Cypherpunks repositories - gostls13.git/commit

]> Cypherpunks repositories - gostls13.git/commit

author	Filippo Valsorda <filippo@golang.org>
	Fri, 19 May 2023 21:28:43 +0000 (23:28 +0200)
committer	Filippo Valsorda <filippo@golang.org>
	Wed, 24 May 2023 23:56:24 +0000 (23:56 +0000)
commit	6b020be648960440b1f02d28889a6e050f59c31c
tree	f0dd84974d380b780a3b006d96e83b889f06ee00	tree
parent	08458804fb6591397fe1c58f4e04fd490e70fbcb	commit \| diff

crypto/tls: reduce session ticket linkability

Ever since session ticket key rotation was introduced in CL 9072, we've
been including a prefix in every ticket to identify what key it's
encrypted with. It's a small privacy gain, but the cost of trial
decryptions is also small, especially since the first key is probably
the most frequently used.

Also reissue tickets on every resumption so that the next connection
can't be linked to all the previous ones. Again the privacy gain is
small but the performance cost is small and it comes with a reduction in
complexity.

For #60105

Change-Id: I852f297162d2b79a3d9bf61f6171e8ce94b2537a
Reviewed-on: https://go-review.googlesource.com/c/go/+/496817
Reviewed-by: Damien Neil <dneil@google.com>
Reviewed-by: Matthew Dempsky <mdempsky@google.com>
Run-TryBot: Damien Neil <dneil@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>

34 files changed:

src/crypto/tls/common.go		diff \| blob \| history
src/crypto/tls/handshake_client_test.go		diff \| blob \| history
src/crypto/tls/handshake_server.go		diff \| blob \| history
src/crypto/tls/handshake_server_tls13.go		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv10-ExportKeyingMaterial		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-ALPN		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-ALPN-Fallback		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-ALPN-NotConfigured		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-ExportKeyingMaterial		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-IssueTicket		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-IssueTicketPreDisable		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv12-Resume		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-AES128-SHA256		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-AES256-SHA384		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-ALPN		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-ALPN-Fallback		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-ALPN-NotConfigured		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-CHACHA20-SHA256		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-ClientAuthRequestedAndECDSAGiven		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-ClientAuthRequestedAndEd25519Given		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-ClientAuthRequestedAndGiven		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-ClientAuthRequestedNotGiven		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-ECDHE-ECDSA-AES		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-Ed25519		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-ExportKeyingMaterial		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-HelloRetryRequest		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-IssueTicket		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-IssueTicketPreDisable		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-P256		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-RSA-RSAPSS		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-Resume		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-Resume-HelloRetryRequest		diff \| blob \| history
src/crypto/tls/testdata/Server-TLSv13-X25519		diff \| blob \| history
src/crypto/tls/ticket.go		diff \| blob \| history

Go GOST TLS 1.3

RSS Atom