tls-tris

Historik

Filippo Valsorda 64bffb76ca crypto/tls: advertise support for SHA-512 signatures in 1.2 This is the equivalent change to 1c105980 but for SHA-512. SHA-512 certificates are already supported by default since b53bb2ca, but some servers will refuse connections if the algorithm is not advertised in the overloaded signatureAndHash extension (see 09b238f1). This required adding support for SHA-512 signatures on CertificateVerify and ServerKeyExchange messages, because of said overloading. Some testdata/Client-TLSv1{0,1} files changed because they send a 1.2 ClientHello even if the server picks a lower version. Closes #22422 Change-Id: I16282d03a3040260d203711ec21e6b20a0e1e105 Reviewed-on: https://go-review.googlesource.com/74950 Run-TryBot: Filippo Valsorda <hi@filippo.io> TryBot-Result: Gobot Gobot <gobot@golang.org> Reviewed-by: Adam Langley <agl@golang.org>		7 år sedan
..
Client-TLSv10-ClientCert-ECDSA-ECDSA	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv10-ClientCert-ECDSA-RSA	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv10-ClientCert-RSA-ECDSA	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv10-ClientCert-RSA-RSA	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv10-ECDHE-ECDSA-AES	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv10-ECDHE-RSA-AES	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv10-RSA-RC4	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv11-ECDHE-ECDSA-AES	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv11-ECDHE-RSA-AES	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv11-RSA-RC4	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv12-AES128-GCM-SHA256	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv12-AES128-SHA256	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv12-AES256-GCM-SHA384	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv12-ALPN	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv12-ALPN-NoMatch	crypto/tls: support AES-128-CBC cipher suites with SHA-256.	8 år sedan
Client-TLSv12-ClientCert-ECDSA-ECDSA	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv12-ClientCert-ECDSA-RSA	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv12-ClientCert-RSA-AES256-GCM-SHA384	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv12-ClientCert-RSA-ECDSA	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv12-ClientCert-RSA-RSA	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv12-ECDHE-ECDSA-AES	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv12-ECDHE-ECDSA-AES-GCM	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv12-ECDHE-ECDSA-AES128-SHA256	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv12-ECDHE-ECDSA-AES256-GCM-SHA384	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv12-ECDHE-ECDSA-CHACHA20-POLY1305	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv12-ECDHE-RSA-AES	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv12-ECDHE-RSA-AES128-SHA256	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv12-ECDHE-RSA-CHACHA20-POLY1305	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv12-RSA-RC4	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv12-RenegotiateOnce	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv12-RenegotiateTwice	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv12-RenegotiateTwiceRejected	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv12-RenegotiationRejected	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv12-SCT	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Client-TLSv12-X25519-ECDHE-RSA-AES-GCM	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Server-SSLv3-RSA-3DES	crypto/tls: enable ChaCha20-Poly1305 cipher suites by default.	8 år sedan
Server-SSLv3-RSA-AES	crypto/tls: enable ChaCha20-Poly1305 cipher suites by default.	8 år sedan
Server-SSLv3-RSA-RC4	crypto/tls: enable ChaCha20-Poly1305 cipher suites by default.	8 år sedan
Server-TLSv10-ECDHE-ECDSA-AES	crypto/tls: enable ChaCha20-Poly1305 cipher suites by default.	8 år sedan
Server-TLSv10-RSA-3DES	crypto/tls: enable ChaCha20-Poly1305 cipher suites by default.	8 år sedan
Server-TLSv10-RSA-AES	crypto/tls: enable ChaCha20-Poly1305 cipher suites by default.	8 år sedan
Server-TLSv10-RSA-RC4	crypto/tls: enable ChaCha20-Poly1305 cipher suites by default.	8 år sedan
Server-TLSv11-FallbackSCSV	crypto/tls: enable ChaCha20-Poly1305 cipher suites by default.	8 år sedan
Server-TLSv11-RSA-RC4	crypto/tls: enable ChaCha20-Poly1305 cipher suites by default.	8 år sedan
Server-TLSv12-ALPN	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Server-TLSv12-ALPN-NoMatch	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Server-TLSv12-CipherSuiteCertPreferenceECDSA	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Server-TLSv12-CipherSuiteCertPreferenceRSA	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Server-TLSv12-ClientAuthRequestedAndECDSAGiven	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Server-TLSv12-ClientAuthRequestedAndGiven	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Server-TLSv12-ClientAuthRequestedNotGiven	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Server-TLSv12-ECDHE-ECDSA-AES	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Server-TLSv12-IssueTicket	crypto/tls: enable ChaCha20-Poly1305 cipher suites by default.	8 år sedan
Server-TLSv12-IssueTicketPreDisable	crypto/tls: enable ChaCha20-Poly1305 cipher suites by default.	8 år sedan
Server-TLSv12-RSA-3DES	crypto/tls: enable ChaCha20-Poly1305 cipher suites by default.	8 år sedan
Server-TLSv12-RSA-AES	crypto/tls: enable ChaCha20-Poly1305 cipher suites by default.	8 år sedan
Server-TLSv12-RSA-AES-GCM	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Server-TLSv12-RSA-AES256-GCM-SHA384	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan
Server-TLSv12-RSA-RC4	crypto/tls: enable ChaCha20-Poly1305 cipher suites by default.	8 år sedan
Server-TLSv12-Resume	crypto/tls: enable ChaCha20-Poly1305 cipher suites by default.	8 år sedan
Server-TLSv12-ResumeDisabled	crypto/tls: enable ChaCha20-Poly1305 cipher suites by default.	8 år sedan
Server-TLSv12-SNI	crypto/tls: enable ChaCha20-Poly1305 cipher suites by default.	8 år sedan
Server-TLSv12-SNI-GetCertificate	crypto/tls: enable ChaCha20-Poly1305 cipher suites by default.	8 år sedan
Server-TLSv12-SNI-GetCertificateNotFound	crypto/tls: enable ChaCha20-Poly1305 cipher suites by default.	8 år sedan
Server-TLSv12-X25519-ECDHE-RSA-AES-GCM	crypto/tls: advertise support for SHA-512 signatures in 1.2	7 år sedan