git.lizzy.rs Git - plan9front.git/commit

author	cinap_lenrek <cinap_lenrek@felloff.net>
	Tue, 22 Sep 2015 16:10:52 +0000 (18:10 +0200)
committer	cinap_lenrek <cinap_lenrek@felloff.net>
	Tue, 22 Sep 2015 16:10:52 +0000 (18:10 +0200)
commit	c3e1c158f62458f16e5b538f188bad14844d277d
tree	c8b976af1e687ad02cabedd520b92f08e8f1d18f	tree \| snapshot
parent	8baa8593196a1848773eb8dff26b18cc519f0175	commit \| diff

libsec: implement dh parameter signature verification, stop lying about non-rsa ciphers, fix memory leaks in X509 code

actually verify the diffie hellman parameter signature, this
comes in two flavours. TLS1.2 uses X509 signature with a
single hash specified by the signature algorithm field in
the signature itself and pre TLS1.2 where md5+sha1 hashes
of the signed blob are pkcs1 padded and encrypted with the
rsa private key.

stop advertizing non-rsa cipher suits (DSS and ECDSA), as
we have not implmenented them.

fix some memory leaks in X509 code while we'r at it.

sys/include/libsec.h		diff \| blob \| history
sys/src/libsec/port/tlshand.c		diff \| blob \| history
sys/src/libsec/port/x509.c		diff \| blob \| history