OLD | NEW |
---|---|
1 Name: tlslite | 1 Name: tlslite |
2 URL: http://trevp.net/tlslite/ | 2 URL: http://trevp.net/tlslite/ |
3 Version: 0.3.8 | 3 Version: 0.4.6 |
4 Security Critical: No | 4 Security Critical: No |
5 License: Public domain | 5 License: Public domain and BSD |
6 | |
7 Description: Python TLS implementation for use with test server. | |
8 | |
9 Source: https://pypi.python.org/packages/source/t/tlslite/tlslite-0.4.6.tar.gz | |
10 MD5: 2f92ebea557802969653f29c7faafbc2 | |
11 SHA-512: 7b933499dfdafbdf3775c7e86bbc82a6fcee0b37a818d9106fe84436176df7f4 | |
12 2f185f61a64c6548214909cfce530f5d143414173ffc8f074faf87f34c87f38c | |
6 | 13 |
7 Local Modifications: | 14 Local Modifications: |
8 | 15 - Drop docs/, scripts/, and tests/ directories. |
9 - patches/close_notify.patch: tlslite/TLSRecordLayer.py was changed to force | |
10 the socket to be closed when the SSL connection is closed. This is is | |
11 necessary at this point since WinHTTP does not seem to react to the SSL | |
12 close notify. It's also needed to prevent a hang on Linux. See also | |
13 http://sourceforge.net/mailarchive/forum.php?thread_name=41C9B18B.2010201%40ag .com&forum_name=tlslite-users | |
14 - patches/python26.patch: Replace sha, md5 module imports with hashlib, as | |
15 they are deprecated in Python 2.6 | |
16 - patches/ca_request.patch: tlslite/X509.py was changed to obtain the | |
17 DER-encoded distinguished name for a certificate, without requiring any | |
18 addition libraries. | |
19 tlslite/utils/ASN1Parser.py was changed to allow obtaining the unparsed | |
20 data for an element in a SEQUENCE, in addition to providing the parsed | |
21 value (tag and length removed) | |
22 tlslite/messages.py was changed from accepting/returning a single byte | |
23 array in the CertificateRequest message for the CA names to accept a list | |
24 of byte arrays, each containing a DER-encoded distinguished name. | |
25 tlslite/TLSConnection.py was changed to take a list of such byte arrays | |
26 when creating a TLS server that will request client authentication. | |
27 - patches/send_certificate_types.patch: tlslite/message.py was changed to | |
28 default to a certificate_types of [rsa_sign] in CertificateRequest. Apple's | |
29 Secure Transport library rejects an empty list and raises an SSL protocol | |
30 error. | |
31 - patches/parse_chain.patch: tlslite/X509CertChain.py and tlslite/X509.py were | |
32 updated to add a parseChain method, that can parse multiple certificates from | |
33 a PEM string. | |
34 - patches/tls_intolerant.patch: allow TLSLite to simulate a TLS-intolerant serve r. | 16 - patches/tls_intolerant.patch: allow TLSLite to simulate a TLS-intolerant serve r. |
35 - patches/channel_id.patch: add basic ChannelID support. (Signatures are not | 17 - patches/channel_id.patch: add basic ChannelID support. (Signatures are not |
36 checked.) | 18 checked.) |
37 - patches/signed_certificate_timestamps.patch: add support for sending Signed | 19 - patches/signed_certificate_timestamps.patch: add support for sending Signed |
38 Certificate Timestamps over a TLS extension. | 20 Certificate Timestamps over a TLS extension. |
39 - patches/fallback_scsv.patch: add support for TLS_FALLBACK_SCSV. See | 21 - patches/fallback_scsv.patch: add support for TLS_FALLBACK_SCSV. See |
40 https://tools.ietf.org/html/draft-bmoeller-tls-downgrade-scsv-01 | 22 https://tools.ietf.org/html/draft-bmoeller-tls-downgrade-scsv-01 |
41 - patches/status_request.patch: add support for sending stapled OCSP responses. | 23 - patches/status_request.patch: add support for sending stapled OCSP responses. |
42 - patches/rsa_signature_length.patch: Ensure that RSA signatures have the | 24 - patches/pycrypto.patch: fix PyCrypto support code. |
43 correct length. | 25 - patches/client_cipher_preferences.patch: honor client cipher preference's. |
wtc
2014/04/08 22:29:09
Nit: preference's => preferences
davidben
2014/04/08 23:30:36
Done.
| |
44 - Rename all Python files to lowercase in preparation for 0.4.6 update. | 26 tlslite's current ordering will otherwise negotiate |
27 TLS_RSA_WITH_3DES_EDE_CBC_SHA. | |
28 - patches/ssl3_padding.patch: SSL3 requires minimal padding in CBC mode. | |
29 - patches/srp_cert.patch: Prefer srp + cert over srp, to fix tests after | |
30 client_cipher_preferences.patch. | |
wtc
2014/04/08 22:41:17
Can you elaborate on this? Is it our tests or tlsl
davidben
2014/04/08 23:30:36
Yeah, it's tlslite's tests. Done.
| |
OLD | NEW |