kris/th5
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
6f38414b48
th5/testdata
History
Adam Langley 6f38414b48 crypto/tls: support renegotiation extension. 
The renegotiation extension was introduced[1] due to an attack by Ray in
which a client's handshake was spliced into a connection that was
renegotiating, thus giving an attacker the ability to inject an
arbitary prefix into the connection.

Go has never supported renegotiation as a server and so this attack
doesn't apply. As a client, it's possible that at some point in the
future the population of servers will be sufficiently updated that
it'll be possible to reject connections where the server hasn't
demonstrated that it has been updated to address this problem.

We're not at that point yet, but it's good for Go servers to support
the extension so that it might be possible to do in the future.

[1] https://tools.ietf.org/search/rfc5746

R=golang-codereviews, mikioh.mikioh
CC=golang-codereviews
https://golang.org/cl/48580043
2014-01-09 13:38:11 -05:00
..
Client-TLSv10-ClientCert-ECDSA-ECDSA crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Client-TLSv10-ClientCert-ECDSA-RSA crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Client-TLSv10-ClientCert-RSA-ECDSA crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Client-TLSv10-ClientCert-RSA-RSA crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Client-TLSv10-ECDHE-ECDSA-AES crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Client-TLSv10-ECDHE-RSA-AES crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Client-TLSv10-RSA-RC4 crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Client-TLSv11-ECDHE-ECDSA-AES crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Client-TLSv11-ECDHE-RSA-AES crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Client-TLSv11-RSA-RC4 crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Client-TLSv12-ClientCert-ECDSA-ECDSA crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Client-TLSv12-ClientCert-ECDSA-RSA crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Client-TLSv12-ClientCert-RSA-ECDSA crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Client-TLSv12-ClientCert-RSA-RSA crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Client-TLSv12-ECDHE-ECDSA-AES crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Client-TLSv12-ECDHE-ECDSA-AES-GCM crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Client-TLSv12-ECDHE-RSA-AES crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Client-TLSv12-RSA-RC4 crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Server-SSLv3-RSA-3DES crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Server-SSLv3-RSA-AES crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Server-SSLv3-RSA-RC4 crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Server-TLSv10-ECDHE-ECDSA-AES crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Server-TLSv10-RSA-3DES crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Server-TLSv10-RSA-AES crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Server-TLSv10-RSA-RC4 crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Server-TLSv11-RSA-RC4 crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Server-TLSv12-CipherSuiteCertPreferenceECDSA crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Server-TLSv12-CipherSuiteCertPreferenceRSA crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Server-TLSv12-ClientAuthRequestedAndECDSAGiven crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Server-TLSv12-ClientAuthRequestedAndGiven crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Server-TLSv12-ClientAuthRequestedNotGiven crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Server-TLSv12-ECDHE-ECDSA-AES crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Server-TLSv12-IssueTicket crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Server-TLSv12-Resume crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Server-TLSv12-RSA-3DES crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Server-TLSv12-RSA-AES crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Server-TLSv12-RSA-AES-GCM crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Server-TLSv12-RSA-RC4 crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00
Server-TLSv12-SNI crypto/tls: support renegotiation extension. 2014-01-09 13:38:11 -05:00