AnsweredAssumed Answered

Invalid 0-RTT detection

Question asked by Alexander Falaleev on Apr 5, 2019
Latest reply on May 22, 2019 by Tamthing Shimray

ssllabs test

 

"0-RTT enable    No"

 

But if I check in other ways:

 

а)

 

Checked using the program under the python3 - sslyze 2.0.3

 

python3 -m sslyze --early_data www.babai.ru :

 


 SCAN RESULTS FOR WWW.BABAI.RU:443 - 185.158.115.215
 ---------------------------------------------------

 

 * TLS 1.3 Early Data:    Suppported - Server accepted early data

 

б)

 

Also checked through the comand openssl :

 

openssl s_client -connect www.babai.ru:443 -sess_out session.dat -sess_in session.dat -early_data http.txt
(http.txt is just a dummy GET request)

 

everything is working !

 

в)

 

htbridge test

 

"Server's TLSv1.3 Early Data (RFC 8446, page 17) is properly implemented"

Outcomes