aboutsummaryrefslogtreecommitdiff
path: root/src/crypto/tls/testdata/Client-TLSv12-ClientCert-RSA-ECDSA
diff options
context:
space:
mode:
authorFilippo Valsorda <filippo@golang.org>2025-03-15 15:12:39 +0100
committerGopher Robot <gobot@golang.org>2025-05-21 15:09:29 -0700
commit59211acb5dbde14647e025eb7379675debcf3930 (patch)
treedb98ad31b32d59f381e701cadda32590233d096c /src/crypto/tls/testdata/Client-TLSv12-ClientCert-RSA-ECDSA
parent4158ca8d7c521aee5cc48f285f559e74845e973c (diff)
downloadgo-59211acb5dbde14647e025eb7379675debcf3930.tar.xz
crypto/tls: disable SHA-1 signature algorithms in TLS 1.2
This implements RFC 9155 by removing support for SHA-1 algorithms: - we don't advertise them in ClientHello and CertificateRequest (where supportedSignatureAlgorithms is used directly) - we don't select them in our ServerKeyExchange and CertificateVerify (where supportedSignatureAlgorithms filters signatureSchemesForCertificate) - we reject them in the peer's ServerKeyExchange and CertificateVerify (where we check against the algorithms we advertised in ClientHello and CertificateRequest) Fixes #72883 Change-Id: I6a6a4656e2aafd2c38cdd32090d3d8a9a8047818 Reviewed-on: https://go-review.googlesource.com/c/go/+/658216 LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Auto-Submit: Filippo Valsorda <filippo@golang.org> Reviewed-by: David Chase <drchase@google.com> Reviewed-by: Roland Shoemaker <roland@golang.org> Reviewed-by: Daniel McCarney <daniel@binaryparadox.net>
Diffstat (limited to 'src/crypto/tls/testdata/Client-TLSv12-ClientCert-RSA-ECDSA')
-rw-r--r--src/crypto/tls/testdata/Client-TLSv12-ClientCert-RSA-ECDSA111
1 files changed, 55 insertions, 56 deletions
diff --git a/src/crypto/tls/testdata/Client-TLSv12-ClientCert-RSA-ECDSA b/src/crypto/tls/testdata/Client-TLSv12-ClientCert-RSA-ECDSA
index 689be1097b..25120914e8 100644
--- a/src/crypto/tls/testdata/Client-TLSv12-ClientCert-RSA-ECDSA
+++ b/src/crypto/tls/testdata/Client-TLSv12-ClientCert-RSA-ECDSA
@@ -1,5 +1,5 @@
>>> Flow 1 (client to server)
-00000000 16 03 01 01 1c 01 00 01 18 03 03 00 00 00 00 00 |................|
+00000000 16 03 01 01 18 01 00 01 14 03 03 00 00 00 00 00 |................|
00000010 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 |................|
00000020 00 00 00 00 00 00 00 00 00 00 00 20 00 00 00 00 |........... ....|
00000030 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 |................|
@@ -7,23 +7,22 @@
00000050 cc a8 c0 2b c0 2f c0 2c c0 30 c0 09 c0 13 c0 0a |...+./.,.0......|
00000060 c0 14 00 9c 00 9d 00 2f 00 35 c0 12 00 0a c0 23 |......./.5.....#|
00000070 c0 27 00 3c c0 07 c0 11 00 05 13 03 13 01 13 02 |.'.<............|
-00000080 01 00 00 9d 00 0b 00 02 01 00 ff 01 00 01 00 00 |................|
+00000080 01 00 00 99 00 0b 00 02 01 00 ff 01 00 01 00 00 |................|
00000090 17 00 00 00 12 00 00 00 05 00 05 01 00 00 00 00 |................|
000000a0 00 0a 00 0a 00 08 00 1d 00 17 00 18 00 19 00 0d |................|
-000000b0 00 1a 00 18 08 04 04 03 08 07 08 05 08 06 04 01 |................|
-000000c0 05 01 06 01 05 03 06 03 02 01 02 03 00 32 00 1a |.............2..|
-000000d0 00 18 08 04 04 03 08 07 08 05 08 06 04 01 05 01 |................|
-000000e0 06 01 05 03 06 03 02 01 02 03 00 2b 00 09 08 03 |...........+....|
-000000f0 04 03 03 03 02 03 01 00 33 00 26 00 24 00 1d 00 |........3.&.$...|
-00000100 20 2f e5 7d a3 47 cd 62 43 15 28 da ac 5f bb 29 | /.}.G.bC.(.._.)|
-00000110 07 30 ff f6 84 af c4 cf c2 ed 90 99 5f 58 cb 3b |.0.........._X.;|
-00000120 74 |t|
+000000b0 00 16 00 14 08 04 04 03 08 07 08 05 08 06 04 01 |................|
+000000c0 05 01 06 01 05 03 06 03 00 32 00 1a 00 18 08 04 |.........2......|
+000000d0 04 03 08 07 08 05 08 06 04 01 05 01 06 01 05 03 |................|
+000000e0 06 03 02 01 02 03 00 2b 00 09 08 03 04 03 03 03 |.......+........|
+000000f0 02 03 01 00 33 00 26 00 24 00 1d 00 20 2f e5 7d |....3.&.$... /.}|
+00000100 a3 47 cd 62 43 15 28 da ac 5f bb 29 07 30 ff f6 |.G.bC.(.._.).0..|
+00000110 84 af c4 cf c2 ed 90 99 5f 58 cb 3b 74 |........_X.;t|
>>> Flow 2 (server to client)
-00000000 16 03 03 00 5d 02 00 00 59 03 03 dc 6d a4 87 a5 |....]...Y...m...|
-00000010 a1 8e 67 3d c3 ed c0 e4 ed 38 7a 00 df b1 50 f4 |..g=.....8z...P.|
-00000020 4a cc 0f ab e2 e8 d9 77 b8 1a 18 20 cb e9 02 2a |J......w... ...*|
-00000030 4f 17 c0 9d 3d 55 60 3e d8 46 ee 52 dd bf 3e e6 |O...=U`>.F.R..>.|
-00000040 c9 4a b5 24 f5 19 73 56 ab 78 ce ec c0 09 00 00 |.J.$..sV.x......|
+00000000 16 03 03 00 5d 02 00 00 59 03 03 80 e4 9b 9d a9 |....]...Y.......|
+00000010 59 27 7f 44 b9 4b 90 31 c7 66 03 90 d6 9b ef 17 |Y'.D.K.1.f......|
+00000020 f8 fb e5 63 04 68 f6 ce a1 a6 f4 20 cb 84 55 fa |...c.h..... ..U.|
+00000030 41 77 48 0f 0a 5a 24 92 e3 59 b2 d9 91 0c 18 4a |AwH..Z$..Y.....J|
+00000040 bf af ad db 64 db cb 57 d8 0b de 46 c0 09 00 00 |....d..W...F....|
00000050 11 ff 01 00 01 00 00 0b 00 04 03 00 01 02 00 17 |................|
00000060 00 00 16 03 03 02 0e 0b 00 02 0a 00 02 07 00 02 |................|
00000070 04 30 82 02 00 30 82 01 62 02 09 00 b8 bf 2d 47 |.0...0..b.....-G|
@@ -58,23 +57,23 @@
00000240 8c 25 c1 33 13 83 0d 94 06 bb d4 37 7a f6 ec 7a |.%.3.......7z..z|
00000250 c9 86 2e dd d7 11 69 7f 85 7c 56 de fb 31 78 2b |......i..|V..1x+|
00000260 e4 c7 78 0d ae cb be 9e 4e 36 24 31 7b 6a 0f 39 |..x.....N6$1{j.9|
-00000270 95 12 07 8f 2a 16 03 03 00 b7 0c 00 00 b3 03 00 |....*...........|
-00000280 1d 20 d8 81 5d 07 0c 63 f2 9a bf 82 37 08 f6 6d |. ..]..c....7..m|
-00000290 e2 20 4b 98 85 cc 62 ad a2 ac b1 8b 15 de 1d 5e |. K...b........^|
-000002a0 3b 74 04 03 00 8b 30 81 88 02 42 01 81 b9 d9 e7 |;t....0...B.....|
-000002b0 3b 89 ed 5f cb 0a 10 16 85 69 c3 5e 7f 82 95 f6 |;.._.....i.^....|
-000002c0 49 48 3a 6d 84 c2 f5 04 9a 00 ef 86 f9 10 fc 03 |IH:m............|
-000002d0 a8 ba eb e7 0c 0c 0c 27 7b ba aa 73 a4 23 03 cb |.......'{..s.#..|
-000002e0 d8 be c8 39 34 1f c4 33 e4 cf 12 98 35 02 42 01 |...94..3....5.B.|
-000002f0 dc 0b c7 df 9c b2 c4 f5 dc 4a a6 b0 ef 40 3c 8c |.........J...@<.|
-00000300 98 f3 93 ac 14 9b 4d fe 6e 7a 09 fd 23 c3 14 4f |......M.nz..#..O|
-00000310 cf 1a e6 61 72 58 8c 75 10 6c 75 42 cc 7b 9c 4a |...arX.u.luB.{.J|
-00000320 11 62 25 12 63 44 9d fe 3d 67 44 7e 74 bd b0 3d |.b%.cD..=gD~t..=|
-00000330 04 16 03 03 00 3a 0d 00 00 36 03 01 02 40 00 2e |.....:...6...@..|
-00000340 04 03 05 03 06 03 08 07 08 08 08 09 08 0a 08 0b |................|
-00000350 08 04 08 05 08 06 04 01 05 01 06 01 03 03 02 03 |................|
-00000360 03 01 02 01 03 02 02 02 04 02 05 02 06 02 00 00 |................|
-00000370 16 03 03 00 04 0e 00 00 00 |.........|
+00000270 95 12 07 8f 2a 16 03 03 00 b6 0c 00 00 b2 03 00 |....*...........|
+00000280 1d 20 2f 6b 4c 95 75 59 25 2f f7 fd b1 1f d2 9e |. /kL.uY%/......|
+00000290 2f 38 5e 57 1a 7c 36 99 1e 11 4a 3f f7 13 5b 0b |/8^W.|6...J?..[.|
+000002a0 90 33 04 03 00 8a 30 81 87 02 42 01 b4 34 3f d0 |.3....0...B..4?.|
+000002b0 41 09 00 12 f4 79 20 f4 b7 80 5c d1 35 9d 8b d2 |A....y ...\.5...|
+000002c0 fa c9 4a a9 44 6b 05 95 c5 a7 50 08 0d 73 66 3e |..J.Dk....P..sf>|
+000002d0 dd 49 e4 a4 c6 c0 12 ca 0b 4a df bc c1 3e ec 88 |.I.......J...>..|
+000002e0 ec 9a 0e 71 15 4d 45 98 04 3a 51 7a 67 02 41 15 |...q.ME..:Qzg.A.|
+000002f0 17 de b0 5c 03 a5 74 0e 0f 2b 53 6e 55 17 73 b8 |...\..t..+SnU.s.|
+00000300 ac 16 70 1a 95 f9 25 b1 fc 4b 9d c7 b1 f4 71 f6 |..p...%..K....q.|
+00000310 86 2d 5b 74 9e d3 4e 1b 40 67 f4 a6 62 2e c8 4d |.-[t..N.@g..b..M|
+00000320 66 f7 32 e9 05 df d5 b0 e8 1a b7 b1 48 c4 1c 91 |f.2.........H...|
+00000330 16 03 03 00 3a 0d 00 00 36 03 01 02 40 00 2e 04 |....:...6...@...|
+00000340 03 05 03 06 03 08 07 08 08 08 09 08 0a 08 0b 08 |................|
+00000350 04 08 05 08 06 04 01 05 01 06 01 03 03 02 03 03 |................|
+00000360 01 02 01 03 02 02 02 04 02 05 02 06 02 00 00 16 |................|
+00000370 03 03 00 04 0e 00 00 00 |........|
>>> Flow 3 (client to server)
00000000 16 03 03 01 fd 0b 00 01 f9 00 01 f6 00 01 f3 30 |...............0|
00000010 82 01 ef 30 82 01 58 a0 03 02 01 02 02 10 5c 19 |...0..X.......\.|
@@ -111,31 +110,31 @@
00000200 e5 35 16 03 03 00 25 10 00 00 21 20 2f e5 7d a3 |.5....%...! /.}.|
00000210 47 cd 62 43 15 28 da ac 5f bb 29 07 30 ff f6 84 |G.bC.(.._.).0...|
00000220 af c4 cf c2 ed 90 99 5f 58 cb 3b 74 16 03 03 00 |......._X.;t....|
-00000230 88 0f 00 00 84 08 04 00 80 3c 66 74 5d c3 4b d6 |.........<ft].K.|
-00000240 98 89 fe 1d 47 36 26 62 e8 19 0a 2c a9 8d 9a cf |....G6&b...,....|
-00000250 f2 a1 15 3a bb c5 90 be 8d 09 d5 e8 3e 1f f3 87 |...:........>...|
-00000260 19 a7 d9 5d 7c f6 65 32 bd 47 e9 2f 90 a8 90 1b |...]|.e2.G./....|
-00000270 41 05 08 35 32 f6 c2 22 70 61 37 a3 48 96 72 e0 |A..52.."pa7.H.r.|
-00000280 41 26 07 a9 6c c2 34 72 35 d5 43 ce 23 fd 34 9b |A&..l.4r5.C.#.4.|
-00000290 56 b7 4e c0 be b9 b3 bd 81 df 32 58 3f b2 af 34 |V.N.......2X?..4|
-000002a0 c0 08 69 27 19 43 0f 34 1b 56 ed 08 cd 1b 2b f3 |..i'.C.4.V....+.|
-000002b0 41 75 8c 0a b2 43 4c f6 fe 14 03 03 00 01 01 16 |Au...CL.........|
+00000230 88 0f 00 00 84 08 04 00 80 70 66 f2 ac fb f7 29 |.........pf....)|
+00000240 15 31 a2 12 de 37 3f cc 97 74 5c 5b 7e 6d e4 f8 |.1...7?..t\[~m..|
+00000250 b0 b3 3d 9c ee 32 bf d7 64 90 d7 af ad 8f 61 77 |..=..2..d.....aw|
+00000260 f2 c0 7e 6f 91 1d 4e 95 92 3e ab 23 f0 ac d8 de |..~o..N..>.#....|
+00000270 32 69 cd bc 04 4c d1 a3 77 7a af ac f0 64 41 aa |2i...L..wz...dA.|
+00000280 a0 53 f0 89 89 a4 6f 1f 67 21 16 55 4e dc cb a8 |.S....o.g!.UN...|
+00000290 12 7d cb a0 5c a9 48 48 d9 af 03 f0 75 ed 32 72 |.}..\.HH....u.2r|
+000002a0 d5 da 34 a3 ea 82 08 8f 00 fc 7d 1d b8 11 ff f7 |..4.......}.....|
+000002b0 09 52 a8 cc a8 66 b0 06 1e 14 03 03 00 01 01 16 |.R...f..........|
000002c0 03 03 00 40 00 00 00 00 00 00 00 00 00 00 00 00 |...@............|
-000002d0 00 00 00 00 ce ef 0a 09 6d 11 17 89 31 b3 ac 31 |........m...1..1|
-000002e0 76 fe 02 d1 2b f8 dc df fc 59 e3 2f aa 14 4e 9d |v...+....Y./..N.|
-000002f0 c1 d9 5d f6 4f 57 6f 15 db 93 f1 27 12 02 7c 08 |..].OWo....'..|.|
-00000300 75 f6 48 26 |u.H&|
+000002d0 00 00 00 00 9c 7d d4 9e 59 53 e7 66 64 63 9c cb |.....}..YS.fdc..|
+000002e0 58 03 03 26 fe d9 15 eb 03 1c 8f a7 9c 5a 86 4a |X..&.........Z.J|
+000002f0 6c 4e 06 4a 80 91 94 00 6f 7d 38 6a ea a3 68 df |lN.J....o}8j..h.|
+00000300 17 08 14 ed |....|
>>> Flow 4 (server to client)
-00000000 14 03 03 00 01 01 16 03 03 00 40 c0 0b de 9c 60 |..........@....`|
-00000010 35 52 38 09 01 7f e5 52 b3 cf b4 e6 27 02 36 52 |5R8....R....'.6R|
-00000020 ce 84 dd f5 ee f8 65 7c 89 ad 5e 1c 86 09 36 d0 |......e|..^...6.|
-00000030 23 c7 52 63 6b 67 97 4e bf c0 28 83 3a c8 3e a2 |#.Rckg.N..(.:.>.|
-00000040 2f f3 d7 08 8c c0 86 64 8e 9c 3e |/......d..>|
+00000000 14 03 03 00 01 01 16 03 03 00 40 7e 6d 15 90 c5 |..........@~m...|
+00000010 99 96 ca bb 16 b5 5a 55 3e b0 ef 3f ab e5 b6 8c |......ZU>..?....|
+00000020 51 1d 18 c7 c2 25 86 e0 db c1 d0 38 85 51 4e 8d |Q....%.....8.QN.|
+00000030 37 51 92 cc d0 64 37 b7 67 7b 2c fc e7 1e 16 f6 |7Q...d7.g{,.....|
+00000040 76 3a 94 48 68 eb dc cc cf 2a 4d |v:.Hh....*M|
>>> Flow 5 (client to server)
00000000 17 03 03 00 30 00 00 00 00 00 00 00 00 00 00 00 |....0...........|
-00000010 00 00 00 00 00 98 7e 6b 30 28 7d e1 6f 09 17 40 |......~k0(}.o..@|
-00000020 cf 5f 98 90 46 91 b5 9b f8 29 22 a0 85 75 f7 f6 |._..F....)"..u..|
-00000030 f4 33 c8 60 75 15 03 03 00 30 00 00 00 00 00 00 |.3.`u....0......|
-00000040 00 00 00 00 00 00 00 00 00 00 02 c0 9e 3b 21 50 |.............;!P|
-00000050 a1 7a 16 67 32 3d 66 6d c4 7f 9c 9b 44 30 31 f4 |.z.g2=fm....D01.|
-00000060 ea 03 7a e3 54 5d 35 7f d3 eb |..z.T]5...|
+00000010 00 00 00 00 00 db 14 ae 78 62 50 37 42 b8 fc c6 |........xbP7B...|
+00000020 f1 84 40 75 7c e4 3f 8a 57 b8 1c 12 4a 6f 11 f2 |..@u|.?.W...Jo..|
+00000030 ba 1a a6 9b 20 15 03 03 00 30 00 00 00 00 00 00 |.... ....0......|
+00000040 00 00 00 00 00 00 00 00 00 00 09 93 aa 80 fd b2 |................|
+00000050 66 e2 83 0e f8 83 45 3d e1 39 06 5d a3 12 9e 12 |f.....E=.9.]....|
+00000060 fd f5 cb 32 c4 3b ce 20 e4 10 |...2.;. ..|
generated by cgit v1.3 (git 2.53.0) at 2026-04-15 18:34:08 +0000