Hi. I'm using s6-networking with libressl. Some change between libressl 3.1 and 3.2 is causing trouble: I get SSL_ERROR_ILLEGAL_PARAMETER_ALERT in Firefox and ERR_SSL_PROTOCOL_ERROR in Chromium, with this appearing in the server log: s6-tlsd-io: fatal: unable to tls_handshake: handshake failed: error:1404A417:SSL routines:ST_ACCEPT:sslv3 alert illegal parameter
Any ideas? From what I've read, these browser errors usually indicate the server doesn't allow a new enough TLS protocol to satisfy the browser. That seems unlikely here, when older software versions work and only the new ones fail, but maybe it's a conflict between the defaults of libressl and s6-networking? I noticed libressl 3.2 is when they enabled TLS 1.3 by default for servers.
