openssl
openssl copied to clipboard
sftcd
TLS/SSL and crypto library
do you see this error in openssl build of `ECH-draft-13c` ? i tried to fix it but didn't get anywhere...
https://github.com/sftcd/openssl/blob/4ead0b350ef545e8d1079c47d1b016dc948bbd32/esnistuff/building-curl-openssl-with-ech.md?plain=1#L19-L20 i'm afraid that `cd openssl` is required between those commands.
chrome 105,openssl 13a,13c SSL_ECH_STATUS:error getting ECH status the nginx log: > 2022/09/25 08:27:40 [error] 10#10: *63 Error getting ECH status while SSL handshaking, client: 172.30.0.1, server: 0.0.0.0:443 2022/09/25 08:27:40 [crit]...
I'm working through auditing the ECH code now, and will post findings as put them together. One quick thing is that there are many lines with trailing spaces, which might...
``` # Be nice to not have to use an absolute path here. var.rootroot="/home/stephen/code/openssl/esnistuff" ``` https://github.com/sftcd/openssl/blob/512c18169eb668db2b4b4b8c43e8d8ed91151bb2/esnistuff/lighttpdmin.conf#L4 This might do what you want for testing (current working directory). `include_shell "printf var.rootroot=\\"$PWD\\""`
Fix here (but I don't know how to create a PR across repos): https://github.com/Neimhin/openssl/pull/4/files In `s_server` we should switch to ctx2 when ECH is successful and when the inner SNI...
