Deomid Ryabkov
Deomid Ryabkov
fwiw, popular browsers now support it too, including chrome - https://bugs.chromium.org/p/chromium/issues/detail?id=1160478
found this through google - would be nice to get this finished and merged, but i guess for now i'll have to roll my own signal handler
@geky can you take a look at this please? Georgi is one of our engineers, and this seems quite serious if we are wearing out flash on filesystems that are...
thanks @geky ! fwiw, all our access is to root directory (we don't even have directories as such, everything lives in the root).
sounds like a good idea but a big change to make. could we start with adjusting the threshold perhaps? 6% sounds reasonable.
@geky thanks for confirming, and good to know that a solution is in the works. meanwhile, is it true that the most efficient write operation on existing files would be...
ok, so i take it that there is overall agreement on the approach - good to know. i will work on tests and TLS 1.3 compatibility (that i completely ignored...
@brewkon `ssl_tls13_process_server_hello` - as mentioned, this was not tested at all with TLS 1.3, so i'm not surprised. try disabling `MBEDTLS_SSL_PROTO_TLS1_3` for now. also make sure `MBEDTLS_SSL_MAX_FRAGMENT_LENGTH` is enabled and...
yes, rebasing, making sure it works with 1.3 and adding automated tests is what needs to be done here to get this ready. this PR was kind of an rfc...
@RonEld this is more serious when Max Fragment Length is used. if a device (using mbedTLS) asks for a small fragment, e.g. 1024 bytes, and the server complies, then handshake...