Joseph Birr-Pixton
3934f255f9
Add license info
2016-06-19 17:42:57 +01:00
Joseph Birr-Pixton
f4d0998624
Fix warning
2016-06-18 09:42:12 +01:00
Joseph Birr-Pixton
5aadeb0e87
Add MTU control, and test fragmentation paths
2016-06-17 23:14:43 +01:00
Joseph Birr-Pixton
adc43ca1fa
Use counter as GCM explicit nonce
2016-06-11 13:22:15 +01:00
Joseph Birr-Pixton
8ec78d79c7
add license todo, fix EtM -> MtE
2016-06-08 22:53:26 +01:00
Joseph Birr-Pixton
b467eba6a0
Don't require command output to be valid utf8
2016-06-08 02:12:20 +01:00
Joseph Birr-Pixton
75de9bb994
Resumption exists
2016-06-08 01:49:03 +01:00
Joseph Birr-Pixton
e974b75935
don't fail test if openssl doesn't support -alpn
2016-06-08 01:48:13 +01:00
Joseph Birr-Pixton
b6f5af0a3a
travis: see if we can get a recent openssl
2016-06-08 01:32:57 +01:00
Joseph Birr-Pixton
c40b100de6
Track upstream movement of Input.
2016-06-08 01:26:15 +01:00
Joseph Birr-Pixton
b79cfc2409
Now we have logging, disable non-log output
2016-06-08 01:05:54 +01:00
Joseph Birr-Pixton
32858d12c2
Fix whitespace
2016-06-08 01:00:51 +01:00
Joseph Birr-Pixton
fcdbd35cd1
CA cert loading logs failing certs
2016-06-08 01:00:20 +01:00
Joseph Birr-Pixton
5f363a735b
Implement resumption
...
- client-side StoresSessions trait which implements
an opaque bytestring->bytestring map.
- persistence message layer which reuses the existing types to
define a key and value format for saving sessions.
- second handshake route if the server agrees to resume.
- add 'features' tests, to check specific features work at the
integration level.
2016-06-08 00:59:14 +01:00
Joseph Birr-Pixton
17e1670593
Implement ALPN
...
Testing this is relatively annoying because OpenSSL
don't do error handling as specified by the RFC,
and because the RFC contradicts itself. Quality
all round.
2016-06-05 21:18:46 +01:00
Joseph Birr-Pixton
ffd183c202
Add regression test suite
2016-06-05 19:23:41 +01:00
Joseph Birr-Pixton
23e9da1dc6
Test rsa and ecdsa suites, and topsites
...
We can't handshake with netflix. Yikes!
2016-06-05 00:15:05 +01:00
Joseph Birr-Pixton
810e16cb9d
quieten openssl again
2016-06-03 02:39:05 +01:00
Joseph Birr-Pixton
f3e1c5a509
Check in test keys
2016-06-03 02:36:00 +01:00
Joseph Birr-Pixton
cfcb19969b
have openssl inherit fds for debug
2016-06-03 02:31:46 +01:00
Joseph Birr-Pixton
82bdabbb0a
testing updates
2016-06-03 02:28:28 +01:00
Joseph Birr-Pixton
078802cdd7
rename s_client to tlsclient
2016-06-01 19:44:36 +01:00
Joseph Birr-Pixton
bb001846f7
fix ciphersuite order
2016-06-01 01:43:08 +01:00
Joseph Birr-Pixton
66130baa41
Add badssl online tests
2016-06-01 01:22:13 +01:00
Joseph Birr-Pixton
5f165fb5b1
Add proper argument parsing to s_client
2016-06-01 00:15:45 +01:00
Joseph Birr-Pixton
940cd7dd45
update readme
2016-05-31 21:56:41 +01:00
Joseph Birr-Pixton
2f586e663e
No -ize, please, we're British :)
2016-05-30 23:00:58 +01:00
ctz
d2a1c8d75d
Merge pull request #1 from frewsxcv/patch-1
...
Fix typo in README.
2016-05-30 23:00:40 +01:00
Corey Farwell
f6b2701408
Fix typo in README.
2016-05-30 17:48:06 -04:00
Joseph Birr-Pixton
31ba585438
Update readme
2016-05-30 21:34:05 +01:00
Joseph Birr-Pixton
40248a173f
remove unused imports
2016-05-30 20:44:21 +01:00
Joseph Birr-Pixton
29b0389f34
Point at webpki fork for cert-based sig validation
2016-05-30 20:39:06 +01:00
Joseph Birr-Pixton
9af16867bb
Use log crate to note alerts
2016-05-30 20:31:50 +01:00
Joseph Birr-Pixton
14d27b7b2c
Add travis.yml
2016-05-30 20:14:38 +01:00
Joseph Birr-Pixton
c207843eb4
Reconstitute handshake messages
...
also delete quite a bit of printf tracing
2016-05-30 19:56:00 +01:00
Joseph Birr-Pixton
3b02040431
s_client: connection: close & handle read errors
2016-05-30 19:55:15 +01:00
Joseph Birr-Pixton
3b501ed6aa
Support curve25519 kx (works against google.com)
2016-05-30 13:17:59 +01:00
Joseph Birr-Pixton
1aa22a1476
Fix assorted warnings
2016-05-30 10:31:45 +01:00
Joseph Birr-Pixton
a7204bfd52
add contents of PEM file to RootCertStore
2016-05-30 10:12:31 +01:00
Joseph Birr-Pixton
8362ae2518
s_client connects to given hostname
2016-05-30 10:11:22 +01:00
Joseph Birr-Pixton
2925f07636
Handle alerts at any point
2016-05-30 10:10:46 +01:00
Joseph Birr-Pixton
96714fcc69
Thing for extracting DER from PEM files
2016-05-30 09:54:20 +01:00
Joseph Birr-Pixton
88d2cd9af6
Add ECDHE-ECDSA suites
2016-05-29 18:00:24 +01:00
Joseph Birr-Pixton
ed0ec5441f
we can pass application data :)
2016-05-27 21:47:13 +01:00
Joseph Birr-Pixton
5d9ae0287d
Fix warnings
2016-05-27 20:02:46 +01:00
Joseph Birr-Pixton
4d165eb06e
Enough to fully complete client handshake
2016-05-27 16:41:28 +01:00
Joseph Birr-Pixton
7167808b4b
don't keep server/client randoms in two places
2016-05-24 22:32:51 +01:00
Joseph Birr-Pixton
2db1ab3e10
make prf write into output slice
2016-05-24 21:03:39 +01:00
Joseph Birr-Pixton
c3dea1d0d0
Fix ClientKeyExchange encoding
...
we want an ECPoint here, which is effectively a PayloadU8
2016-05-23 23:19:04 +01:00
Joseph Birr-Pixton
29b2140c77
bring in ring/webpki here
2016-05-23 23:17:51 +01:00