kris/th5
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
Alternative TLS implementation in Go
198 Commits 3 Branches 0 Tags 2.6 MiB
Go 99.8%
Shell 0.2%
4fe9ec0490
Go to file
Adam Langley 4fe9ec0490 crypto/tls: check curve equation in ECDHE. 
This change causes a TLS client and server to verify that received
elliptic curve points are on the expected curve. This isn't actually
necessary in the Go TLS stack, but Watson Ladd has convinced me that
it's worthwhile because it's pretty cheap and it removes the
possibility that some change in the future (e.g. tls-unique) will
depend on it without the author checking that precondition.

LGTM=bradfitz
R=bradfitz
CC=golang-codereviews
https://golang.org/cl/115290046
2014-07-28 15:46:27 -07:00
testdata crypto/tls: pick ECDHE curves based on server preference. 2014-02-24 17:57:51 -05:00
alert.go crypto/tls: add Error method to alert 2011-10-27 19:42:32 -07:00
cipher_suites.go crypto/tls: don't select TLS 1.2 cipher suites in prior versions. 2013-09-26 17:09:56 -04:00
common.go crypto/tls: clarify concurrent use of Config 2014-03-20 08:32:06 -07:00
conn_test.go crypto/tls: add server side SNI support. 2011-10-08 10:06:53 -04:00
conn.go all: spelling tweaks, A-G 2014-04-29 12:44:40 -04:00
example_test.go crypto/x509: add example of using a custom root list. 2014-02-19 11:18:35 -05:00
generate_cert.go crypto/tls: Support ECDSA keys in generate_cert.go 2014-07-28 14:46:34 -07:00
handshake_client_test.go crypto/tls: Client side support for TLS session resumption. 2014-01-22 18:24:03 -05:00
handshake_client.go crypto/tls: split connErr to avoid read/write races. 2014-03-03 09:01:44 -05:00
handshake_messages_test.go crypto/tls: pick ECDHE curves based on server preference. 2014-02-24 17:57:51 -05:00
handshake_messages.go crypto/tls: pick ECDHE curves based on server preference. 2014-02-24 17:57:51 -05:00
handshake_server_test.go src, misc: applied gofmt -w -s 2014-07-01 10:28:10 -07:00
handshake_server.go crypto/tls: split connErr to avoid read/write races. 2014-03-03 09:01:44 -05:00
handshake_test.go crypto/tls: rework reference tests. 2013-12-20 11:37:05 -05:00
key_agreement.go crypto/tls: check curve equation in ECDHE. 2014-07-28 15:46:27 -07:00
prf_test.go crypto/tls: support TLS 1.1. 2013-06-04 20:02:22 -04:00
prf.go crypto/tls: fix TLS 1.2 client certificates. 2013-09-16 16:39:42 -04:00
ticket.go crypto/tls: support session ticket resumption. 2012-09-24 16:52:43 -04:00
tls_test.go crypto/tls: deflake TestConnReadNonzeroAndEOF 2014-04-02 14:31:57 -07:00
tls.go crypto/tls: fix typo referencing the required Config field 2014-06-03 18:11:17 +10:00