kris/th5
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

crypto/tls: document lack of Lucky13 hardening

Browse Source 
Updates #13385

Change-Id: I9c2edf8c02adc388c48760b29e63dfa2966262d6
Reviewed-on: https://go-review.googlesource.com/17532
Reviewed-by: Tim Cooijmans <timcooijmans@gmail.com>
Reviewed-by: Adam Langley <agl@golang.org>
This commit is contained in:
Brad Fitzpatrick 2015-12-08 16:49:17 +00:00
parent 96e5bf3ce5
commit 75bdcc38ef
1 changed files with 5 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
tls.go
View File

@ -5,6 +5,11 @@
// Package tls partially implements TLS 1.2, as specified in RFC 5246. // Package tls partially implements TLS 1.2, as specified in RFC 5246.
package tls package tls
// BUG(agl): The crypto/tls package does not implement countermeasures
// against Lucky13 attacks on CBC-mode encryption. See
// http://www.isg.rhul.ac.uk/tls/TLStiming.pdf and
// https://www.imperialviolet.org/2013/02/04/luckythirteen.html.
import ( import (
"crypto" "crypto"
"crypto/ecdsa" "crypto/ecdsa"