Matt Caswell
Matt Caswell
Pushed!! Thanks @t8m and @hlandau for your time spent reviewing this!
> Ping @mattcaswell ? Sorry - been away on vacation for the last 2 weeks. Will try and pick this up when I am caught up.
OTC: Receiving of compressed certificates should be "on" by default Transmission of compressed certificates should be "off" by default, unless you have already cached some certificates using `SSL_CTX_compress_cert()` or you...
> Unless the @openssl/otc really wants the callback The impression I got from other OTC members was that a simpler API is better. It's always possible to add additional API...
Looks like a rebase is required.
> Not sure what you mean about DTLS. This is a new API without existing users. If there are semantics of the DTLS APIs we need to preserve those belong...
> We have accidentally exposed side effects of internal implementation details (errno); > Applications have ended up depending on this abstraction leak, in an instance of Hyrum's law. > We...
I can live with libssl doing this. However, I have another thought (which may be slightly contradictory to my previous thought, but still needs to be considered). Should we be...
Option 3 sounds plausible, but please consider how it interacts/intersects with numerous other BIO macros/functions in this area. E.g. ```` # define BIO_get_flags(b) BIO_test_flags(b, ~(0x0)) # define BIO_set_retry_special(b) \ BIO_set_flags(b,...
> Most of the BIO calls read or write state on the BIO so are incompatible with our objectives of supporting concurrent use for the mmsg methods Yes, good point.