Published at https://tls13.xargs.org
site/
: page source for the finished productserver/main.c
: server codeclient/main.c
: client codearchive/
: previous version of this site, which was based on a pre-production BoringSSL patchopenssl/
: patch of OpenSSL that removes any random aspects of the documented connectioncaptures/
: PCAP and keylog files
See also https://github.com/syncsynchalt/illustrated-tls for a TLS 1.2 version of this project.
If you'd like a working example that reproduces the exact handshake documented on the site:
git clone https://github.com/syncsynchalt/illustrated-tls13.git
cd illustrated-tls13/
cd openssl/
make
cd ../server/
make
cd ../client/
make
Then open two terminals and run ./server
in the server/ subdir and ./client
in the client/ subdir.
This has been shown to work on MacOS 10.14 and various Linuxes and only has a few easy-to-find dependencies: gcc or clang, golang, cmake, make, patch.