wolfssl icon indicating copy to clipboard operation
wolfssl copied to clipboard
verified publisher icon wolfSSL

Ech hello retry request

Open jpbland1 opened this issue 2 years ago • 3 comments

Description

Refactor Hpke to allow multiple uses of a context instead of just one shot mode. Refactor ECH to handle hello retry request with a different ech acceptance scheme and to re-use the hpke context after a hello retry request when sending the second client hello

Fixes https://github.com/wolfSSL/wolfssl/issues/6802

Testing

Tested the regular ECH through unit tests, need to figure out how to trigger an HRR

Checklist

  • [ ] added tests
  • [ ] updated/added doxygen
  • [ ] updated appropriate READMEs
  • [ ] Updated manual and documentation

jpbland1 avatar Sep 25 '23 05:09 jpbland1

AArch64 test failed, possibly from network hiccup? Retest this please Jenkins

mutex    test passed!
memcb    test passed!
Test complete

wolfSSL error: tcp connect failed: Connection refused

Running simple test
SSL version is TLSv1.2
SSL cipher suite is TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
SSL curve name is SECP256R1

JacobBarthelmeh avatar Sep 25 '23 19:09 JacobBarthelmeh

Looks like CI is flagging a valgrind test. Please also rebase onto master rather than merge in, seems like github has issues when merging in the master branch as seen here with lots of extra commits showing.

JacobBarthelmeh avatar Sep 26 '23 20:09 JacobBarthelmeh