Add support for EncryptedClientHello

### Problem:

s2n-tls does not support this draft RFC for Encrypted ClientHello (ECH), which is nearing final standardization. This RFC feature was previously called Encrypted Server Name Indicator (ESNI), but has since been updated to also support encrypting the ClientHello.
 - https://datatracker.ietf.org/doc/html/draft-ietf-tls-esni

### Solution:

s2n-tls should add support for this RFC.

### Requirements / Acceptance Criteria:

TLS Clients connecting to s2n-tls server can successfully follow this draft RFC to encrypt their ClientHello. 

* **RFC links:** https://datatracker.ietf.org/doc/html/draft-ietf-tls-esni

[//]: #  (NOTE: If you believe this might be a security issue, please email aws-security@amazon.com instead of creating a GitHub issue. For more details, see the AWS Vulnerability Reporting Guide: https://aws.amazon.com/security/vulnerability-reporting/ )


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add support for EncryptedClientHello #4231

Problem:

Solution:

Requirements / Acceptance Criteria:

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development