kris/th5
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
Alternative TLS implementation in Go
213 Commits 3 Branches 0 Tags 2.6 MiB
Go 99.8%
Shell 0.2%
fb479af552
Go to file
Adam Langley fb479af552 crypto/tls: allow larger initial records. 
Some servers which misunderstood the point of the CertificateRequest
message send huge reply records. These records are large enough that
they were considered “insane” by the TLS code and rejected.

This change removes the sanity test for record lengths. Although the
maxCiphertext test still remains, just above, which (roughly) enforces
the 16KB protocol limit on record sizes:
https://tools.ietf.org/html/rfc5246#section-6.2.1

Fixes #8928.

Change-Id: Idf89a2561b1947325b7ddc2613dc2da638d7d1c9
Reviewed-on: https://go-review.googlesource.com/5690
Reviewed-by: Andrew Gerrand <adg@golang.org>
Reviewed-by: Brad Fitzpatrick <bradfitz@golang.org>
2015-02-24 19:39:36 +00:00
testdata crypto/tls: add support for AES_256_GCM_SHA384 cipher suites specified in RFC5289 2015-02-04 00:18:14 +00:00
alert.go crypto/tls: support TLS_FALLBACK_SCSV as a server. 2014-10-15 17:54:04 -07:00
cipher_suites.go crypto/tls: add support for AES_256_GCM_SHA384 cipher suites specified in RFC5289 2015-02-04 00:18:14 +00:00
common.go crypto/tls: change default minimum version to TLS 1.0. 2014-12-18 19:49:41 +00:00
conn_test.go crypto/tls: Added dynamic alternative to NameToCertificate map for SNI 2014-08-06 11:22:00 -07:00
conn.go crypto/tls: allow larger initial records. 2015-02-24 19:39:36 +00:00
example_test.go crypto/x509: add example of using a custom root list. 2014-02-19 11:18:35 -05:00
generate_cert.go crypto/tls: Support ECDSA keys in generate_cert.go 2014-07-28 14:46:34 -07:00
handshake_client_test.go crypto/tls: add support for AES_256_GCM_SHA384 cipher suites specified in RFC5289 2015-02-04 00:18:14 +00:00
handshake_client.go crypto/tls: add support for AES_256_GCM_SHA384 cipher suites specified in RFC5289 2015-02-04 00:18:14 +00:00
handshake_messages_test.go crypto/tls: add ALPN support. 2014-08-05 11:36:20 -07:00
handshake_messages.go crypto/tls: fix renegotiation extension. 2015-01-06 19:50:07 +00:00
handshake_server_test.go crypto/tls: add support for AES_256_GCM_SHA384 cipher suites specified in RFC5289 2015-02-04 00:18:14 +00:00
handshake_server.go all: don't refer to code.google.com/p/go{,-wiki}/ 2015-02-06 14:41:47 +00:00
handshake_test.go crypto/tls: rework reference tests. 2013-12-20 11:37:05 -05:00
key_agreement.go crypto/tls: check curve equation in ECDHE. 2014-07-28 15:46:27 -07:00
prf_test.go crypto/tls: add support for AES_256_GCM_SHA384 cipher suites specified in RFC5289 2015-02-04 00:18:14 +00:00
prf.go crypto/tls: add support for AES_256_GCM_SHA384 cipher suites specified in RFC5289 2015-02-04 00:18:14 +00:00
ticket.go crypto/tls: ensure that we don't resume when tickets are disabled. 2014-09-26 11:02:09 +10:00
tls_test.go crypto/tls: implement tls-unique channel binding (RFC 5929 section 3). 2014-08-11 16:40:42 -07:00
tls.go crypto/tls: remove return parameter stutter 2015-01-13 21:35:11 +00:00