search

grahamedgecombe / nginx-ct

Certificate Transparency module for nginx.
https://grahamedgecombe.com/projects/nginx-ct
ISC License
176 stars 29 forks source link

TLS 1.3 support #21

Closed grahamedgecombe closed 7 years ago

grahamedgecombe commented 7 years ago

I've started looking at implementing this.

Looks like the first thing to do is to replace SSL_CTX_add_server_custom_ext with SSL_CTX_add_custom_ext on OpenSSL >= 1.1.1. This will allow us to drop the SSL_EXT_TLS1_2_AND_BELOW_ONLY flag.

grahamedgecombe commented 7 years ago

Done in 8b533971f7450639879f382e5fc9ea61eba009db