Hi Lukas, in fact, openssl already gets early TLS 1.3 adoption in dev, will release in 1.1.1, and BoringSSL supports TLSv1.3 already.
On Thu, Dec 15, 2016 at 1:48 AM, Lukas Tribus <lu...@gmx.net> wrote: > Hi Igor, > > > Am 14.12.2016 um 14:37 schrieb Igor Pav: >> >> That's great! >> >> Will HAProxy adopt TLS 1.3 soon? > > > This actually depends way more on openssl than it depends on haproxy (which > most likely only needs a few tweaks). > > TLS 1.3 is the primary focus of the next openssl release [1], which I assume > is gonna be 1.2.0, but I doubt there is an ETA for this. > > > > Regards, > Lukas > > > [1] https://www.openssl.org/policies/roadmap.html