Buy commercial curl support from WolfSSL. We help you work
out your issues, debug your libcurl applications, use the API, port to new
platforms, add new features and more. With a team lead by the curl founder
himself.
ECH POC update
- Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]
From: Niall O'Reilly via curl-library <curl-library_at_lists.haxx.se>
Date: Thu, 16 Sep 2021 10:55:22 +0100
Hello.
I can report interoperation with a Cloudflare test server which
implements draft-13 of the ECH specification.
Using the command
```
vagrant_at_vagrant:~/build/draft-13a/curl$ src/curl \
--tlsv1.3 \
--ech \
--verbose \
--resolve
crypto.cloudflare.com:443:2606:4700:7::a29f:884f,2606:4700:7::a29f:874f,162.159.136.79,162.159.135.79
\
--echconfig
AEb+DQBCcQAgACCkvZrU6fZj0UCHHIzhWhIZP1hTACMwPn5CQagZQGIVWQAEAAEAAQATY2xvdWRmbGFyZS1lc25pLmNvbQAA
\
https://crypto.cloudflare.com/cdn-cgi/trace
```
I obtained the following output.
```
fl=21f858
h=crypto.cloudflare.com
ip=86.44.76.55
ts=1631711981.906
visit_scheme=https
uag=curl/7.77.0-DEV
colo=LHR
http=http/2
loc=IE
tls=TLSv1.3
sni=encrypted
warp=off
gateway=off
vagrant_at_vagrant:~/build/draft-13a/curl$
```
**Notes:**
| Option | Remarks |
| :---------- | :------ |
| `--tlsv1.3` | work-around for not-yet understood problem |
| `--ech` | placeholder for editing as `--no-ech` if desired |
| `--verbose` | display detail |
| `--resolve ...` | DNS data fetched by wrapper, respecting HTTPS RR |
| `--echconfig ...` | DNS data fetched by wrapper from HTTPS RR |
Niall
Date: Thu, 16 Sep 2021 10:55:22 +0100
Hello.
I can report interoperation with a Cloudflare test server which
implements draft-13 of the ECH specification.
Using the command
```
vagrant_at_vagrant:~/build/draft-13a/curl$ src/curl \
--tlsv1.3 \
--ech \
--verbose \
--resolve
crypto.cloudflare.com:443:2606:4700:7::a29f:884f,2606:4700:7::a29f:874f,162.159.136.79,162.159.135.79
\
--echconfig
AEb+DQBCcQAgACCkvZrU6fZj0UCHHIzhWhIZP1hTACMwPn5CQagZQGIVWQAEAAEAAQATY2xvdWRmbGFyZS1lc25pLmNvbQAA
\
https://crypto.cloudflare.com/cdn-cgi/trace
```
I obtained the following output.
```
fl=21f858
h=crypto.cloudflare.com
ip=86.44.76.55
ts=1631711981.906
visit_scheme=https
uag=curl/7.77.0-DEV
colo=LHR
http=http/2
loc=IE
tls=TLSv1.3
sni=encrypted
warp=off
gateway=off
vagrant_at_vagrant:~/build/draft-13a/curl$
```
**Notes:**
| Option | Remarks |
| :---------- | :------ |
| `--tlsv1.3` | work-around for not-yet understood problem |
| `--ech` | placeholder for editing as `--no-ech` if desired |
| `--verbose` | display detail |
| `--resolve ...` | DNS data fetched by wrapper, respecting HTTPS RR |
| `--echconfig ...` | DNS data fetched by wrapper from HTTPS RR |
Niall
-- Unsubscribe: https://lists.haxx.se/listinfo/curl-library Etiquette: https://curl.haxx.se/mail/etiquette.htmlReceived on 2021-09-16