Added by Cindy about 2 months ago
Hello,
Just want to confirm lighttpd by default does not enable early data for TLS sessions.
According to openssl document( https://docs.openssl.org/1.1.1/man3/SSL_read_early_data/#description ):
"By default the server does not accept early data; a server may indicate support for early data by calling SSL_CTX_set_max_early_data() or SSL_set_max_early_data() to set it for the whole SSL_CTX or an individual SSL object respectively. "
So I assume lighttpd by default does not enable early data. Is my understanding correct?
Correct. lighttpd does not currently enable TLS early data support.
Clients which attempt to send early data will find this out during TLS negotiation and can resend the data.