On 14/11/16 13:37, Brandon Black wrote:
> On Mon, Nov 14, 2016 at 10:04 AM, Matt Caswell wrote:
>> During the handshake phase OpenSSL adds a buffering BIO in front of the
>> wbio. However when you call SSL_get_wbio(), you get back the *real* wbio
>> (without the bbio on the front). This is a cha
On Mon, Nov 14, 2016 at 10:04 AM, Matt Caswell wrote:
> During the handshake phase OpenSSL adds a buffering BIO in front of the
> wbio. However when you call SSL_get_wbio(), you get back the *real* wbio
> (without the bbio on the front). This is a change of behaviour between
> 1.1.0 and 1.0.2, and
On 12/11/16 16:29, Brandon Black wrote:
> Hi all,
>
> I'm running into an issue where if the server handshake response
> exceeds some value a little over 4K (which is pretty easy these days
> with a typical public cert, intermediate, and stapled OCSP response),
> we're suffering an extra RTT i
Hi all,
I'm running into an issue where if the server handshake response
exceeds some value a little over 4K (which is pretty easy these days
with a typical public cert, intermediate, and stapled OCSP response),
we're suffering an extra RTT in our SSL negotiations with
OpenSSL-1.1.0 (vs 1.0.2).
