Lucas Clemente
c068cbcb8f
replace certificate path with tls.Config instance throughout the server
...
The example server now reads the certificate and key data itself. Tests
use the new testdata package, where the sample key & cert are stored.
Fixes #24
2016-05-03 16:41:25 +02:00
Lucas Clemente
ac0eed61f2
introduce crypto.Signer interface and hide RSA implementation
2016-04-17 00:22:26 +02:00
Lucas Clemente
7acb3365d5
use dictionary to compress certificates
2016-04-15 20:40:43 +02:00
Lucas Clemente
495bb0ef92
handle version Q030 properly
2016-04-15 19:01:14 +02:00
Lucas Clemente
35a40ac6d8
rename GetCERTData to GetCertCompressed
2016-04-15 12:37:23 +02:00
Lucas Clemente
86b4ffdaaf
use chacha20poly1305 instead of AES and include cert in key derivation
...
Unfortunately QUIC uses non-standard tag sizes with both AES-GCM and
Poly1305. Adopting AES-GCM seems much harder, so I changed it to
Chacha20Poly1305 and only made some slight changes to an existing algo.
This should probably be double-checked at some point.
2016-04-14 23:44:31 +02:00
Lucas Clemente
d3097ed82a
implement basic certificate compression
2016-04-12 12:17:03 +02:00
Lucas Clemente
97187c5a31
fix proof signature algorithm
2016-04-12 12:16:46 +02:00
Lucas Clemente
f634d2a577
add basic RSA server proof generation
2016-04-11 20:35:34 +02:00
