Re: HTTP profile for TLS 1.3 0-RTT early data?

--------
In message <CANatvzw9zeVfQMBCXGhakFomL2MaTqFNF65jKWHCDXQQ8rxcTA@mail.gmail.com>
, Kazuho Oku writes:

>The kind of the deployment I was considering was one that deploys a
>TLS terminator that just decrypts the data and sends to backend (i.e.
>TLS to TCP, not an HTTP reverse proxy). My idea was that you could add
>a new field to the Proxy Protocol that indicates the amount of 0-RTT
>data that follows the header of the PROXY Protocol.

Can you even know that at the time you send the PROXY protocol header ?

-- 
Poul-Henning Kamp       | UNIX since Zilog Zeus 3.20
phk@FreeBSD.ORG         | TCP/IP since RFC 956
FreeBSD committer       | BSD since 4.3-tahoe    
Never attribute to malice what can adequately be explained by incompetence.

Received on Friday, 12 May 2017 08:22:09 UTC