Kinda maybe working TLS 1.2 for clients. Not well tested at all, but a

basic connection with a GnuTLS server does work. Currently we don't respect the signature_algorithms extension at all, and using SHA-256 with a 12-byte finished value is hardcoded though the spec is that it can depend on the ciphersuite (likely relevant for GOST ciphersuites in particular).
author: lloyd <[email protected]> 2012-01-19 18:14:20 +0000
committer: lloyd <[email protected]> 2012-01-19 18:14:20 +0000
commit: 265cf8e312723e688f4dbc8e4d90e0eae5445c97 (patch)
tree: 4532f1435286ad17cc3752ba77b71e59af622bbf /src/tls/tls_session_key.cpp
parent: 239241568d4d3ff14d2d1994e5829f3d548f2078 (diff)
1 files changed, 2 insertions, 0 deletions
diff --git a/src/tls/tls_session_key.cpp b/src/tls/tls_session_key.cpp
index 66a02542b..cb55499f0 100644
--- a/src/tls/tls_session_key.cpp
+++ b/src/tls/tls_session_key.cpp
@@ -21,6 +21,8 @@ std::string lookup_prf_name(Version_Code version)
       return "SSL3-PRF";
    else if(version == TLS_V10 || version == TLS_V11)
       return "TLS-PRF";
+   else if(version == TLS_V12)
+      return "TLS-12-PRF(SHA-256)";
    else
       throw Invalid_Argument("Session_Keys: Unknown version code");
    }
author	lloyd <[email protected]>	2012-01-19 18:14:20 +0000
committer	lloyd <[email protected]>	2012-01-19 18:14:20 +0000
commit	265cf8e312723e688f4dbc8e4d90e0eae5445c97 (patch)
tree	4532f1435286ad17cc3752ba77b71e59af622bbf /src/tls/tls_session_key.cpp
parent	239241568d4d3ff14d2d1994e5829f3d548f2078 (diff)