bed5243775
* RTG-3333 Support X25519MLKEM768 by default, but don't sent it as client X25519MLKEM768 is the standardised successor of the preliminary X25519Kyber768Draft00. Latest browsers have switched to X25519MLKEM768. Cloudflare supports both on the edge. We've had support for X25519MLKEM768 in this crate for a while, but didn't enable by default. We're now enabling serverside support by default. We also let clients advertise support when set to kx-client-pq-supported. We don't enable support by default yet for clients set to kx-client-pq-preferred, as that would cause an extra round-trip due to HelloRetryRequest if the server doesn't support X25519MLKEM768 yet. BoringSSL against which we build must support X25519MLKEM768, otherwise this will fail. * feat: Add kDHE && ffdhe2048/ffdhe3072 curves working implement * Update --------- Co-authored-by: Bas Westerbaan <bas@cloudflare.com> |
||
|---|---|---|
| .. | ||
| build | ||
| cmake | ||
| deps | ||
| patches | ||
| src | ||
| Cargo.toml | ||
| LICENSE-MIT | ||
| README.md | ||
README.md
boring
BoringSSL bindings are available for the Rust programming language, and the HTTP Client is built on top of it.
Non-goals
This package is focused solely on implementing the TLS extensions spec. It supports the original boring , including:
- Safari required TLS extensions
- Firefox required TLS extensions
kDHE&ffdhe2048/ffdhe3072implementations
Contribution
Unless you explicitly state otherwise, any contribution intentionally submitted for inclusion in the work by you, as defined in the Apache-2.0 license, shall be dual licensed under the terms of both the Apache License, Version 2.0 and the MIT license without any additional terms or conditions.
Accolades
The project is based on a fork of boring.