On Tue, Sep 29, 2020 at 03:55:54PM +0100, Stephen Farrell wrote: > On 29/09/2020 15:50, Christopher Patton wrote: > > > >> Are there OpenSSL / NSS / etc implementations others can work from? > >> Probably the best way to lock this in and ship is to write the code. > >> > > > > There are three implementations I'm aware of, all works in progress: > > > > 1. Cloudflare's prototype (written by me): > > https://github.com/cloudflare/go/pull/30 > > 2. boringSSL: https://bugs.chromium.org/p/boringssl/issues/detail?id=275 > > 3. NSS: https://bugzilla.mozilla.org/show_bug.cgi?id=1654332 > > Mine has a readme at [1]. It works fine for draft-02 to > draft-04. Later stuff (draft isn't working yet. As I said > I had parked it for a bit, but am back working on it now. > > [1] https://github.com/sftcd/openssl/tree/master/esnistuff
There is also this, implementing draft-05: https://www.tunnelbear.com/blog/tunnelbear-implements-encrypted-sni/ https://boringssl-review.googlesource.com/c/boringssl/+/42644 _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
