Can you add Blake3 support to openssl? It's over 10x faster than sha2 and will probably be widely adopted.

Currently, testssl prints a big red warning when a server has no server preferred cipher order.

Mozilla recently relaxed their recommendations regarding cipher order. If only strong cipher suites are supported anyway, why not deciding according to the client's preferences. Maybe it's a phone that wants to optimize for performance on low hardware. Additionally, often browsers are better maintain

如：xxx app + www.xxx.com

不要在此issue里面提各种问题，谢谢配合。

Im scrolling and read i2pd.console and read stuff like:

[trust]
## Enable explicit trust options. false by default
# enabled = true
## Make direct I2P connections only to routers in specified Family.
# family = MyFamily
## Make direct I2P connections only to routers specified here. Comma separated list of base64 identities.
# routers = 
## Should we hide our router from other route

This would give to this project a lot more visibility and traction, I think.
Steps to do the process are here: https://github.com/arduino/Arduino/wiki/Library-Manager-FAQ
Thanks a lot.

P.S: It would be great if this example sketch (https://github.com/wolfSSL/wolfssl/blob/190d30f336c0ff32aecbf198bd0603b42dcac46a/IDE/ARDUINO/sketches/wolfssl_client.ino ) -or others if exist- come along with the lib

Our experience with pyOpenSSL + TLS 1.3 beta testing suggests that testing a broader set of TLS versions is valuable. We can do that by using pytest.mark.parametrize on tests we want to run with multiple TLS methods.

I was confused from the brief documentation spec what is the difference between DH and Elliptic Curve code. I though these are two ways to do the same thing. It is only when I tried to get the x coordinate of the public key generated by generateKey() that I realized that this is not Elliptic Curve DH.

Please delete this issue if this is not the proper place to ask. Anyway;
I've got temporary files on disk which I need to encrypt and pass on to http client (that reads IO/streams).

Not sure how to do this right, Pass file and StringIO (as a target) to SymmetricEncryption::Writer.encrypt and then construct new StringIO object from the result?

1. Is system capable of using a default of no compression - when using TLS
2. Is the system capable of exchanging TLS messages in a single exchange or multiple exchanges.
3. If TLS session resumption is used, is the timer associated with TLS session resumption configurable with default to be 1 hour.
4. If TLS session resumption is used, is the maximum time allowed for a TLS session to resume

bannedregexpurllist:

котик
kitty

e2guardian.conf:

weightedphrasemode = 1
phrasefiltermode = 2
preservecase = 2
hexdecodecontent = off
forcequicksearch = on

When I visit, for example, http://blank.org/?котик - request is blocked, all ok. But when I visit http://blank.org/?КОТИК or http://blank.org/?Котик - all passes.
When I enter http://blank.org/?kitty or http://bl