Beta Branch prep for Nginx AWS-LC crypto library support in 130.00beta01

I know that this QUIC-OpenSSL integrating topic has been discussed several times over the years (and can also be found multiple times on this forum), albeit it remains, unfortunate that QUIC could be integrated by a first commit already, ready back in 2019 and 5, almost 6 years later in the end of 2024, OpenSSL still does not fully support QUIC.

---

With a complete integration, as bite-sized code commit on Apr 19, 2019. With no significant response from the OpenSSL team (see same topic). Including the opinion of ‘external’ OpenSSL experts (from respected companies like Akamai, Microsoft, Red Hat, Mozilla), it can be said that after almost 6 years, the OpenSSL team which consists mostly of freelancers 'invoice based' (check out the team members).

Intentionally, the OpenSSL team wants to intergrade its own QUIC implementation. This is understandable as a freelancer because this is obviously on an hourly basis, but totally incomprehensible as an end-user.

You are actually going to wait years now because free lancers (it seems), like to write up to 6 years of extra work hours, instead of being able to intergrate a ready-made commit within a few days.

 

Yup same here, my eyes are on the spot, for personal use, as both, for multiple personal volunteer projects. As I have explained in earlier threads.

 

As time past, v1.37.0 is released. What about AWS_LC dual RSA + ECDSA SSL certificate support in Nginx with this latest AWS_LC release? Is it improved?

 

And even if it did work, we have reached a point where almost every modern device, today supports ECDSA. RSA is going to be slowly phased out I suspect.

 

Tested the latest aws-lc v1.52.0 using

Code (Text):

AWS_LC_VERSION='v1.52.0'

and all seems to be fine.

 

Is this compatible with lua-nginx-module ?

 

Thank you for the reply and clarification!

 

AWS_LC_SWITCH='y' when it will be available for the stable version?