Buy commercial curl support. We
help you work out your issues, debug your libcurl applications, use the API,
port to new platforms, add new features and more. With a team lead by the
curl founder Daniel himself.
Re: ECH tests - any way to include some without having to add an ECH-enabled TLS server?
- Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]
From: Daniel Stenberg via curl-library <curl-library_at_lists.haxx.se>
Date: Sat, 18 Jan 2025 23:27:17 +0100 (CET)
On Wed, 15 Jan 2025, Stephen Farrell via curl-library wrote:
> I'd like to add some tests that exercise the experimental ECH feature,
As a related topic, I would like to mention that me and Stefan have worked a
bit on the HTTPS RR side of things.
- We now parse the ALPN list from a HTTPS RR response and use that as a
clue when connecting. Done when HTTPS RR is used with DoH.
- I am introducing HTTPS RR support to the c-ares backend in [1], bringing the
same ALPN trick there. This should merge within the nearest days.
We/I then have more work to do:
- Add c-ares magic to the threaded resolver backend to add HTTPS RR support
there as well.
- Extend the HTTP RR parser to also deal with "port".
- Make sure the ECH functionality is brought to HTTPS RR use outside of DoH.
- plus whatever I forget right now...
All this also need testing, and it is a bit... complicated.
[1] = https://github.com/curl/curl/pull/16039
Date: Sat, 18 Jan 2025 23:27:17 +0100 (CET)
On Wed, 15 Jan 2025, Stephen Farrell via curl-library wrote:
> I'd like to add some tests that exercise the experimental ECH feature,
As a related topic, I would like to mention that me and Stefan have worked a
bit on the HTTPS RR side of things.
- We now parse the ALPN list from a HTTPS RR response and use that as a
clue when connecting. Done when HTTPS RR is used with DoH.
- I am introducing HTTPS RR support to the c-ares backend in [1], bringing the
same ALPN trick there. This should merge within the nearest days.
We/I then have more work to do:
- Add c-ares magic to the threaded resolver backend to add HTTPS RR support
there as well.
- Extend the HTTP RR parser to also deal with "port".
- Make sure the ECH functionality is brought to HTTPS RR use outside of DoH.
- plus whatever I forget right now...
All this also need testing, and it is a bit... complicated.
[1] = https://github.com/curl/curl/pull/16039
-- / daniel.haxx.se || https://rock-solid.curl.dev -- Unsubscribe: https://lists.haxx.se/mailman/listinfo/curl-library Etiquette: https://curl.se/mail/etiquette.htmlReceived on 2025-01-18