Merge support for TLS1.3 (draft-ietf-tls-tls13-21) (!600) · Merge requests · gnutls / GnuTLS

Nikos Mavrogiannopoulos requested to merge tmp-draft-ietf-tls-tls13-21 into master Feb 16, 2018

This adds support for TLS1.3 handshake using draft-ietf-tls-tls13-21. It includes version negotiation, post handshake authentication, length hiding, multiple OCSP support, consistent ciphersuite support across protocols, Hello retry requests, ability to adjust key shares, certificate authorities extension, and key usage limits.

Remaining: PSK, session resumption, update to latest draft.

Checklist

Code modified for feature
Test suite updated with functionality tests
Documentation updated

Reviewer's checklist:

Any issues marked for closing are addressed
There is a test suite reasonably covering new functionality or modifications
Function naming, parameters, return values, types, etc., are consistent and according to CONTRIBUTION.md
This feature/change has adequate documentation added
No obvious mistakes in the code

Merge support for TLS1.3 (draft-ietf-tls-tls13-21)

Checklist

Reviewer's checklist:

Merge request reports