1Name: tlslite 2URL: http://trevp.net/tlslite/ 3Version: 0.4.8 4Security Critical: No 5License: Public domain and BSD 6 7Description: Python TLS implementation for use with test server. 8 9Source: https://pypi.python.org/packages/source/t/tlslite/tlslite-0.4.8.tar.gz 10MD5: 36c13858ea63f262c4e4291c2f9ae38f 11SHA-512: bdb42d005b7444667badc6febd38f5b74878c09218b418844c255920f0e6272f 12 55f62b4ea21953953935f73e02657fce9874b44f73499267cf713ddbcd3d6a44 13 14Local Modifications: 15- Drop docs/ directory. 16- patches/tls_intolerant.patch: allow TLSLite to simulate a TLS-intolerant server. 17- patches/channel_id.patch: add basic ChannelID support. (Signatures are not 18 checked.) 19- patches/signed_certificate_timestamps.patch: add support for sending Signed 20 Certificate Timestamps over a TLS extension. 21- patches/fallback_scsv.patch: add support for TLS_FALLBACK_SCSV. See 22 https://tools.ietf.org/html/draft-bmoeller-tls-downgrade-scsv-01 23- patches/status_request.patch: add support for sending stapled OCSP responses. 24- patches/ssl3_padding.patch: SSL3 requires minimal padding in CBC mode. 25- patches/fix_test_file.patch: Fix #! line in random test file to appease our 26 presubmit checks. 27- patches/dhe_rsa.patch: Implement DHE_RSA-based cipher suites on the server. 28- patches/req_cert_types.patch: Add a reqCertTypes parameter to populate the 29 certificate_types field of CertificateRequest. Also fixes type errors. 30- patches/ignore_write_failure.patch: Don't invalidate sessions on write 31 failures. 32- patches/intolerance_options.patch: Add an option to further control 33 simulated TLS version intolerance. 34- patches/save_client_hello.patch: Save the parsed ClientHello on TLSConnection 35 so tests can query it. 36- patches/certificate_request.patch: Fix client auth for TLS 1.2. 37- patches/aes_gcm.patch: Implement AES-GCM and never select TLS 1.2 ciphers 38 unless >= TLS 1.2 is negotiated. 39- patches/alert_after_handshake.patch: Add an option to send a fatal alert 40 immediately after the handshake completes. 41- patches/ecdhe_rsa.patch: Implement ECDHE_RSA-based ciper suites on the server. 42- patches/extended_master_secret.patch: Add server support for extended 43 master secret. 44- patches/token_binding_negotiation.patch: Add server support for token 45 binding negotiation TLS extension (draft-ietf-tokbind-negotiation-02). 46- patches/disable_channel_id.patch: Add flag to HandshakeSettings to allow 47 for disabling channel id. 48- patches/exported_keying_material.patch: Add method to Session to get 49 exported keying material (RFC 5705) for use in e.g. Token Binding. 50- patches/token_binding_resumption.patch: Fix token binding negotiation 51 extension to work on session resumption. 52- patches/extension_number_update.patch: Update TLS extension numbers. 53- patches/save_randoms.patch: Save client and server randoms when resuming 54 sessions. 55- patches/alpn.path: Implement Application-Layer Protocol Negotiation Extension. 56- patches/token_binding_version.patch: Update the Token Binding version number. 57- patches/renegotiation_indication.patch: Implement the renegotiation 58 indication extension (RFC 5746) without supporting renegotiation. 59- patches/tls13_intolerance.patch: Extend the intolerance simulation to TLS 1.3. 60- patches/simulate_tls13_downgrade.patch: Add an option to simulate the TLS 1.3 61 downgrade signal. 62- patches/thread_safe_python_rsa_key.patch: Make Python_RSAKey thread safe, 63 inspired by tlslite-ng implementation. 64- patches/signature_algorithms.patch: Add basic signature algorithms 65 negotiation. 66