Google Git
Sign in
pigweed/third_party/github/h2o/picotls/feaf7ee04eba19a8159957f94cf8645750cabf83
commit
feaf7ee04eba19a8159957f94cf8645750cabf83
[log]
author
Frederik Deweerdt <fdeweerdt@fastly.com>
Mon Mar 06 15:39:20 2017 -0800
committer
Frederik Deweerdt <fdeweerdt@fastly.com>
Mon Mar 06 16:06:11 2017 -0800
tree
3cced67a3074a4f88c0a59bd76ac4facc6303c5f
parent
d92f63a3e802f897d0b5386503b5b23adae86679 [diff]
SNI presence (or absence) in the first and second ClientHello should match

If it didn't exist in first flight then it must not in the second
flight.
This also makes sure `ch.server_name.base` is not passed to strncmp if
it's NULL (aka CID 1415201)
1 file changed
tree: 3cced67a3074a4f88c0a59bd76ac4facc6303c5f
  1. deps/
  2. include/
  3. lib/
  4. misc/
  5. picotls.xcodeproj/
  6. t/
  7. .clang-format
  8. .gitmodules
  9. .travis.yml
  10. CMakeLists.txt
  11. README.md
README.md

picotls

Build Status

Picotls is a TLS 1.3 implementation written in C.

At the moment, the library implements Draft 18 of the specification, including support 0-RTT resumption using PSK or PSK-DHE.

Primary goal of the project is to create a fast, tiny TLS 1.3 implementation that can be used with the HTTP/2 protocol stack and possibly the upcoming QUIC stack of the H2O HTTP/2 server.

Picotls only implements the communination protocol; cryptographic operations are delegated to cryptographic engines. At the moment, minicrypto binding (uses cifra and micro-ecc) and openssl binding are provided.

License and algorithms supported by the bindings are as follows:

BindingLicenseKey ExchangeCertificateAEAD cipher
minicryptoCC0 / 2-clause BSDsecp256r1, x25519ECDSA (P256)1AES-128-GCM
OpenSSLOpenSSLsecp256r1RSA, ECDSA (P256)AES-128-GCM

Note 1: Minicrypto binding is capable of signing a handshake using the certificate's key, but cannot verify a signature sent by the peer.

How to

If you have cloned picotls from git then ensure that you have initialised the submodules:

% git submodule init
% git submodule update

Build using cmake:

% cmake .
% make
% make check

Run the test server (at 127.0.0.1:8443):

% ./cli -c /path/to/certificate.pem -k /path/to/private-key.pem  127.0.0.1 8443

Connect to the test server:

% ./cli 127.0.0.1 8443

Using resumption:

% ./cli -s session-file 127.0.0.1 8443

The session-file is read-write. The cli server implements a single-entry session cache. The cli server sends NewSessionTicket when it first sends application data after receiving ClientFinished.

Using early-data:

% ./cli -s session-file -e 127.0.0.1 8443

When -e option is used, client first waits for user input, and then sends CLIENT_HELLO along with the early-data.

License

The software is provided under the MIT license. Note that additional licences apply if you use the minicrypto binding (see above).