mirrors/utls
1
0
Fork 0
mirror of https://github.com/refraction-networking/utls.git synced 2025-04-02 03:27:35 +03:00
Code Issues Projects Releases Packages Wiki Activity
utls/testdata/Server-TLSv13-ALPN-NotConfigured
Gaukas Wang 86e9b69fdd
sync: Go 1.21 with QUIC support (#208) 
* sync: Go 1.21rc3, QUIC support added (#207)

* sync: merge with upstream tag/go-1.21rc3 (#11)

* fix: all tests pass

* impl: UQUIC Transport

* deps: bump up min Go version

* new: uquic

* fix: add QUICTransportParameter

* deprecated: Go 1.19 no longer supported

Go 1.19 will fail to build or pass the test once we bump up to the new version.

* sync: crypto/tls: restrict RSA keys in certificates to <= 8192 bits (#209)

* [release-branch.go1.21] crypto/tls: restrict RSA keys in certificates to <= 8192 bits

Extremely large RSA keys in certificate chains can cause a client/server
to expend significant CPU time verifying signatures. Limit this by
restricting the size of RSA keys transmitted during handshakes to <=
8192 bits.

Based on a survey of publicly trusted RSA keys, there are currently only
three certificates in circulation with keys larger than this, and all
three appear to be test certificates that are not actively deployed. It
is possible there are larger keys in use in private PKIs, but we target
the web PKI, so causing breakage here in the interests of increasing the
default safety of users of crypto/tls seems reasonable.

Thanks to Mateusz Poliwczak for reporting this issue.

Fixes CVE-2023-29409

* build: [ci skip] boring not included

* fix: typo [ci skip]

* docs: replenish readme [ci skip]

replace old build status badge with new ones, bump up required version noted in docs, update developer contact to reflect current status.
2023-08-03 23:22:53 -06:00

99 lines
7.4 KiB
Text
Raw Permalink Blame History

>>> Flow 1 (client to server)
00000000 16 03 01 00 e2 01 00 00 de 03 03 1f f5 b0 88 a0 |................|
00000010 fd 0e cd 4d 25 21 88 bf 07 16 95 49 6a 78 2d 70 |...M%!.....Ijx-p|
00000020 25 f7 06 36 f2 98 4c 23 16 41 a5 20 87 60 d3 78 |%..6..L#.A. .`.x|
00000030 c7 ab 8b f9 2b 2c 21 1e f4 5b 25 bc 81 53 18 5c |....+,!..[%..S.\|
00000040 3b 7e dd 3e 7b c4 ee d1 f8 9d bf 7a 00 04 13 03 |;~.>{......z....|
00000050 00 ff 01 00 00 91 00 0b 00 04 03 00 01 02 00 0a |................|
00000060 00 0c 00 0a 00 1d 00 17 00 1e 00 19 00 18 00 23 |...............#|
00000070 00 00 00 10 00 10 00 0e 06 70 72 6f 74 6f 32 06 |.........proto2.|
00000080 70 72 6f 74 6f 31 00 16 00 00 00 17 00 00 00 0d |proto1..........|
00000090 00 1e 00 1c 04 03 05 03 06 03 08 07 08 08 08 09 |................|
000000a0 08 0a 08 0b 08 04 08 05 08 06 04 01 05 01 06 01 |................|
000000b0 00 2b 00 03 02 03 04 00 2d 00 02 01 01 00 33 00 |.+......-.....3.|
000000c0 26 00 24 00 1d 00 20 5f 8f fa 0f 94 46 78 3d a9 |&.$... _....Fx=.|
000000d0 7d d8 2b 65 f6 c1 55 6b fd aa 4b 65 23 7b ad 13 |}.+e..Uk..Ke#{..|
000000e0 88 06 ce 54 f1 77 63 |...T.wc|
>>> Flow 2 (server to client)
00000000 16 03 03 00 7a 02 00 00 76 03 03 00 00 00 00 00 |....z...v.......|
00000010 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 |................|
00000020 00 00 00 00 00 00 00 00 00 00 00 20 87 60 d3 78 |........... .`.x|
00000030 c7 ab 8b f9 2b 2c 21 1e f4 5b 25 bc 81 53 18 5c |....+,!..[%..S.\|
00000040 3b 7e dd 3e 7b c4 ee d1 f8 9d bf 7a 13 03 00 00 |;~.>{......z....|
00000050 2e 00 2b 00 02 03 04 00 33 00 24 00 1d 00 20 2f |..+.....3.$... /|
00000060 e5 7d a3 47 cd 62 43 15 28 da ac 5f bb 29 07 30 |.}.G.bC.(.._.).0|
00000070 ff f6 84 af c4 cf c2 ed 90 99 5f 58 cb 3b 74 14 |.........._X.;t.|
00000080 03 03 00 01 01 17 03 03 00 17 30 cc 27 0f 8c cd |..........0.'...|
00000090 77 85 98 61 e4 19 19 63 ac 5b 55 37 c2 73 6d f6 |w..a...c.[U7.sm.|
000000a0 a1 17 03 03 02 6d 5f 60 9f d3 fc 5e 57 fb b6 35 |.....m_`...^W..5|
000000b0 99 3c a7 65 6f eb b5 89 5a 3c be e1 a5 c7 af 14 |.<.eo...Z<......|
000000c0 67 d4 0c 87 d4 dd c9 28 1c 5c 89 c6 55 68 e0 b3 |g......(.\..Uh..|
000000d0 42 d8 e4 4f 64 df 26 4a a2 14 eb 34 69 9f 8d 8e |B..Od.&J...4i...|
000000e0 fc 21 db 17 93 37 7d d4 57 bb 76 4d 1e 70 9f 58 |.!...7}.W.vM.p.X|
000000f0 f3 ae 12 71 aa 4b 30 e3 86 92 32 c6 55 12 08 42 |...q.K0...2.U..B|
00000100 bf 6a 6a f9 79 b9 50 37 11 15 a4 b3 c8 a8 16 da |.jj.y.P7........|
00000110 e9 62 ed 3d 80 da 38 22 c6 c3 fd 1c b2 d2 8c 74 |.b.=..8".......t|
00000120 23 39 70 67 b0 34 25 24 eb 72 e2 c1 63 d6 48 09 |#9pg.4%$.r..c.H.|
00000130 ee d7 5e 15 2b 78 64 97 c8 d0 6b 2a 1c b6 d8 12 |..^.+xd...k*....|
00000140 9e 9a b5 dc 24 51 5a 38 a1 4c 9c df 74 3f 63 f0 |....$QZ8.L..t?c.|
00000150 d2 45 49 58 5c 3c 42 f2 56 fd bc 0e c1 d6 8b 7d |.EIX\<B.V......}|
00000160 31 bf af c7 a2 91 8a c7 e2 ef 3d fe 66 5b 29 97 |1.........=.f[).|
00000170 40 7e 84 2e 83 2b 41 48 69 72 02 75 49 74 77 18 |@~...+AHir.uItw.|
00000180 af a9 ef 22 66 f2 2f 37 79 e7 10 6d 22 e9 81 86 |..."f./7y..m"...|
00000190 c1 55 28 7d a1 1f 80 dc c8 f1 00 d7 21 c9 ff 69 |.U(}........!..i|
000001a0 8c f0 b3 48 c4 8b 97 6a bf fc 24 ad d2 23 f5 6b |...H...j..$..#.k|
000001b0 4d c8 96 d6 85 91 7b c6 21 79 2f e5 59 32 7d e7 |M.....{.!y/.Y2}.|
000001c0 7b 77 46 c7 f8 6d 6e 8c 4f c8 47 84 0c f4 9d 81 |{wF..mn.O.G.....|
000001d0 be 2e 38 c6 79 43 d1 ca 78 81 40 1a a3 0e bc fd |..8.yC..x.@.....|
000001e0 42 2d de 55 33 48 50 6a 5b 47 b6 cb ea 6c e6 e9 |B-.U3HPj[G...l..|
000001f0 ab 11 10 34 c3 4e 61 e1 dd a8 8d 8b c3 af 18 13 |...4.Na.........|
00000200 2c 17 02 c9 7d 21 74 12 e1 9b a7 1e 95 8f 3a 6f |,...}!t.......:o|
00000210 60 75 f6 e9 f8 87 e5 15 de 33 ba 01 50 28 5c 2d |`u.......3..P(\-|
00000220 cf 74 64 c5 c8 36 48 2a f6 32 12 96 07 2f 2d 20 |.td..6H*.2.../- |
00000230 97 cb c1 c9 8f d1 27 f0 90 66 70 1c 45 20 c9 99 |......'..fp.E ..|
00000240 5c 9c 44 2d a2 93 5c 4c 48 7a 6b 0c 2e a7 b9 21 |\.D-..\LHzk....!|
00000250 1b 86 94 41 2c 53 72 0b 91 55 2b 6a b2 8f 67 f9 |...A,Sr..U+j..g.|
00000260 2a 17 84 6f b0 f6 5e 0d 57 ad ca 1d 85 77 a7 03 |*..o..^.W....w..|
00000270 c4 ea 62 b3 63 34 59 81 a4 90 b7 f7 39 61 8e e2 |..b.c4Y.....9a..|
00000280 79 9c bd 71 49 7a 0c 34 2b a7 4a f4 65 f0 14 96 |y..qIz.4+.J.e...|
00000290 4a fa 5f d6 03 eb 9e 40 04 4b 45 1c 58 a6 f7 04 |J._....@.KE.X...|
000002a0 25 27 d3 7d 7b 28 0c 43 8b cd dd 8b 5b 19 6c 21 |%'.}{(.C....[.l!|
000002b0 c1 03 9d 75 2e 7d 83 c8 f1 ad dc fd 96 75 6f 56 |...u.}.......uoV|
000002c0 3d 9f e9 e3 52 ff d4 b0 55 c1 43 d9 74 b1 c7 f8 |=...R...U.C.t...|
000002d0 99 91 e5 b7 b1 28 64 64 d8 7a de 35 64 7d 75 d6 |.....(dd.z.5d}u.|
000002e0 7f 4b 56 63 9b fb c3 6f f1 00 e6 f2 0a 7f 06 47 |.KVc...o.......G|
000002f0 3c b9 dc 5f 2d b2 ef ca 2b 51 de a1 db 09 5d ec |<.._-...+Q....].|
00000300 80 c3 85 36 09 b4 61 6a 21 c2 68 bb 31 6b f6 14 |...6..aj!.h.1k..|
00000310 5c 18 73 17 03 03 00 99 0b 3b ee 6c 6e c6 5f fd |\.s......;.ln._.|
00000320 33 e5 38 52 86 25 8f 76 93 db 62 77 2f 28 7a 19 |3.8R.%.v..bw/(z.|
00000330 d1 78 ed 1a a4 e3 aa 13 b7 c4 24 d1 f9 f6 77 85 |.x........$...w.|
00000340 a6 bd cf 21 3a 95 4d 70 3d 3e 40 3b 23 17 da b4 |...!:.Mp=>@;#...|
00000350 b0 1d b7 bb 4f 90 8c 73 5a d2 f5 5b 4a 74 b0 25 |....O..sZ..[Jt.%|
00000360 eb a8 7e a0 9d 1a e4 4e bf 4f 55 b8 9d 93 cf 5b |..~....N.OU....[|
00000370 a4 22 3d 3b d5 8f 23 de 41 70 47 d8 3b 82 6b ba |."=;..#.ApG.;.k.|
00000380 26 f2 a2 e9 45 8e a9 72 1e 37 2e 0d a9 4b 54 b2 |&...E..r.7...KT.|
00000390 6f 8f ec 04 97 86 b4 e4 4c cc f1 ed c9 e1 61 b1 |o.......L.....a.|
000003a0 f8 a2 d7 fc a5 1a 8c 44 95 16 fc e3 25 b1 a9 d6 |.......D....%...|
000003b0 21 17 03 03 00 35 fa ad 27 32 8d 61 3a 32 36 ef |!....5..'2.a:26.|
000003c0 ea ff 4e 95 cd a6 83 19 e2 72 85 44 33 b2 c0 45 |..N......r.D3..E|
000003d0 f0 34 92 ca 5a a2 14 4c 6c a3 95 bd fe 3b f8 fd |.4..Z..Ll....;..|
000003e0 e1 11 9b f6 8f 4f c6 ae 05 31 55 17 03 03 00 8b |.....O...1U.....|
000003f0 8a a3 df b3 a0 68 8a e1 4f db c6 2a 8e df dc b6 |.....h..O..*....|
00000400 07 b5 c4 c7 34 7f d8 e9 3f 88 0f 15 14 01 50 bc |....4...?.....P.|
00000410 64 05 8d 91 fa 24 1e 0e cf db 11 8c 46 58 6e f1 |d....$......FXn.|
00000420 09 68 14 9a 89 e0 6b ef ac 90 27 69 2b 01 6c 2e |.h....k...'i+.l.|
00000430 6d e9 26 9f b1 ff b8 6c 8b 33 bb e8 42 54 85 c9 |m.&....l.3..BT..|
00000440 14 d5 89 48 50 a6 8d be dd b8 96 f1 45 4f 90 08 |...HP.......EO..|
00000450 da cf 1f 75 33 85 d9 be 8e a5 4a c5 be a9 a3 16 |...u3.....J.....|
00000460 f6 37 02 79 ea c3 e5 10 ed ff d5 f2 3d 46 7b ed |.7.y........=F{.|
00000470 bf be 36 a2 8a 00 9f 30 02 54 71 |..6....0.Tq|
>>> Flow 3 (client to server)
00000000 14 03 03 00 01 01 17 03 03 00 35 b6 3d e7 c7 a8 |..........5.=...|
00000010 2d c2 a7 8b cc 13 db 7d c2 75 18 f9 86 20 2b f0 |-......}.u... +.|
00000020 e1 5d 11 b1 2d df 0c 12 a7 c5 3a 28 97 6e f8 f0 |.]..-.....:(.n..|
00000030 7f c0 81 72 68 a5 41 68 59 ef da 3e 2f ef 97 45 |...rh.AhY..>/..E|
>>> Flow 4 (server to client)
00000000 17 03 03 00 1e fd 53 e4 87 a2 41 38 98 a6 d8 fa |......S...A8....|
00000010 7b 65 66 98 37 a6 4a 06 6b 25 11 66 ed 9c 00 22 |{ef.7.J.k%.f..."|
00000020 83 6e f5 17 03 03 00 13 fc bb b9 93 79 3c 94 6c |.n..........y<.l|
00000030 1d 48 d9 5c 3e 51 86 fb 2a 0d d8 |.H.\>Q..*..|
Reference in a new issue View git blame Copy permalink