[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [users@httpd] Difficulties with testing TLS 1.3

> On Fri, Jun 15, 2018 at 3:06 AM, Dennis Clarke <dclarke@xxxxxxxxxxxxx> wrote:
>> [Fri Jun 15 00:59:59.788742 2018] [ssl:error] [pid 2250:tid 27] [client
>>] AH02042: rejecting client initiated renegotiation

This suggests that with TLS 1.3, unlike with previous protocols, the
ssl_callback_Info callback is always called by openssl (some specific
extension only?). httpd is not prepared to that and thinks it's a
client renegotiation.

I didn't look at TLS 1.3 yet, but something along this looks seems plausible.