TLS 1.3 Final

[martinthomson]

This should make mint interoperable for draft-28 changes in TLS. I can take a swing at implementing the record layer changes for DTLS, but that is a far bigger change and I'd like to do that separately. (Either that, or get @ekr to do those because I made the changes in NSS.)

[quite]

I tried building this and succeeded running mint-client-https -url https://tls13.crypto.mozilla.org:443 → "[..] You've reached a demo server that's running TLS 1.3 (draft 28) using NSS [..]"

[marten-seemann]

We should merge this soon. @martinthomson: Any idea why the tests are failing on the CI? They're passing locally, but we should probably fix that before merging.

[martinthomson]

No idea why this is failing, it's DTLS (and the DTLS code is not right for other reasons).