/workflows looks like we can setup weekly pipeline for QUIC Interop (as we know tests which are supposed to pass)

@a-denoyelle , I've revisited this issue (on both current master branch of HAProxy and LibreSSL), issue is still there. I'm attaching logs for "handshake" testcase, can you please have a...

ok, I was able to read logs. we hit this: https://github.com/haproxy/haproxy/blob/master/src/quic_ssl.c#L563-L573

as far as I see, client does not force particular suite

well, current finding is 1. ngtcp2 sets zero size session 2. LibreSSL does not like zero size sessions: https://github.com/libressl/openbsd/blob/3006ff83f98c4783ee71689e5e63047b95dc7bca/src/lib/libssl/ssl_sess.c#L497-L502 @botovq , can you please validate whether finding is relevant to...

according to my findings, SSL_do_handshake returns `0x12f` (which is 303). in LibreSSL there're two constants for 303: SSL_R_SSL_SESSION_ID_HAS_BAD_LENGTH SSL_F_SSL_PARSE_SERVERHELLO_TLSEXT (I see that it is defined, but I see no usage)

@botovq , sorry for bothering.... did you have a chance to have a look ?

@weidi , can you help please ? btw, what kind of bridge are we talking about, SE bridge ? or docker bridged network ?