--
You received this message because you are subscribed to the Google Groups "QUIC Prototype Protocol Discussion group" group.
To unsubscribe from this group and stop receiving emails from it, send an email to proto-quic+...@chromium.org.
To view this discussion on the web visit https://groups.google.com/a/chromium.org/d/msgid/proto-quic/a4d92e8f-6c79-4108-8de2-c2ee40ad637c%40chromium.org.
To view this discussion on the web visit https://groups.google.com/a/chromium.org/d/msgid/proto-quic/CAPDSy%2B5hbU3q951K%3DiMf_ZHQt%3Dpkt_CGpHdJeMiNLPaPsrCboQ%40mail.gmail.com.
Hi David,
Do you know if this is public trust is determined by the EV qualified list that’s bundled in the Chromium binary? Is there a way to subvert this or add a custom CA to this list? Either
with a command-line parameter, or less ideally - with code modification?
In order to get a certificate with LetsEncrypt I believe we would need a publicly accessible IP, which we currently don’t have access to within our test environment. It’s an option, but in the meantime I’m wondering if there is any other possible work-around.
For any other testing with Chrome, the –origin-to-force-quic-on param (as Nick Harper mentioned) works fine, however for this test case it’s not appropriate as we need to first make the request to the TCP service before we can verify the switch to UDP.
Thanks,
Nick
To view this discussion on the web visit
https://groups.google.com/a/chromium.org/d/msgid/proto-quic/CAPDSy%2B5hbU3q951K%3DiMf_ZHQt%3Dpkt_CGpHdJeMiNLPaPsrCboQ%40mail.gmail.com.
Hi David,
Do you know if this is public trust is determined by the EV qualified list that’s bundled in the Chromium binary? Is there a way to subvert this or add a custom CA to this list? Either with a command-line parameter, or less ideally - with code modification?
In order to get a certificate with LetsEncrypt I believe we would need a publicly accessible IP, which we currently don’t have access to within our test environment. It’s an option, but in the meantime I’m wondering if there is any other possible work-around.
For any other testing with Chrome, the –origin-to-force-quic-on param (as Nick Harper mentioned) works fine, however for this test case it’s not appropriate as we need to first make the request to the TCP service before we can verify the switch to UDP.
To view this discussion on the web visit https://groups.google.com/a/chromium.org/d/msgid/proto-quic/08102910-DF8F-431E-B2C6-5D1103A9C9FD%40akamai.com.