Anthony Rossi
Anthony Rossi
Were there recent changes to this branch? Or are you saying the test run 7 months ago failed 0-RTT and Resumption?
Need a way to set the transport parameter and disable generating the usual one. We could disable VNE on the side that is generating the transport parameter, but that also...
On windows, I think we could use ETW to monitor memory usage during a test run and potentially script a tool to analyze the ETW after the test runs.
I don't think this is going to be possible without some significant product code changes which makes it even more necessary to write tests. The basic assumption of the server-side...
An alternative would be to write the test with separate processes: a load balancer running as a separate process with a RAW socket to hand traffic to the appropriate server...
Since the above are not in any particular priority, I'm going to list the top-level bullets in priority order 1. Specific look-up mechanisms (hash, principal name, different stores, etc.) 2....
#2738 fixes the issue this bug represents, but this is being kept around to track the need to write a test to prevent this scenario.
I think my openssl submodule is on an old commit and it's showing up in this PR. I'll fix that before merging
Talked with Thad about how to unblock him and finish this up. It's going to be a larger change to fix the tests, but worth it long-term.
You can currently get this behavior if you pass the INDICATE_PEER_CERTIFICATE flag, and then in the PEER_CERTIFICATE callback, you can validate against your desired set of CAs by calling OpenSSL...