aboutsummaryrefslogtreecommitdiff
path: root/src/crypto/tls/testdata/Client-TLSv10-ClientCert-RSA-ECDSA
diff options
context:
space:
mode:
authorFilippo Valsorda <filippo@golang.org>2025-03-15 15:12:39 +0100
committerGopher Robot <gobot@golang.org>2025-05-21 15:09:29 -0700
commit59211acb5dbde14647e025eb7379675debcf3930 (patch)
treedb98ad31b32d59f381e701cadda32590233d096c /src/crypto/tls/testdata/Client-TLSv10-ClientCert-RSA-ECDSA
parent4158ca8d7c521aee5cc48f285f559e74845e973c (diff)
downloadgo-59211acb5dbde14647e025eb7379675debcf3930.tar.xz
crypto/tls: disable SHA-1 signature algorithms in TLS 1.2
This implements RFC 9155 by removing support for SHA-1 algorithms: - we don't advertise them in ClientHello and CertificateRequest (where supportedSignatureAlgorithms is used directly) - we don't select them in our ServerKeyExchange and CertificateVerify (where supportedSignatureAlgorithms filters signatureSchemesForCertificate) - we reject them in the peer's ServerKeyExchange and CertificateVerify (where we check against the algorithms we advertised in ClientHello and CertificateRequest) Fixes #72883 Change-Id: I6a6a4656e2aafd2c38cdd32090d3d8a9a8047818 Reviewed-on: https://go-review.googlesource.com/c/go/+/658216 LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Auto-Submit: Filippo Valsorda <filippo@golang.org> Reviewed-by: David Chase <drchase@google.com> Reviewed-by: Roland Shoemaker <roland@golang.org> Reviewed-by: Daniel McCarney <daniel@binaryparadox.net>
Diffstat (limited to 'src/crypto/tls/testdata/Client-TLSv10-ClientCert-RSA-ECDSA')
-rw-r--r--src/crypto/tls/testdata/Client-TLSv10-ClientCert-RSA-ECDSA105
1 files changed, 52 insertions, 53 deletions
diff --git a/src/crypto/tls/testdata/Client-TLSv10-ClientCert-RSA-ECDSA b/src/crypto/tls/testdata/Client-TLSv10-ClientCert-RSA-ECDSA
index 8f1ff3f1d3..8ce1bad190 100644
--- a/src/crypto/tls/testdata/Client-TLSv10-ClientCert-RSA-ECDSA
+++ b/src/crypto/tls/testdata/Client-TLSv10-ClientCert-RSA-ECDSA
@@ -1,5 +1,5 @@
>>> Flow 1 (client to server)
-00000000 16 03 01 01 1c 01 00 01 18 03 03 00 00 00 00 00 |................|
+00000000 16 03 01 01 18 01 00 01 14 03 03 00 00 00 00 00 |................|
00000010 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 |................|
00000020 00 00 00 00 00 00 00 00 00 00 00 20 00 00 00 00 |........... ....|
00000030 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 |................|
@@ -7,23 +7,22 @@
00000050 cc a8 c0 2b c0 2f c0 2c c0 30 c0 09 c0 13 c0 0a |...+./.,.0......|
00000060 c0 14 00 9c 00 9d 00 2f 00 35 c0 12 00 0a c0 23 |......./.5.....#|
00000070 c0 27 00 3c c0 07 c0 11 00 05 13 03 13 01 13 02 |.'.<............|
-00000080 01 00 00 9d 00 0b 00 02 01 00 ff 01 00 01 00 00 |................|
+00000080 01 00 00 99 00 0b 00 02 01 00 ff 01 00 01 00 00 |................|
00000090 17 00 00 00 12 00 00 00 05 00 05 01 00 00 00 00 |................|
000000a0 00 0a 00 0a 00 08 00 1d 00 17 00 18 00 19 00 0d |................|
-000000b0 00 1a 00 18 08 04 04 03 08 07 08 05 08 06 04 01 |................|
-000000c0 05 01 06 01 05 03 06 03 02 01 02 03 00 32 00 1a |.............2..|
-000000d0 00 18 08 04 04 03 08 07 08 05 08 06 04 01 05 01 |................|
-000000e0 06 01 05 03 06 03 02 01 02 03 00 2b 00 09 08 03 |...........+....|
-000000f0 04 03 03 03 02 03 01 00 33 00 26 00 24 00 1d 00 |........3.&.$...|
-00000100 20 2f e5 7d a3 47 cd 62 43 15 28 da ac 5f bb 29 | /.}.G.bC.(.._.)|
-00000110 07 30 ff f6 84 af c4 cf c2 ed 90 99 5f 58 cb 3b |.0.........._X.;|
-00000120 74 |t|
+000000b0 00 16 00 14 08 04 04 03 08 07 08 05 08 06 04 01 |................|
+000000c0 05 01 06 01 05 03 06 03 00 32 00 1a 00 18 08 04 |.........2......|
+000000d0 04 03 08 07 08 05 08 06 04 01 05 01 06 01 05 03 |................|
+000000e0 06 03 02 01 02 03 00 2b 00 09 08 03 04 03 03 03 |.......+........|
+000000f0 02 03 01 00 33 00 26 00 24 00 1d 00 20 2f e5 7d |....3.&.$... /.}|
+00000100 a3 47 cd 62 43 15 28 da ac 5f bb 29 07 30 ff f6 |.G.bC.(.._.).0..|
+00000110 84 af c4 cf c2 ed 90 99 5f 58 cb 3b 74 |........_X.;t|
>>> Flow 2 (server to client)
-00000000 16 03 01 00 5d 02 00 00 59 03 01 79 7e 8c 72 46 |....]...Y..y~.rF|
-00000010 e6 1a d5 db 83 07 37 34 cf f5 84 39 87 af 5f 23 |......74...9.._#|
-00000020 47 f9 e2 9d c0 76 e8 6a 7e 88 9c 20 a3 c7 5b 94 |G....v.j~.. ..[.|
-00000030 8f 63 f2 ac 89 b5 ed ee e0 8f 87 be 2a 3e f1 6c |.c..........*>.l|
-00000040 2f ca cc d0 ee 22 4c a9 ed 03 5e 18 c0 09 00 00 |/...."L...^.....|
+00000000 16 03 01 00 5d 02 00 00 59 03 01 ef c9 5c 4d 29 |....]...Y....\M)|
+00000010 07 24 2a 41 08 94 39 cc d3 fb 92 88 1c ff 64 6b |.$*A..9.......dk|
+00000020 0a 14 41 89 c6 5d 9b 25 7e a7 04 20 a0 aa ad 46 |..A..].%~.. ...F|
+00000030 14 01 d2 dd 37 44 05 4b 1d 9f ea e5 98 29 1e 36 |....7D.K.....).6|
+00000040 09 e2 ab 90 93 ee c1 99 7d 17 77 9b c0 09 00 00 |........}.w.....|
00000050 11 ff 01 00 01 00 00 0b 00 04 03 00 01 02 00 17 |................|
00000060 00 00 16 03 01 02 0e 0b 00 02 0a 00 02 07 00 02 |................|
00000070 04 30 82 02 00 30 82 01 62 02 09 00 b8 bf 2d 47 |.0...0..b.....-G|
@@ -58,20 +57,20 @@
00000240 8c 25 c1 33 13 83 0d 94 06 bb d4 37 7a f6 ec 7a |.%.3.......7z..z|
00000250 c9 86 2e dd d7 11 69 7f 85 7c 56 de fb 31 78 2b |......i..|V..1x+|
00000260 e4 c7 78 0d ae cb be 9e 4e 36 24 31 7b 6a 0f 39 |..x.....N6$1{j.9|
-00000270 95 12 07 8f 2a 16 03 01 00 b3 0c 00 00 af 03 00 |....*...........|
-00000280 1d 20 37 50 ab 46 a8 24 be 20 fd 71 c2 8d 91 a0 |. 7P.F.$. .q....|
-00000290 88 88 0b 18 f5 ec 43 99 cb 63 45 9c ad b4 27 20 |......C..cE...' |
-000002a0 0d 11 00 89 30 81 86 02 41 35 1d fa 6c 1b a1 b4 |....0...A5..l...|
-000002b0 bc 5f 4d a6 77 64 8d e1 92 94 97 53 c5 01 c2 bb |._M.wd.....S....|
-000002c0 5c 83 f0 c2 6d 6d d1 1f ff 7a 00 06 4a a0 de c0 |\...mm...z..J...|
-000002d0 aa a1 9f 6d f6 62 20 d0 08 1e 5b bc 1d af 03 45 |...m.b ...[....E|
-000002e0 d5 70 8b ee d8 a8 ff 3e 2b 7d 02 41 28 ff 3e 45 |.p.....>+}.A(.>E|
-000002f0 7f ec c1 87 df dd 14 8b 64 08 84 02 2b de ff 14 |........d...+...|
-00000300 b9 6f 54 72 b1 a2 99 47 55 2d 76 91 77 ba 4f db |.oTr...GU-v.w.O.|
-00000310 a3 4c ab 21 62 48 3a 8d f7 32 57 12 dc 6c a9 51 |.L.!bH:..2W..l.Q|
-00000320 77 cc b3 30 1f e9 41 bf 0b b3 4b a5 e4 16 03 01 |w..0..A...K.....|
-00000330 00 0a 0d 00 00 06 03 01 02 40 00 00 16 03 01 00 |.........@......|
-00000340 04 0e 00 00 00 |.....|
+00000270 95 12 07 8f 2a 16 03 01 00 b4 0c 00 00 b0 03 00 |....*...........|
+00000280 1d 20 a4 4e 43 df 00 5c c7 1c e8 d4 8e 9b cf b0 |. .NC..\........|
+00000290 36 85 64 7c d7 69 95 c0 b4 6f d8 0b 45 b8 a4 34 |6.d|.i...o..E..4|
+000002a0 1a 18 00 8a 30 81 87 02 42 01 d0 4a 3f 65 9d 46 |....0...B..J?e.F|
+000002b0 20 80 34 28 12 93 56 6e dc e4 0e 91 0b 45 4b 83 | .4(..Vn.....EK.|
+000002c0 c5 e9 83 2c 41 d6 dc 49 15 15 e6 65 9f 18 ba a6 |...,A..I...e....|
+000002d0 20 a6 de c7 20 7e 09 71 e6 59 86 9e aa 32 be 43 | ... ~.q.Y...2.C|
+000002e0 b7 c3 27 98 ba 5b 49 9b 1d b9 67 02 41 4e 36 0e |..'..[I...g.AN6.|
+000002f0 6d 29 c8 7d 0b d9 6f 06 92 ca 0b b9 33 7e 11 58 |m).}..o.....3~.X|
+00000300 2f cc 06 ae ad 57 80 f4 38 a1 8a e3 6a ef 37 86 |/....W..8...j.7.|
+00000310 58 1a 59 f9 4a 9a 64 89 5b 7c 8a 7a c5 78 dd b5 |X.Y.J.d.[|.z.x..|
+00000320 6c 96 b8 23 ff fc 88 20 59 0b e9 74 99 b9 16 03 |l..#... Y..t....|
+00000330 01 00 0a 0d 00 00 06 03 01 02 40 00 00 16 03 01 |..........@.....|
+00000340 00 04 0e 00 00 00 |......|
>>> Flow 3 (client to server)
00000000 16 03 01 01 fd 0b 00 01 f9 00 01 f6 00 01 f3 30 |...............0|
00000010 82 01 ef 30 82 01 58 a0 03 02 01 02 02 10 5c 19 |...0..X.......\.|
@@ -108,29 +107,29 @@
00000200 e5 35 16 03 01 00 25 10 00 00 21 20 2f e5 7d a3 |.5....%...! /.}.|
00000210 47 cd 62 43 15 28 da ac 5f bb 29 07 30 ff f6 84 |G.bC.(.._.).0...|
00000220 af c4 cf c2 ed 90 99 5f 58 cb 3b 74 16 03 01 00 |......._X.;t....|
-00000230 86 0f 00 00 82 00 80 22 5d 5b 59 98 4a a8 53 6b |......."][Y.J.Sk|
-00000240 78 1d 8f 51 a1 23 6a 87 fb 9d 79 5c 63 9d dc 61 |x..Q.#j...y\c..a|
-00000250 13 9f a1 36 f9 fa ec a0 6f 47 11 d6 7c 8f a4 81 |...6....oG..|...|
-00000260 fb f1 31 59 11 6c 8e 83 1c 56 3b 03 b4 a9 e0 09 |..1Y.l...V;.....|
-00000270 aa 04 c4 d1 7a c5 28 03 ae ce fe a0 95 1b 8c 5c |....z.(........\|
-00000280 65 32 ca f0 d5 43 fc 9b e0 8e ca 80 f3 e0 5f 8d |e2...C........_.|
-00000290 6d 91 ff f2 4b 7b a7 38 64 dd e8 a8 d8 1f 95 31 |m...K{.8d......1|
-000002a0 04 a9 6c 72 45 9c 0d a3 80 60 8e 20 8a af f7 ae |..lrE....`. ....|
-000002b0 87 10 26 51 0e a5 e8 14 03 01 00 01 01 16 03 01 |..&Q............|
-000002c0 00 30 46 9b a2 75 16 a9 c2 ac d7 47 ca 41 48 bd |.0F..u.....G.AH.|
-000002d0 2c 3d 56 e3 a4 21 a6 c0 d8 71 6d fb 4a c6 9a a1 |,=V..!...qm.J...|
-000002e0 88 db a5 70 58 e0 e3 5a c7 62 d1 d4 0f 4b c6 55 |...pX..Z.b...K.U|
-000002f0 0c aa |..|
+00000230 86 0f 00 00 82 00 80 a4 68 2d 1f 8a 97 43 76 aa |........h-...Cv.|
+00000240 f9 24 95 20 62 13 c0 a3 45 c6 18 1c a3 34 70 02 |.$. b...E....4p.|
+00000250 ff f5 01 4e ba e2 20 1c f9 06 a6 67 92 d9 e6 9d |...N.. ....g....|
+00000260 a3 49 e0 75 3e 11 00 74 52 b1 36 58 4b 1e 54 83 |.I.u>..tR.6XK.T.|
+00000270 e0 9a 48 4d df 2c ab fd cd 5e 7a cf c9 b8 32 08 |..HM.,...^z...2.|
+00000280 74 e6 ae 75 20 f4 41 3a 7c a9 a3 19 38 a0 8d 05 |t..u .A:|...8...|
+00000290 0a e9 3e 50 6c f6 f8 a3 89 a9 55 ea dc 3f be b1 |..>Pl.....U..?..|
+000002a0 0a 92 83 cc f0 9b c9 e1 49 13 db 64 be 55 46 b5 |........I..d.UF.|
+000002b0 12 b1 0b 88 32 e3 f1 14 03 01 00 01 01 16 03 01 |....2...........|
+000002c0 00 30 81 77 0f 6c 7a bc a8 d2 41 f9 8b a7 da 96 |.0.w.lz...A.....|
+000002d0 29 f1 2f b1 31 f3 57 03 09 21 5c fa dc f7 5c f6 |)./.1.W..!\...\.|
+000002e0 7f a8 24 08 30 70 bb 34 16 22 f8 c6 b2 4d a7 16 |..$.0p.4."...M..|
+000002f0 68 61 |ha|
>>> Flow 4 (server to client)
-00000000 14 03 01 00 01 01 16 03 01 00 30 6b ab 63 56 79 |..........0k.cVy|
-00000010 32 ef f9 df c5 36 29 50 f5 1d 55 c2 4b 84 f5 68 |2....6)P..U.K..h|
-00000020 b0 d8 7d 7d 80 24 e2 5d b9 0f 66 25 4e 50 21 08 |..}}.$.]..f%NP!.|
-00000030 a3 15 de 0e 04 ef 86 d6 04 2e 9b |...........|
+00000000 14 03 01 00 01 01 16 03 01 00 30 71 d2 ee cd f8 |..........0q....|
+00000010 c5 fe b4 96 d5 02 ee cb f7 f8 93 34 f2 8a ed 71 |...........4...q|
+00000020 9a b7 1f 01 9d fb 6c 3f ee 22 bb 5c b0 8c 08 f5 |......l?.".\....|
+00000030 bf 1e d3 1c 12 ec 7b 86 05 bd e5 |......{....|
>>> Flow 5 (client to server)
-00000000 17 03 01 00 20 86 3b 02 a4 5c 33 eb 57 cc 42 71 |.... .;..\3.W.Bq|
-00000010 32 81 56 00 4a b0 3b 7e ed cd ab d9 76 2b 12 97 |2.V.J.;~....v+..|
-00000020 d6 be 22 cc 02 17 03 01 00 20 e7 53 2a b7 18 a7 |.."...... .S*...|
-00000030 6f 65 ef 20 9d 38 be 3c f0 6c 4e 5d e9 cc ac 8c |oe. .8.<.lN]....|
-00000040 57 7d 61 c6 23 d8 bb d4 97 15 15 03 01 00 20 c9 |W}a.#......... .|
-00000050 c1 b2 03 2b b0 a4 cb 4b 65 31 46 c4 6c e4 12 70 |...+...Ke1F.l..p|
-00000060 0e eb e8 a0 d2 1c ca 2d 4f 87 f0 16 e9 23 b0 |.......-O....#.|
+00000000 17 03 01 00 20 8a 57 b3 89 76 41 f0 b3 51 da f4 |.... .W..vA..Q..|
+00000010 e7 6a f8 46 75 77 4d 8b 67 41 f9 f9 eb a0 cd 12 |.j.FuwM.gA......|
+00000020 78 08 12 d1 7b 17 03 01 00 20 9d 44 6a dd 48 ad |x...{.... .Dj.H.|
+00000030 0a d9 3f 80 da b1 3d b3 50 be 40 c1 85 b5 bb 59 |..?...=.P.@....Y|
+00000040 e8 b9 2a 9f f5 2e 98 d3 2b c1 15 03 01 00 20 bd |..*.....+..... .|
+00000050 69 41 45 bb 53 de f8 b7 bf a5 87 12 02 32 1a 05 |iAE.S........2..|
+00000060 09 94 40 a5 64 b3 31 7d 0d dc 01 ff 25 ca 31 |..@.d.1}....%.1|
generated by cgit v1.3 (git 2.53.0) at 2026-04-15 18:34:25 +0000