Support for TLS 1.3

[ale5000-git]

Quote:

As you may have noticed, we released version 3.15.0 of wolfSSL. One of the features in this release was TLS 1.3 Draft 28 support! Draft 28 is the latest version of the TLS 1.3 specification, and can be enabled in wolfSSL at configure time by using the “–enable-tls13” build option:

--enable-tls13 Enable wolfSSL TLS v1.3 (default: disabled)

Please add support for TLS 1.3.

Edit: Please also update wolfSSL to 3.15.3 for the security vulnerability fixed.

[rmyorston]

busybox-w32 doesn't use wolfSSL.

[ale5000-git]

What is used for https?

[rmyorston]

Upstream BusyBox can be configured to use its own built-in TLS code, its own ssl_helper applet or an SSL client from OpenSSL.

busybox-w32 uses the ssl_helper applet.

[ale5000-git]

But there is a folder called ssl_helper-wolfssl. Is it a legacy folder with no longer working code?

[rmyorston]

Sorry, I meant ssl_client applet.

ssl_helper and ssl_helper-wolfssl are standalone SSL clients. They both pre-date ssl_client.

I prefer ssl_client because it's built in.