]> Cypherpunks repositories - gostls13.git/commit
projects / gostls13.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: acae4d2) | patch
crypto/tls: don't select ECDSA ciphersuites with only an RSA certificate.
authorAdam Langley <agl@golang.org>
Tue, 17 Sep 2013 17:30:36 +0000 (13:30 -0400)
committerAdam Langley <agl@golang.org>
Tue, 17 Sep 2013 17:30:36 +0000 (13:30 -0400)
commiteef7035ec860a2a8eac39ed3f4c0cb2a384599a2
treed681d160c7705f06e91564f369e2d8cd85203e75tree
parentacae4d212c6af5f96677ea7d2ed827389bd7b819commit | diff
crypto/tls: don't select ECDSA ciphersuites with only an RSA certificate.

47ec7a68b1a2 added support for ECDSA ciphersuites but didn't alter the
cipher suite selection to take that into account. Thus Go servers could
try and select an ECDSA cipher suite while only having an RSA
certificate, leading to connection failures.

R=golang-dev, rsc
CC=golang-dev
https://golang.org/cl/13239053
src/pkg/crypto/tls/cipher_suites.go diff | blob | history
src/pkg/crypto/tls/handshake_server.go diff | blob | history
src/pkg/crypto/tls/handshake_server_test.go diff | blob | history
Go GOST TLS 1.3