-
## **Problem:**
Our code currently uses a mix of ">= S2N_TLS13" and "== S2N_TLS13" checks. I would like to argue for switching all of the "=="s over to ">=": I believe "==" is shortsighted and will i…
-
I saw a blog on your site showig that [Cloudflare is using BoringSSL](https://blog.cloudflare.com/make-ssl-boring-again/) and issue [#78](https://github.com/cloudflare/sslconfig/issues/78) also prove …
-
**Is your feature improvement request related to a problem? Please describe.**
The `tedge` CLI framework is used in `thin-edge` devices to create/update configs, create certificates, and connect to…
-
Hi, I am very happy linphone user and grateful to you for sharing your work!
Usually I can place call using both plain UDP or TCP, but on some networks especially mobile carrier networks SIP packets …
-
### What's the feature 🧐
Can you add support for using NextDNS as a DOT provider?
https://my.nextdns.io/
### Extra information and references
_No response_
-
tls 1.3 sslkeylog format is
CLIENT_RANDOM 7d9808b90c2ea6a7bb507012f10f9b50fa2504908b07d6da890ca7a2073ecb97 2ca9209a321885911a4c81d08f7daa32fe36c7fec3dec1b500f8fdb2f818c16f8360b43bf19b203cd6c350f2823a…
-
可否支持`TLS1.3`并显示TLS加密算法参数、证书参数等?
测试了 `https://tls13.crypto.mozilla.org/` 提示握手失败
-
leftshark.tls13.com returns two unknown frames, one with type 0xc, and the other in the experimental range. h2 only produces one UnknownFrameEvent with type 0xc and ignores the experimental range fram…
-
From Andrei:
> if you require support for this OID [subjectAltName] in the CERTIFICATE_REQUEST, then you have to define matching rules (see https://tools.ietf.org/html/draft-ietf-tls-tls13-12#section…
-
When verifying a handshake, webpki::EndEntityCert::try_from is called twice:
https://github.com/rustls/rustls/blob/2673750e0f718656708129f58c93771d9dcc7172/rustls/src/verify.rs#L483
https://gith…