Cypherpunks.ru repositories - gostls13.git/commit

]> Cypherpunks.ru repositories - gostls13.git/commit

author	Filippo Valsorda <filippo@golang.org>
	Tue, 23 May 2023 23:55:45 +0000 (01:55 +0200)
committer	Gopher Robot <gobot@golang.org>
	Thu, 25 May 2023 00:13:30 +0000 (00:13 +0000)
commit	4406ed6d4ea90fe9489bd68c61d330a6d2378498
tree	77f99c7d04d82c4987e99be236a3a85eb0e5ff03	tree
parent	869da4a2a48555d71f0298caba6385c4d10590ba	commit \| diff

crypto/tls: implement Extended Master Secret

All OpenSSL tests now test operation with EMS. To test a handshake
*without* EMS we need to pass -Options=-ExtendedMasterSecret which is
only available in OpenSSL 3.1, which breaks a number of other tests.

Updates #43922

Change-Id: Ib9ac79a1d03fab6bfba5fe9cd66689cff661cda7
Reviewed-on: https://go-review.googlesource.com/c/go/+/497376
Run-TryBot: Filippo Valsorda <filippo@golang.org>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Roland Shoemaker <roland@golang.org>
Auto-Submit: Filippo Valsorda <filippo@golang.org>
Reviewed-by: Ian Lance Taylor <iant@google.com>
Reviewed-by: Damien Neil <dneil@google.com>

121 files changed:

api/except.txt		diff \| blob \| history
src/crypto/tls/common.go		diff \| blob \| history
src/crypto/tls/conn.go		diff \| blob \| history
src/crypto/tls/handshake_client.go		diff \| blob \| history
src/crypto/tls/handshake_client_tls13.go		diff \| blob \| history
src/crypto/tls/handshake_messages.go		diff \| blob \| history
src/crypto/tls/handshake_messages_test.go		diff \| blob \| history
src/crypto/tls/handshake_server.go		diff \| blob \| history
src/crypto/tls/prf.go		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv10-ClientCert-ECDSA-ECDSA		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv10-ClientCert-ECDSA-RSA		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv10-ClientCert-RSA-ECDSA		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv10-ClientCert-RSA-RSA		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv10-ECDHE-ECDSA-AES		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv10-ECDHE-RSA-AES		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv10-ExportKeyingMaterial		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv10-RSA-RC4		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv11-ECDHE-ECDSA-AES		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv11-ECDHE-RSA-AES		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv11-RSA-RC4		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-AES128-GCM-SHA256		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-AES128-SHA256		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-AES256-GCM-SHA384		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-ALPN		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-ClientCert-ECDSA-ECDSA		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-ClientCert-ECDSA-RSA		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-ClientCert-Ed25519		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-ClientCert-RSA-AES256-GCM-SHA384		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-ClientCert-RSA-ECDSA		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-ClientCert-RSA-RSA		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-ClientCert-RSA-RSAPKCS1v15		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-ClientCert-RSA-RSAPSS		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-ECDHE-ECDSA-AES		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-ECDHE-ECDSA-AES-GCM		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-ECDHE-ECDSA-AES128-SHA256		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-ECDHE-ECDSA-AES256-GCM-SHA384		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-ECDHE-ECDSA-CHACHA20-POLY1305		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-ECDHE-RSA-AES		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-ECDHE-RSA-AES128-SHA256		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-ECDHE-RSA-CHACHA20-POLY1305		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-Ed25519		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-ExportKeyingMaterial		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-P256-ECDHE		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-RSA-RC4		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-RenegotiateOnce		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-RenegotiateTwice		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-RenegotiateTwiceRejected		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-RenegotiationRejected		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-SCT		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv12-X25519-ECDHE		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv13-AES128-SHA256		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv13-AES256-SHA384		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv13-ALPN		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv13-CHACHA20-SHA256		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv13-ClientCert-ECDSA-RSA		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv13-ClientCert-Ed25519		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv13-ClientCert-RSA-ECDSA		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv13-ClientCert-RSA-RSAPSS		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv13-ECDSA		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv13-Ed25519		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv13-ExportKeyingMaterial		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv13-HelloRetryRequest		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv13-KeyUpdate		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv13-P256-ECDHE		diff \| blob \| history
src/crypto/tls/testdata/Client-TLSv13-X25519-ECDHE		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv10-ECDHE-ECDSA-AES		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv10-ExportKeyingMaterial		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv10-RSA-3DES		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv10-RSA-AES		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv10-RSA-RC4		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv11-RSA-RC4		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-ALPN		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-ALPN-Fallback		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-ALPN-NotConfigured		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-ClientAuthRequestedAndECDSAGiven		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-ClientAuthRequestedAndEd25519Given		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-ClientAuthRequestedAndGiven		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-ClientAuthRequestedAndPKCS1v15Given		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-ClientAuthRequestedNotGiven		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-ECDHE-ECDSA-AES		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-Ed25519		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-ExportKeyingMaterial		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-IssueTicket		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-IssueTicketPreDisable		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-P256		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-RSA-3DES		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-RSA-AES		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-RSA-AES-GCM		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-RSA-AES256-GCM-SHA384		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-RSA-RC4		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-RSA-RSAPKCS1v15		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-RSA-RSAPSS		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-Resume		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-ResumeDisabled		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-SNI		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-SNI-GetCertificate		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-SNI-GetCertificateNotFound		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-X25519		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-AES128-SHA256		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-AES256-SHA384		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-ALPN		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-ALPN-Fallback		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-ALPN-NotConfigured		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-CHACHA20-SHA256		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-ClientAuthRequestedAndECDSAGiven		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-ClientAuthRequestedAndEd25519Given		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-ClientAuthRequestedAndGiven		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-ClientAuthRequestedNotGiven		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-ECDHE-ECDSA-AES		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-Ed25519		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-ExportKeyingMaterial		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-HelloRetryRequest		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-IssueTicket		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-IssueTicketPreDisable		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-P256		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-RSA-RSAPSS		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-Resume		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-Resume-HelloRetryRequest		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-X25519		diff \| blob \| history
src/crypto/tls/ticket.go		diff \| blob \| history
src/crypto/tls/tls_test.go		diff \| blob \| history

Go GOST TLS 1.3

RSS Atom