rushilmehra
commented
1 month ago Hi, yes, I'll be getting to this shortly as we want to implement ECH for some internal rust projects. I'll add the client APIs as well. Will use this issue to track
Open jrose-signal opened 1 month ago
rushilmehra
commented
1 month ago Hi, yes, I'll be getting to this shortly as we want to implement ECH for some internal rust projects. I'll add the client APIs as well. Will use this issue to track
Now that Cloudflare is rolling out ECH again, it'd be great to see the ECH client APIs exposed in
boring:SSL_set1_ech_config_listfor basic supportSSL_get0_ech_retry_configsfor recovery from key mismatchesSSL_get0_ech_name_overridefor custom verifiers to support fallback to non-ECHSSL_ech_acceptedfor completenessThe server APIs would also be good to add, and might be the best way to write a test, but they're a little more involved (
EVP_HPKE_KEYhas to be exposed in order to provideSSL_ECH_KEYS_add).