search

vert-x3 / vertx-examples

Vert.x examples
Apache License 2.0
3.55k stars 2.09k forks source link

how to enable tls1.3 and early data for 0RTT #440

Open ljwhx2002 opened 2 years ago

ljwhx2002 commented 2 years ago

I'm using netty-tcnative-boringssl-static with vertx , and trying tls1.3, it works well but I don't know how to enable early data. It was 1 RTT for every reconnection. how to enable 0RTT ?

here is my configuration: 

 options.setTcpNoDelay(true)
                .setUseAlpn(true)
                .setTcpFastOpen(true)
                .setSni(true)
                .removeEnabledSecureTransportProtocol("TLSv1")
                .removeEnabledSecureTransportProtocol("TLSv1.2")
                .addEnabledSecureTransportProtocol("TLSv1.3");

 <dependency>
            <groupId>io.netty</groupId>
            <artifactId>netty-tcnative-boringssl-static</artifactId>
            <version>2.0.53.Final</version>
            <classifier>${os.detected.classifier}</classifier>
</dependency>
vietj commented 2 years ago

can you show how it is enabled in Netty ? I haven't checked myself yet

On Sat, Aug 6, 2022 at 1:25 PM ljwhx2002 @.***> wrote:

I'm using netty-tcnative-boringssl-static with vertx , and trying tls1.3, it works well but I don't know how to enable early data. It was 1 RTT for every reconnection. how to enable for 0RTT ?

---------- here is my configuration: options.setTcpNoDelay(true) .setUseAlpn(true) .setTcpFastOpen(true) .setSni(true) .removeEnabledSecureTransportProtocol("TLSv1") .removeEnabledSecureTransportProtocol("TLSv1.2") .addEnabledSecureTransportProtocol("TLSv1.3"); io.netty netty-tcnative-boringssl-static 2.0.53.Final ${os.detected.classifier}

— Reply to this email directly, view it on GitHub https://github.com/vert-x3/vertx-examples/issues/440, or unsubscribe https://github.com/notifications/unsubscribe-auth/AABXDCXQIEQVC64NKE3G2OTVXZDTJANCNFSM55YN5OSQ . You are receiving this because you are subscribed to this thread.Message ID: @.***>

ljwhx2002 commented 2 years ago

Seems to not supply in Netty...

can you show how it is enabled in Netty ? I haven't checked myself yet On Sat, Aug 6, 2022 at 1:25 PM ljwhx2002 @.> wrote: I'm using netty-tcnative-boringssl-static with vertx , and trying tls1.3, it works well but I don't know how to enable early data. It was 1 RTT for every reconnection. how to enable for 0RTT ? ---------- here is my configuration: options.setTcpNoDelay(true) .setUseAlpn(true) .setTcpFastOpen(true) .setSni(true) .removeEnabledSecureTransportProtocol("TLSv1") .removeEnabledSecureTransportProtocol("TLSv1.2") .addEnabledSecureTransportProtocol("TLSv1.3"); io.netty netty-tcnative-boringssl-static 2.0.53.Final ${os.detected.classifier} — Reply to this email directly, view it on GitHub <#440>, or unsubscribe https://github.com/notifications/unsubscribe-auth/AABXDCXQIEQVC64NKE3G2OTVXZDTJANCNFSM55YN5OSQ . You are receiving this because you are subscribed to this thread.Message ID: @.>