aca40d1
(kris/server/www.crypto.cloudflare.com)
This is implementation of server which is running on crypto.cloudflare.com by
2019-03-11 15:32:12 +0000
c362368
Fixes log message by
2019-03-04 22:51:15 +0000
600d4de
Adds X25519-SIKEp503 key agreement (#159) by
2019-02-26 10:16:49 +0000
a5d3512
[sike] Refactor key agreement in TLS 1.3 [PATCH 1/2] (#153) by
2019-02-25 17:25:16 +0000
7619b84
Fixes GH#154. Updates client certificates (#155) by
2019-02-22 07:36:02 +0000
76231e7
SIDH: Implement test againt TLSv1.2 by
2018-12-07 15:35:53 +0000
334eee5
SIDH: Align codepoints with the ones in latest version by
2018-12-05 14:20:21 +0000
1c0d342
boringssl: update to newest version by
2018-12-05 14:13:13 +0000
36f2800
adds LICENSE by
2018-10-25 20:11:52 +0100
fab2c44
makefile: use named tags instead of commit numbers by
2018-10-25 20:18:08 +0100
c752e2e
test: adds tests for rsa-pss signatures by
2018-10-17 12:00:27 +0100
d207455
crypto/tls: expand docs on client-side session ticket support by
2018-06-07 16:24:52 -0400
18024f5
crypto/tls: add examples for [Load]X509KeyPair by
2018-10-17 11:20:39 +0100
4c970a6
crypto/tls: parse certificate first in X509KeyPair to get better errors by
2018-01-28 23:30:48 +0100
9fc345b
crypto/tls: handle errors in generate_cert.go by
2018-02-01 12:21:44 -0800
86b0aec
go 1.11: Switch to GO 1.11 by
2018-10-16 23:58:43 +0100
8da51ab
sidh: operability tests with BoringSSL by
2018-10-15 14:24:28 +0100
96db6f1
sidh: sidh support in boringssl by
2018-10-15 11:16:32 +0100
cb67de3
sidh: use version with improved vendoring (#144) by
2018-10-12 20:17:03 +0100
bcc2724
sidh: use implementation with improved performance for ARMv8 by
2018-10-12 16:15:11 +0100
6fcf1bc
don't expect CertificateVerify when the client doesn't send any cert by
2018-10-12 14:27:02 +0100
ce53b12
fix: client shouldn't use P751/x448 ID by
2018-10-09 09:38:59 +0100
3895b62
sidh: comment out P751/x448 by
2018-10-09 08:54:33 +0100
d184bc0
sidh: adds PQ secure KEX by
2018-10-05 22:43:00 +0100
7c79cbe
sidh: API by
2018-10-05 15:06:44 +0100
ed36ba5
sidh: updates for Makefile by
2018-10-02 10:44:47 +0100
61bc4c1
moves methods from Config to Conn receives by
2018-10-07 15:55:34 +0100
07ad176
fix: in TLSv1.3, the ALPN extension must be sent in EE by
2018-09-16 15:36:10 +0100
da11032
Swap TLS 1.3 to RFC 8446 by
2018-09-16 08:36:45 +0100
7e1760c
Add EMS support to tls-tris by
2017-05-18 16:33:09 -0700
58c559b
fix: mac calculation fails when subsequent packet is shorter by
2018-09-06 11:43:03 +0100
1678dc5
cleanup: removes Committer interface by
2018-09-04 18:25:59 +0100
e20b4d2
don't generate a key share with Curve ID 0 in the ServerHello tests by
2018-08-17 19:56:39 +0700
9919e0e
fix the key_exchange length in the ClientHello and ServerHello tests by
2018-08-17 17:00:00 +0700
e7a33a2
cherry-pick https://go-review.googlesource.com/c/go/+/129755 by
2018-08-17 18:33:23 +0700
81871bb
tls tris server: allow custom server keypairs (#128) by
2018-08-19 20:59:43 +0100
2bcf646
removes old draft version indicators (#127) by
2018-08-19 10:27:33 +0100
40eb693
remove support for generating draft 18-21 ServerHellos (#124) by
2018-08-19 01:51:42 +0700
69c276c
(tls_sidh)
test: check if tris and bssl can still connect without qr by
2018-08-16 12:50:31 +0100
2411297
adds SIDH to interoperability tests (tris-tris) by
2018-08-15 16:52:49 +0100
c02cc0e
Adds SIDH751-X448 support by
2018-08-03 15:01:53 +0100
44d58d9
Change IDs for hybrid key exchange by
2018-08-03 14:21:33 +0100
aedcb7c
Sets curve ID established during TLS 1.3 handshake by
2018-08-03 14:20:09 +0100
4386d89
Introduces crypto_catalog by
2018-08-02 19:33:11 +0100
736ba21
use NOBS_REPO from env if defined by
2018-08-02 19:13:44 +0100
35ba04f
Works by
2018-08-01 22:50:31 +0100
0f8234a
temporary: adds swap_tls target by
2018-08-01 12:00:36 +0100
772c98f
vendors nobs-crypto in go-crypto by
2018-08-01 11:45:59 +0100
f3d8808
SIDH: Init by
2018-07-25 00:32:45 +0100
49bb3bd
refactoring of the tris test client by
2018-08-15 17:50:01 +0100
242e89d
refactoring of the tris test client by
2018-08-15 17:50:01 +0100
d7f149b
refactoring of the tris test server by
2018-08-15 16:24:51 +0100
63ec8ff
refactoring of the tris test server by
2018-08-15 16:24:51 +0100
031d89f
refactors record encryption code by
2018-08-10 20:51:14 +0100
a21fd9c
(master)
refactors record encryption code (#122) by
2018-08-13 11:45:26 +0100
e81269b
Revert "Small refactoring of record encryption code" by
2018-08-10 20:50:12 +0100
1782162
Small refactoring of record encryption code by
2018-08-10 20:48:54 +0100
ad86d61
Let's use constant instead of hardcoding values (same is done in bssl) by
2018-08-10 18:45:48 +0100
8d3ff2b
server must NOT send version prior to TLS1.3 in supported_versions (#119) by
2018-08-09 22:16:01 +0100
91a6fce
Cleanup by
2018-08-10 09:08:43 +0100
a2fe2d9
DC draft-02, last minute change (#121) by
2018-08-10 00:34:10 -0700
e77e39e
server must NOT send version prior to TLS1.3 in supported_versions (#119) by
2018-08-09 22:16:01 +0100
d3e18f9
Minimal number of changes needed to udpate to draft-28 (#115) by
2018-08-09 20:47:50 +0100
0d6e456
Add DC test data for tls13draft28 and tls13rfc (#117) by
2018-08-09 11:47:38 -0700
174a68a
Update implementation of draft-ietf-tls-subcerts to draft 02 (#108) by
2018-08-09 11:24:40 -0700
905048a
Use binary interface to encode in big-endian by
2018-08-09 11:27:41 +0100
0caaafa
tls13: adds additional data to AEAD (#114) by
2018-08-08 16:11:42 +0100
77d1fbf
Don't use VersionTLS13DraftXX anywhere by
2018-08-07 18:52:06 +0100
c528000
Remove delegated credential minting from the API by
2018-07-20 09:47:24 -0700
1ea9624
Use static test data for testing delegated credentials by
2018-07-19 18:44:03 -0700
22d6deb
Merge pull request #95 from cjpatton/subcerts by
2018-07-03 10:09:26 -0700
84fe908
Implement the delegated_credential extension for TLS by
2018-07-03 09:57:54 -0700
963d587
Refactor the keyAgreement interface by
2018-06-21 09:34:19 -0700
3ff71dc
tests: enable client authentication in bogo by
2018-06-26 18:14:37 +0100
6e4abe2
TLSv1.3 draft-23: align tests by
2018-06-25 18:22:15 +0100
03138ec
TLSv1.3 -draft23: Implementation of signature_algorithms_cert by
2018-06-26 14:25:45 +0100
5bdf1af
TLS1.3 -draft23: Renumber key_share by
2018-05-22 00:21:12 +0100
67bc308
Update client SCT list during TLS 1.3 handshake, fixes #76 by
2018-06-23 18:58:58 -0700
b1d6c0a
Change function name verifyPeerCertificate->verifyPeerHandshakeSignature by
2018-06-26 18:19:23 +0100
91d6db5
CI: Fail build if code is wrongly formatted by
2018-06-26 09:32:47 +0100
b6af4dd
Code formatting for handshake_server_test.go by
2018-06-26 09:33:18 +0100
3f720fc
Code formatting for TRIS test client and server by
2018-06-26 08:02:26 +0100
f41d103
(HEAD -> tls13)
Draft 23: Renumber key_share by
2018-05-22 00:21:12 +0100
9557e92
Merge pull request #97 from henrydcase/fix_name by
2018-06-19 09:23:58 -0700
b9d61ed
Merge pull request #96 from henrydcase/fmt2 by
2018-06-19 09:23:46 -0700
51a4ff6
Fixes function name by
2018-06-19 11:24:08 +0100
4b1b463
Applies go fmt to all the code by
2018-06-19 11:17:19 +0100
81ee641
Lint 13.go by
2018-05-29 09:23:27 -0700
c20de2f
DOC: Update for building by
2018-05-24 10:18:27 +0100
160c4f5
Add additional instructions for building on Ubuntu by
2018-05-23 17:35:33 -0700
d485f39
Update _dev/Makefile so that the code builds on Ubuntu by
2018-05-23 17:34:39 -0700
b7765d1
(test) Interoperability tris with tris by
2018-03-29 12:03:14 +0100
e5c37bd
Testing rework by
2018-03-21 10:05:19 +0000
42d5f61
Set default MinVersion of protocol to TLSv12 by
2018-03-27 15:50:10 +0100
c1206cd
Enable TLS 1.3 (draft-22) as default by
2018-03-19 22:03:23 +0000
7b37595
Cleanup by
2018-02-27 18:53:21 +0000
01c3b76
(fix) Client MUST send certificate msg if requested by server by
2018-03-26 17:04:10 +0100
0d06e5c
Server side of client authentication by
2018-03-26 16:58:09 +0100
68c9776
(tests) Expose 6443 in docker for client auth by
2018-02-26 14:16:08 +0000
c4dfbb8
(tests) Removes 'set -u' from bash as some variables may be unset in the script by
2018-02-26 14:18:55 +0000