tttls1.3 0.3.5 → 0.3.7

data/spec/fixtures/rsa_rsa.key

@@ -1,27 +0,0 @@
------BEGIN RSA PRIVATE KEY-----
-MIIEowIBAAKCAQEAuucc7z0K7F10VbEOK3K5rzhdIHVld/CSpYR1K0udP/09EueR
-VEgZLlV1AwmQ8XTn9Mv+R2jG94ZuvPpXeQf6DbaD5SVlukoHPDixEUMvahqcEdJl
-zQ+Ep2faK+0Q1fLQBIPx86ua5ul8tlgpUkfpx4NrVYdks3Xt/Y+6PIryaRz83xMm
-Yd+8vaCImNvxT0KWwHvJ90nrNOA944WUaMrHXLp3lrht4eQyfV+CIWVATOeJxDuS
-EBJcmJxesWPy7RspH/PsnYrgGaWReRRhn6Iige13SMIUpStV0RXgWx0asgBY6Ujb
-asukT3SSDS7Hm8BugzUsXC5vdQumSWmqru0KdQIDAQABAoIBABPIjNaB9psIVV0Q
-rbhJn3/9jlX2NzRX4Z3lhGV9znpMet96ZXavXwL5hrY4mAAG6NqPkS3L2Guw7h3Q
-vduQzZYQAKwLplXuqg9kzNFP9D/d6zEzvRTUlK0HoB9QK50J45zmvoCVZIMWqd2/
-PTh5ZjR5I65c83rPe86AHS11Y61edr+vvGtI07kvj7EzR3jie0Lzzpj7TbmjTt5U
-v9rskcxjulQOmp8t/3ouptUhi16PRXPof0yzRGo6rrCUoQ7Cuy1dbFZ96dIBxrt4
-h9suE6MtpXdsGfI5FZPOKHqUcw8hZfUgeOYm4OTV3vBYie0xJ77i9YgqR+UwymjA
-NK4AOY0CgYEA553JtUvl8py76HjL3DxfbU38Dq22AF9sdUAs9Xwy9B8Y6R9SyrPI
-nab+3EE0gz5NnFLFCILK4A7ewe3OB3bE7/P4mc7JlUWM2LAcBz7K50seIKD3r+cj
-VzLHarOBi/VZ0pe1lDj/cuQ6cXTLHbKtk2XGCRnCBMJlog4ruFMYJ+sCgYEAzpRD
-3YtuQcT0rtvK05BcdWD3nGgsrAauLvKz80LIu4zX9nfz/H6lNRpZYJ2jrLR1ikbX
-XVWIsNlWizAuWEbGokUEYDTuhkh3591nrdPyB6/0Lm2Snl+q7mKIUFrZ08MXe7U8
-Z/qPq2VLVSzCyoGX0l4GuNymgDH6NVR/i5yQXx8CgYBNJ1OUz+aWbb1ukCagg3/q
-QksPfLAe6aqQWENhtvCmP2Gl7mg+26qdUY6eQh5DBdMGms/FqQP5pRpxEU1LUTYD
-FIsgeTDPR67GU8vSYglnCK/NgLFhaCZumpyxH4Cs5Zr5Os4ixOXbGMmbF6O9jdKi
-Qgm46FqoCTWfyQapTQzD5wKBgGQV4WuNCjZDPmkZhANMhf84o77bmgkek3WbkSPi
-z25OprN7GnLSySgZRARTW+Fo7Sm5eM53impkYlG9XjbW05X66kvSWV4l7jIgSwMl
-FLY0wZFc9RRWNXKZuoF0AuVeOBpvjHy0ILdhtEXoEdgbQXtios8d2G1zyU3dSo5R
-pIDxAoGBAIlXeI9tB0X9ywXKylI3CyHi8ex/k6o4WTj/5fH4bYp4faHBRm78Ho81
-Ih9rewMw7fMC3YUN3rcyvHRQqbJ2Wcxpyf0k45GMxTRasoVXCXgV/sMNCHh/ddZM
-Gf5ZTeq10gJPofBlPObg5VrlCLRnIFaNI4izpq2A+/FqTrEvSGlf
------END RSA PRIVATE KEY-----

data/spec/fixtures/rsa_rsa_ocsp.crt

@@ -1,18 +0,0 @@
------BEGIN CERTIFICATE-----
-MIIC4TCCAcmgAwIBAgIJALkL6IyOlMwWMA0GCSqGSIb3DQEBCwUAMBIxEDAOBgNV
-BAMMB3Rlc3QtY2EwHhcNMTkxMTI2MDczMzExWhcNMjkxMTIzMDczMzExWjAUMRIw
-EAYDVQQDDAl0ZXN0LW9jc3AwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
-AQDapLrB5S2yXQ9Wt/O9SZzoMW8IChsPgtZYC8h4Z/bcbqRb/6Bq5YfcYxq84cD/
-8xn7e8R2OCNgva8GBlMy7d0czt3ysLnNlZ+dPu7MU4yS/R40LOhMGEf71mf6PLqj
-1ecaEclgbIhyIGHlUXQIAnhhpAwzHxKVAhcgBgQFs8NgNViAE3BpjyUW0qXE5RUY
-BQ7V9/Kn/fnsfOk6jMF20V2Kxn5Sj/c+D59+vFX3FmQyqsTKoAKoUuNsFOvHGV0d
-gxLggE5wq4AodrA40MY95HgCZ2rDfEKgfc9rKhLGz6s0etGFMVtjqK6YvpQYUOaS
-8JStLrGF1eINoJJFibIf69v9AgMBAAGjODA2MAkGA1UdEwQCMAAwEwYDVR0lBAww
-CgYIKwYBBQUHAwkwFAYDVR0RBA0wC4IJdGVzdC1vY3NwMA0GCSqGSIb3DQEBCwUA
-A4IBAQBHC6jRQyZhBJIdfP9CGpNO1dNHicwpFJ61ofwgzW1jEkVfBtVpqvEaEbYE
-LVxru1s8VY281trhwRuZkDRv5hB/CUUbdPICwQlkyCdUoYURrJEm/mirK9494AGh
-f33S+bMXZGAYLYoPYlSGj8EpL1Do3nvJK8//coRJlTEBcfgIIUlRMaeOiGrg3zpM
-1KGxO3GtG1mpod7BEMv3ZGI85p8wXF4N2Z+phBoAyRGW+R4VW3tF5bbqiKlRr3Lt
-HNsuXHSQykKpxD085eeQLTZGVESrCcmNv8XvVxwGE1r0kmlwexADNvP3HDXseie+
-8QFIt+zvJb/lDy4xbCT/M4a7L9Gn
------END CERTIFICATE-----

data/spec/fixtures/rsa_rsa_ocsp.key

@@ -1,27 +0,0 @@
------BEGIN RSA PRIVATE KEY-----
-MIIEpAIBAAKCAQEA2qS6weUtsl0PVrfzvUmc6DFvCAobD4LWWAvIeGf23G6kW/+g
-auWH3GMavOHA//MZ+3vEdjgjYL2vBgZTMu3dHM7d8rC5zZWfnT7uzFOMkv0eNCzo
-TBhH+9Zn+jy6o9XnGhHJYGyIciBh5VF0CAJ4YaQMMx8SlQIXIAYEBbPDYDVYgBNw
-aY8lFtKlxOUVGAUO1ffyp/357HzpOozBdtFdisZ+Uo/3Pg+ffrxV9xZkMqrEyqAC
-qFLjbBTrxxldHYMS4IBOcKuAKHawONDGPeR4Amdqw3xCoH3PayoSxs+rNHrRhTFb
-Y6iumL6UGFDmkvCUrS6xhdXiDaCSRYmyH+vb/QIDAQABAoIBAQC/s1D/siYHzeol
-+XFelI1bVARqwxmI1wmB9wrU7yqViPjYpN+M+iTNyaLm2vUyNH6ibZkKohv6tTUh
-DiiibcXBfWtCX0r5gueIomYThmmpcv6pdnpSRbPPjeRqlhZ6kZBn3hJ3VZGoptXO
-j0UxxKCx03jS1bqgJU4LSNr7+OojjeKh8D9bxwCizhGx9239QwChtQTPr4U3aeTb
-Qwx8WtNH/2zvpdylyXW/eg8MO4WPYXpxWSGQnRJG5knPa7hF+iRnszysbUPNBVUd
-TUQJHBdtukt+7hDbPyMpMu0DwpqhOqsEk2avacWuCYEEE/SWmJ/mvLokbfECSUpy
-ZqfXJPLNAoGBAPtd+m2YVmLJmjO2skv+zGG5KhHNF2cY6xLQWuHW/yChNjSzpLYm
-YygyOd4hBH39ieQkBRs0QOX9S5Dzv6ERU1cr0CVDJeb9TQ9UTxXc01paJ+aoZNr5
-uHoGO16xBR4tmidc4HmbHDFSwmRAFhkooHM9MVACUFABIdWqwEwSZa/HAoGBAN6s
-WhPrsDyRAfKFV9bwD1P5aMPu6pjWOFO3bRIisPRtVzilamCkKvXCh1SyYHaNRjjG
-fQYEZeCZTxHi7GxZltRG5DRsmm8rDz6E4OrTQMHfQNDiuw78uZZ9+YYwaIM3nt1i
-/lN2hs79zj/HPf5qX9rw+CarOL0bdW97a/Monx4bAoGAeMqXXfT3hi9E15bypQxD
-IK6/JaC9n0BdLkRLd/09ymtNxhORkipuOdGw9yo8o2Kj0arxfTol+Z83oedP7dGK
-j/gw5McYvqB4WGZ2PpZIRkHOrMu883FPEexOuVktkWvuiP3brPQ5nwYa/dvCAsMA
-H4CHYuBJwbhZjvinwaaRkN8CgYA9sQh/zmOUVCRy+Yh9jyLgBBCHgDDUyTzvzLjW
-NnBKN+TbV9DiF3mjfxKZX5YkIj3bSvqmaR+Em1Txwqn31tZX15AwCgq7U/W0P4JE
-7ORbEixV8wsaOuB8FkjEabL677T+5wdJPmRZAq5asyu0yenmsa4+oF9m3S2rBknB
-I3b6EwKBgQD1+0+xdGomMeKHg8jWuDytdlWmNXmbiV0g2yOm533jG67vGDPfgd0H
-PNC62d7r5EhIVJwQZmW/GdOfZ7tI91XN+GjNyslr9t299hoMeRMT+Db2U+mQvKuS
-Oz+MHhO8YnOz9GFbQShqiCFj4zTU/0Ga/BY8Y52lURftt/QIXo+7Vg==
------END RSA PRIVATE KEY-----

data/spec/fixtures/rsa_rsassaPss.crt

@@ -1,20 +0,0 @@
------BEGIN CERTIFICATE-----
-MIIDOTCCAfGgAwIBAgIJAIRaPtlbsnO/MD0GCSqGSIb3DQEBCjAwoA0wCwYJYIZI
-AWUDBAIBoRowGAYJKoZIhvcNAQEIMAsGCWCGSAFlAwQCAaIDAgEgMBIxEDAOBgNV
-BAMMB3Rlc3QtY2EwHhcNMTkwNTI1MDE0MjM2WhcNMjkwNTIyMDE0MjM2WjAUMRIw
-EAYDVQQDDAlsb2NhbGhvc3QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
-AQDW7BNlVE8xg7M1VND+HwpmDF5v2F4GtKhD/c79Ge6bnXa1GPyvLV7FpVZdCtkz
-VfNF50urICV2TzlRzaTu4uoM9DeZRfmI/YIk9PSqLXiqmjpd382B5BD6EzDmHKNr
-6HrkcMHrMfsif7hJkCIofYh98Kh5L5c/kS6fzNXIbOeexq62cVB+835+xCXQHNGN
-iLijlmhi3sEbBoI+GF/aiYt+Nz0X6mfPjHdSoZrbY5biiBeYG91fw9nmli/eV3nV
-VMlOD3O+tDZo/A2QlZlG0UcIn4no0KFKCZNZm0H5jF9Q/S3o+HcjvWAtg7phk8qH
-OVlzrgaLH8RVERIUJHflSQOlAgMBAAGjMDAuMAkGA1UdEwQCMAAwCwYDVR0PBAQD
-AgKEMBQGA1UdEQQNMAuCCWxvY2FsaG9zdDA9BgkqhkiG9w0BAQowMKANMAsGCWCG
-SAFlAwQCAaEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgGiAwIBIAOCAQEAayq/
-jL1hEkL+tguCdfn80mYQKxeteFstJt+cHKKrfpqPmxm/ponGsUK/64tziPIazWgI
-jkoNH9JZhZ+H4Gy3hcUr5emK+o2swqWT1xzT4/6QtCmtSJeXPD6Jap2v7HpG+xeM
-V3tIuSrIwv5Tg80p1waDWodlXJH1G1raXZ/wzBlx+QH7BRPuUrOMkYQlVPTvXfjD
-SRSz7zHe5o4zv5nQMU8qA4e7X8ZE8nFUjptSwg1nx1TSdGAMHiZG/QBAH3CKqQ4p
-jzJJS3cemsjrW7dq4TfeFGHWD1oE3/Q6LzvtLVIyRGU+GTjP3ltJ17KxSHraGg8V
-Na3zecUHuS+C02ovFw==
------END CERTIFICATE-----

data/spec/fixtures/rsa_rsassaPss.key

@@ -1,27 +0,0 @@
------BEGIN RSA PRIVATE KEY-----
-MIIEowIBAAKCAQEA1uwTZVRPMYOzNVTQ/h8KZgxeb9heBrSoQ/3O/Rnum512tRj8
-ry1exaVWXQrZM1XzRedLqyAldk85Uc2k7uLqDPQ3mUX5iP2CJPT0qi14qpo6Xd/N
-geQQ+hMw5hyja+h65HDB6zH7In+4SZAiKH2IffCoeS+XP5Eun8zVyGznnsautnFQ
-fvN+fsQl0BzRjYi4o5ZoYt7BGwaCPhhf2omLfjc9F+pnz4x3UqGa22OW4ogXmBvd
-X8PZ5pYv3ld51VTJTg9zvrQ2aPwNkJWZRtFHCJ+J6NChSgmTWZtB+YxfUP0t6Ph3
-I71gLYO6YZPKhzlZc64Gix/EVRESFCR35UkDpQIDAQABAoIBAQCh3+Nn8Y1IPOqw
-Y3aZwCVj4TMLyIphQJZvx22sYmi+GmZ7VhuTkXeNI8+dentHWBhH8UKj3C17I4aH
-n3z3VD92jEaIEhU1YcMxNLJGrsLwtAL8C4HMsEs9H1E4MB/CObK99lOIYvfE7y+N
-cJrZpls0iBtMU1T20tGsGGp4b9YwVhDx7TI7E8Gn/gCtc9aMfBTnCSTqlq6RaFoF
-hIYMczBW9mHB40PPbwBtNUyT7+xo1nkyTpI24iUR6UNOKyUVQXgZQ4IAclvvXFIe
-TBQfzi3O6LP+OY+jawkeZho+KvNds3jU/bDkHyHqimtVkkhZFwSe8yf+TDskdVgm
-LF4iJa+tAoGBAPjYmt2vT3ck/1rGJ7eq6VaJWic821h+LjwrGpBCVz9rqndZsREM
-Ww04Zs9aGUEVKXUB5ecSERWO2r+IITXw/QniZWxFTF+iVn+xjNcPBEUIW8/sZit7
-VA2fXppW80gzWCUbY5GAp1lP7HmCf5AYtSEAE2NR5pQdiRZmT6hCn1QXAoGBAN0Z
-zlDJpT0OT2NHoUfK4wvui8AC8MoBYEgeRiLHBFkJkZY1m1si1Y5H5sc+8eL0Cgf4
-JQASdXB+7alg4Lisr5injVz9tgEuMdSJSdV8ULCCMEidQU7JNpsqUlnURBmWFiT3
-o8BKp5cHw5DNaqHReqyP7BvyidUttgYV0EQsc++jAoGAKsf6X/Baxg37RJzaiS39
-7Z2xfRtuTllrE3cJmxF8tG+LH/ewhFDOeohezHkd7F16Ah6warhlbYJgwxrhMsfa
-iM9+Rk3nom1jV5KrtvFi94dHWYi3y/Po8GqctgYKzzfciIyb4pDutGEUM5Om4JwO
-z7yWmLWk4YPuZIZ0XWYOxEMCgYBS0Su6jw1ZxVZvNZFvtss82Ol3zqIqyEEsQkq7
-FBjI0RC7VvEOPgoH9V64Gxe3jvmC6qvRTxi2PpT+8M673dMYNwp4XoAiCQ+ZMKN7
-V8lRlDJJwL2JqUzO6hdWlm+7tcAtsKShjlUf+USDpK3gVvrAUFh8T2jZdPnNZbZR
-EuWKSQKBgAgDE7sgZZteyyZObaoVFgZIQtgAVR6VoWgrruMmBU4t01Axr5+wmtPU
-w7uutWkPemGf+MbfqjWyjdfR7gIlaPshmRLfcTcEtodUaMGO8PEbqOqENXRrhDag
-OMtrcu6HNKV0YwAjW+r37A4HVRYkzGkF3COnseUIH3sISHklade9
------END RSA PRIVATE KEY-----

data/spec/fixtures/rsa_secp256r1.crt

@@ -1,14 +0,0 @@
------BEGIN CERTIFICATE-----
-MIICDTCB9qADAgECAgkA0i+ulU4TnLIwDQYJKoZIhvcNAQELBQAwEjEQMA4GA1UE
-AwwHdGVzdC1jYTAeFw0xOTA1MjUwMTQyMzZaFw0yOTA1MjIwMTQyMzZaMBQxEjAQ
-BgNVBAMMCWxvY2FsaG9zdDBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABKiwh2oW
-7PTxGbN5oO82jxEwQ1ZVweWviU4gwAnms8RVNTYBKj/ZCuuWCGtsB91zhzrOkATt
-mMTGrKHJzMGjP4ajMDAuMAkGA1UdEwQCMAAwCwYDVR0PBAQDAgKEMBQGA1UdEQQN
-MAuCCWxvY2FsaG9zdDANBgkqhkiG9w0BAQsFAAOCAQEAColT35sqr72ge00Sm9Ww
-YolLHhGcdCWXH0AnuxMUdMwUBx9tLd4CQUVSS2OYeiKigbYYgBcPelzo7Vka0mNy
-/mSYW1cCDe3Lh7qKyBbf4bGKviag2KZzpOHD858BzWmX40moSxzwhh4HJoy4OsGp
-QXheM3Zgv4CD4GleUerK1OsHoDnA8QLqZ0DPpCGUhb1Nfqce5+ecQHdELNqTt3hD
-m7z4hc06NYoel4HQTWRt1UXQivkkrFkOiuzT6DOYF5CMy5BwPKxMlCqiE5ObxwVl
-AAB9A6XGxeUa2ZJUdtAzESzm6Azy7evGh+3b/QO3rlcd7mMHHvNXl1EpX3upvhK9
-LA==
------END CERTIFICATE-----

data/spec/fixtures/rsa_secp256r1.key

@@ -1,5 +0,0 @@
------BEGIN EC PRIVATE KEY-----
-MHcCAQEEIHf3C/ryQ5xIBbSj+OfwSLXGFEh9WT5HbklavzjJ2aD3oAoGCCqGSM49
-AwEHoUQDQgAEqLCHahbs9PEZs3mg7zaPETBDVlXB5a+JTiDACeazxFU1NgEqP9kK
-65YIa2wH3XOHOs6QBO2YxMasocnMwaM/hg==
------END EC PRIVATE KEY-----

data/spec/fixtures/rsa_secp384r1.crt

@@ -1,14 +0,0 @@
------BEGIN CERTIFICATE-----
-MIICKzCCAROgAwIBAgIJAILLdBXeo7wWMA0GCSqGSIb3DQEBCwUAMBIxEDAOBgNV
-BAMMB3Rlc3QtY2EwHhcNMTkwNTI1MDE0MjM2WhcNMjkwNTIyMDE0MjM2WjAUMRIw
-EAYDVQQDDAlsb2NhbGhvc3QwdjAQBgcqhkjOPQIBBgUrgQQAIgNiAARnaVUUcy6O
-TbFJyF9qTNhwH54qYGab+9hLTitZ1rDw6DL31aVmh1aOC9+Cn8yGESL26Pt7LfeU
-GnexSIT0+Igmim501WjfHa+KwpWPsRqiGnIKzXy6MVTbxJdTZvJ9agmjMDAuMAkG
-A1UdEwQCMAAwCwYDVR0PBAQDAgKEMBQGA1UdEQQNMAuCCWxvY2FsaG9zdDANBgkq
-hkiG9w0BAQsFAAOCAQEAUJ0Av0mdfaJHF09bc77cFBcokrfkXa9dR0SEjcGIzevk
-kf/dsErR9wHmDR6nmYW6dA41equDFNAEDCosRvAW0RIe4TegwSLmcnZr6w9+2gfU
-yXqvaEkJsks3COZeiH6Is0SXiC6IuL3w2Y+M9IptjgqYukFz15Bv434NYup+Zr9T
-Eq0dQp5p+pM/NNjRekEQOiJq4P+98D3bR689byDwkdlXkpUmvoYBXkoqqtXE22T0
-cAAAVA+qj8jGVg0HH/acnpXyWZuQaG3gpY9vkyskVcGc4Q8qN9U53IpyI8QMeRJy
-pGUnRLCltIIT0WyIVucvCzJ0v9M88yU8Qyx4Tm2fAg==
------END CERTIFICATE-----

data/spec/fixtures/rsa_secp384r1.key

@@ -1,6 +0,0 @@
------BEGIN EC PRIVATE KEY-----
-MIGkAgEBBDCyZusDHIZWr1uWefvcMticNHQYSHJ456lB6z0qKQKy7HPA6k8Tp/9E
-bwyyJSS7/sCgBwYFK4EEACKhZANiAARnaVUUcy6OTbFJyF9qTNhwH54qYGab+9hL
-TitZ1rDw6DL31aVmh1aOC9+Cn8yGESL26Pt7LfeUGnexSIT0+Igmim501WjfHa+K
-wpWPsRqiGnIKzXy6MVTbxJdTZvJ9agk=
------END EC PRIVATE KEY-----

data/spec/fixtures/rsa_secp521r1.crt

@@ -1,15 +0,0 @@
------BEGIN CERTIFICATE-----
-MIICUTCCATmgAwIBAgIJAKkpp78+S8JUMA0GCSqGSIb3DQEBCwUAMBIxEDAOBgNV
-BAMMB3Rlc3QtY2EwHhcNMTkwNTI1MDE0MjM2WhcNMjkwNTIyMDE0MjM2WjAUMRIw
-EAYDVQQDDAlsb2NhbGhvc3QwgZswEAYHKoZIzj0CAQYFK4EEACMDgYYABAA2hmEd
-+V4JM974u/DSPW7uGafw5mF9XngzGU2HeIhY4vXDzt884Rt4kjpcAByAjxtbVhB9
-byPwc5FN6LrZiatB+gBDIija5Fq6d1gn3nXESirdZrMyLAlykXhS7nywOx0HDCYq
-2sD0lIMZXB04kFVC+XQsLqwA5J1k87oQ3EwEjwJVzKMwMC4wCQYDVR0TBAIwADAL
-BgNVHQ8EBAMCAoQwFAYDVR0RBA0wC4IJbG9jYWxob3N0MA0GCSqGSIb3DQEBCwUA
-A4IBAQBOUnOHUsJPNO56nvFLbIn1COnyRPo3C1BpGpV9uk6mzGuQ0jvDUhN01A5m
-F/OZ4wmeOBRkzPgUbbcTeUVNtZX3V9Js6V9MFwNQjgLgYPC0soGJbexVWpg5ZEUu
-ishnmsllej4cMD3XNO1UFSUzjqE0OHIYzp38wIiI7Jx4nBnFTUw4EneACbj1ZCJM
-5BP8c6522FCYgsA+97itp7sSjCYqD6u4IIwi0GhcISrn2DPwAsWhAYf5AadL5+Di
-jaoKheW5xjs3jbK6w62yGkmaECKIq9kKv7d1rqdgn3FB4NP+KP6UPxPeFDaiqcr6
-f8K7pV48fGr0TNhPPWwGbZEejhHF
------END CERTIFICATE-----

data/spec/fixtures/rsa_secp521r1.key

@@ -1,7 +0,0 @@
------BEGIN EC PRIVATE KEY-----
-MIHcAgEBBEIBpLFBw5Z/X6SoBwA8uOZczz8UB3uiQv2LpVhIp4GFOyRJKx5x3YL7
-jrx2zaaIdaGFi82tJ8UEAcdEknCXkWFhKfKgBwYFK4EEACOhgYkDgYYABAA2hmEd
-+V4JM974u/DSPW7uGafw5mF9XngzGU2HeIhY4vXDzt884Rt4kjpcAByAjxtbVhB9
-byPwc5FN6LrZiatB+gBDIija5Fq6d1gn3nXESirdZrMyLAlykXhS7nywOx0HDCYq
-2sD0lIMZXB04kFVC+XQsLqwA5J1k87oQ3EwEjwJVzA==
------END EC PRIVATE KEY-----

data/spec/key_schedule_spec.rb

@@ -1,221 +0,0 @@
-# encoding: ascii-8bit
-# frozen_string_literal: true
-
-require_relative 'spec_helper'
-
-RSpec.describe KeySchedule do
-  context 'key_schedule, Simple 1-RTT Handshake,' do
-    let(:key_schedule) do
-      ch = ClientHello.deserialize(TESTBINARY_CLIENT_HELLO)
-      sh = ServerHello.deserialize(TESTBINARY_SERVER_HELLO)
-      ee = EncryptedExtensions.deserialize(TESTBINARY_ENCRYPTED_EXTENSIONS)
-      ct = Certificate.deserialize(TESTBINARY_CERTIFICATE)
-      cv = CertificateVerify.deserialize(TESTBINARY_CERTIFICATE_VERIFY)
-      sf = Finished.deserialize(TESTBINARY_SERVER_FINISHED)
-      cf = Finished.deserialize(TESTBINARY_CLIENT_FINISHED)
-      transcript = Transcript.new
-      transcript.merge!(
-        CH => [ch, TESTBINARY_CLIENT_HELLO],
-        SH => [sh, TESTBINARY_SERVER_HELLO],
-        EE => [ee, TESTBINARY_ENCRYPTED_EXTENSIONS],
-        CT => [ct, TESTBINARY_CERTIFICATE],
-        CV => [cv, TESTBINARY_CERTIFICATE_VERIFY],
-        SF => [sf, TESTBINARY_SERVER_FINISHED],
-        CF => [cf, TESTBINARY_CLIENT_FINISHED]
-      )
-      KeySchedule.new(shared_secret: TESTBINARY_SHARED_SECRET,
-                      cipher_suite: CipherSuite::TLS_AES_128_GCM_SHA256,
-                      transcript:)
-    end
-
-    it 'should generate secret' do
-      expect(key_schedule.client_handshake_traffic_secret)
-        .to eq TESTBINARY_C_HS_TRAFFIC
-      expect(key_schedule.server_handshake_traffic_secret)
-        .to eq TESTBINARY_S_HS_TRAFFIC
-      expect(key_schedule.client_application_traffic_secret)
-        .to eq TESTBINARY_C_AP_TRAFFIC
-      expect(key_schedule.server_application_traffic_secret)
-        .to eq TESTBINARY_S_AP_TRAFFIC
-      expect(key_schedule.exporter_secret)
-        .to eq TESTBINARY_EXP_MASTER
-      expect(key_schedule.resumption_secret)
-        .to eq TESTBINARY_RES_MASTER
-    end
-
-    it 'should generate server finished_key' do
-      expect(key_schedule.server_finished_key)
-        .to eq TESTBINARY_SERVER_FINISHED_KEY
-    end
-
-    it 'should generate server parameters write_key, iv' do
-      expect(key_schedule.server_handshake_write_key)
-        .to eq TESTBINARY_SERVER_PARAMETERS_WRITE_KEY
-      expect(key_schedule.server_handshake_write_iv)
-        .to eq TESTBINARY_SERVER_PARAMETERS_WRITE_IV
-    end
-
-    it 'should generate client finished_key' do
-      expect(key_schedule.client_finished_key)
-        .to eq TESTBINARY_CLIENT_FINISHED_KEY
-    end
-
-    it 'should generate client finished write_key, iv' do
-      expect(key_schedule.client_handshake_write_key)
-        .to eq TESTBINARY_CLIENT_FINISHED_WRITE_KEY
-      expect(key_schedule.client_handshake_write_iv)
-        .to eq TESTBINARY_CLIENT_FINISHED_WRITE_IV
-    end
-
-    it 'should generete server application write_key, iv' do
-      expect(key_schedule.server_application_write_key)
-        .to eq TESTBINARY_SERVER_APPLICATION_WRITE_KEY
-      expect(key_schedule.server_application_write_iv)
-        .to eq TESTBINARY_SERVER_APPLICATION_WRITE_IV
-    end
-
-    it 'should generete client application write_key, iv' do
-      expect(key_schedule.client_application_write_key)
-        .to eq TESTBINARY_CLIENT_APPLICATION_WRITE_KEY
-      expect(key_schedule.client_application_write_iv)
-        .to eq TESTBINARY_CLIENT_APPLICATION_WRITE_IV
-    end
-  end
-
-  context 'key_schedule, Resumed 0-RTT Handshake,' do
-    let(:key_schedule) do
-      ch = ClientHello.deserialize(TESTBINARY_0_RTT_CLIENT_HELLO)
-      sh = ServerHello.deserialize(TESTBINARY_0_RTT_SERVER_HELLO)
-      ee = EncryptedExtensions.deserialize(
-        TESTBINARY_0_RTT_ENCRYPTED_EXTENSIONS
-      )
-      sf = Finished.deserialize(TESTBINARY_0_RTT_SERVER_FINISHED)
-      eoed = EndOfEarlyData.deserialize(TESTBINARY_0_RTT_END_OF_EARLY_DATA)
-      cf = Finished.deserialize(TESTBINARY_0_RTT_CLIENT_FINISHED)
-      transcript = Transcript.new
-      transcript.merge!(
-        CH => [ch, TESTBINARY_0_RTT_CLIENT_HELLO],
-        SH => [sh, TESTBINARY_0_RTT_SERVER_HELLO],
-        EE => [ee, TESTBINARY_0_RTT_ENCRYPTED_EXTENSIONS],
-        SF => [sf, TESTBINARY_0_RTT_SERVER_FINISHED],
-        EOED => [eoed, TESTBINARY_0_RTT_END_OF_EARLY_DATA],
-        CF => [cf, TESTBINARY_0_RTT_CLIENT_FINISHED]
-      )
-      KeySchedule.new(psk: TESTBINARY_0_RTT_PSK,
-                      shared_secret: TESTBINARY_0_RTT_SHARED_SECRET,
-                      cipher_suite: CipherSuite::TLS_AES_128_GCM_SHA256,
-                      transcript:)
-    end
-
-    it 'should generate server parameters write_key, iv' do
-      expect(key_schedule.server_handshake_write_key)
-        .to eq TESTBINARY_0_RTT_SERVER_PARAMETERS_WRITE_KEY
-      expect(key_schedule.server_handshake_write_iv)
-        .to eq TESTBINARY_0_RTT_SERVER_PARAMETERS_WRITE_IV
-    end
-
-    it 'should generete client application write_key, iv' do
-      expect(key_schedule.client_application_write_key)
-        .to eq TESTBINARY_0_RTT_CLIENT_APPLICATION_WRITE_KEY
-      expect(key_schedule.client_application_write_iv)
-        .to eq TESTBINARY_0_RTT_CLIENT_APPLICATION_WRITE_IV
-    end
-  end
-
-  context 'key_schedule, Resumed 0-RTT Handshake, ' \
-          'not negotiated shared_secret yet,' do
-    let(:key_schedule) do
-      ch = ClientHello.deserialize(TESTBINARY_0_RTT_CLIENT_HELLO)
-      transcript = Transcript.new
-      transcript[CH] = [ch, TESTBINARY_0_RTT_CLIENT_HELLO]
-      KeySchedule.new(psk: TESTBINARY_0_RTT_PSK,
-                      shared_secret: nil,
-                      cipher_suite: CipherSuite::TLS_AES_128_GCM_SHA256,
-                      transcript:)
-    end
-
-    it 'should generate binder key for resumption PSKs' do
-      expect(key_schedule.binder_key_res)
-        .to eq TESTBINARY_0_RTT_BINDER_KEY_RES
-    end
-
-    it 'should generate client_early_traffic_secret' do
-      expect(key_schedule.client_early_traffic_secret)
-        .to eq TESTBINARY_0_RTT_C_E_TRAFFIC
-    end
-
-    it 'should generate 0-RTT application write_key, iv' do
-      expect(key_schedule.early_data_write_key)
-        .to eq TESTBINARY_0_RTT_EARLY_DATA_WRITE_KEY
-      expect(key_schedule.early_data_write_iv)
-        .to eq TESTBINARY_0_RTT_EARLY_DATA_WRITE_IV
-    end
-  end
-
-  context 'key_schedule, HelloRetryRequest,' do
-    let(:key_schedule) do
-      ch1 = ClientHello.deserialize(TESTBINARY_HRR_CLIENT_HELLO1)
-      hrr = ServerHello.deserialize(TESTBINARY_HRR_HELLO_RETRY_REQUEST)
-      ch = ClientHello.deserialize(TESTBINARY_HRR_CLIENT_HELLO)
-      sh = ServerHello.deserialize(TESTBINARY_HRR_SERVER_HELLO)
-      ee = EncryptedExtensions.deserialize(TESTBINARY_HRR_ENCRYPTED_EXTENSIONS)
-      ct = Certificate.deserialize(TESTBINARY_HRR_CERTIFICATE)
-      cv = CertificateVerify.deserialize(TESTBINARY_HRR_CERTIFICATE_VERIFY)
-      sf = Finished.deserialize(TESTBINARY_HRR_SERVER_FINISHED)
-      cf = Finished.deserialize(TESTBINARY_HRR_CLIENT_FINISHED)
-      transcript = Transcript.new
-      transcript.merge!(
-        CH1 => [ch1, TESTBINARY_HRR_CLIENT_HELLO1],
-        HRR => [hrr, TESTBINARY_HRR_HELLO_RETRY_REQUEST],
-        CH => [ch, TESTBINARY_HRR_CLIENT_HELLO],
-        SH => [sh, TESTBINARY_HRR_SERVER_HELLO],
-        EE => [ee, TESTBINARY_HRR_ENCRYPTED_EXTENSIONS],
-        CT => [ct, TESTBINARY_HRR_CERTIFICATE],
-        CV => [cv, TESTBINARY_HRR_CERTIFICATE_VERIFY],
-        SF => [sf, TESTBINARY_HRR_SERVER_FINISHED],
-        CF => [cf, TESTBINARY_HRR_CLIENT_FINISHED]
-      )
-      KeySchedule.new(shared_secret: TESTBINARY_HRR_SHARED_SECRET,
-                      cipher_suite: CipherSuite::TLS_AES_128_GCM_SHA256,
-                      transcript:)
-    end
-
-    it 'should generate server finished_key' do
-      expect(key_schedule.server_finished_key)
-        .to eq TESTBINARY_HRR_SERVER_FINISHED_KEY
-    end
-
-    it 'should generate server parameters write_key, iv' do
-      expect(key_schedule.server_handshake_write_key)
-        .to eq TESTBINARY_HRR_SERVER_PARAMETERS_WRITE_KEY
-      expect(key_schedule.server_handshake_write_iv)
-        .to eq TESTBINARY_HRR_SERVER_PARAMETERS_WRITE_IV
-    end
-
-    it 'should generate client finished_key' do
-      expect(key_schedule.client_finished_key)
-        .to eq TESTBINARY_HRR_CLIENT_FINISHED_KEY
-    end
-
-    it 'should generate client finished write_key, iv' do
-      expect(key_schedule.client_handshake_write_key)
-        .to eq TESTBINARY_HRR_CLIENT_FINISHED_WRITE_KEY
-      expect(key_schedule.client_handshake_write_iv)
-        .to eq TESTBINARY_HRR_CLIENT_FINISHED_WRITE_IV
-    end
-
-    it 'should generete server application write_key, iv' do
-      expect(key_schedule.server_application_write_key)
-        .to eq TESTBINARY_HRR_SERVER_APPLICATION_WRITE_KEY
-      expect(key_schedule.server_application_write_iv)
-        .to eq TESTBINARY_HRR_SERVER_APPLICATION_WRITE_IV
-    end
-
-    it 'should generete client application write_key, iv' do
-      expect(key_schedule.client_application_write_key)
-        .to eq TESTBINARY_HRR_CLIENT_APPLICATION_WRITE_KEY
-      expect(key_schedule.client_application_write_iv)
-        .to eq TESTBINARY_HRR_CLIENT_APPLICATION_WRITE_IV
-    end
-  end
-end

data/spec/key_share_spec.rb

@@ -1,199 +0,0 @@
-# encoding: ascii-8bit
-# frozen_string_literal: true
-
-require_relative 'spec_helper'
-using Refinements
-
-RSpec.describe KeyShare do
-  context 'valid key_share, KeyShareClientHello,' do
-    let(:public_key_secp384r1) do
-      "\x04" + OpenSSL::Random.random_bytes(96)
-    end
-
-    let(:public_key_secp256r1) do
-      "\x04" + OpenSSL::Random.random_bytes(64)
-    end
-
-    let(:extension) do
-      KeyShare.new(
-        msg_type: HandshakeType::CLIENT_HELLO,
-        key_share_entry: [
-          KeyShareEntry.new(
-            group: NamedGroup::SECP384R1,
-            key_exchange: public_key_secp384r1
-          ),
-          KeyShareEntry.new(
-            group: NamedGroup::SECP256R1,
-            key_exchange: public_key_secp256r1
-          )
-        ]
-      )
-    end
-
-    it 'should be generated' do
-      expect(extension.msg_type).to eq HandshakeType::CLIENT_HELLO
-      expect(extension.extension_type).to eq ExtensionType::KEY_SHARE
-      expect(extension.key_share_entry[0].group).to eq NamedGroup::SECP384R1
-      expect(extension.key_share_entry[0].key_exchange)
-        .to eq public_key_secp384r1
-      expect(extension.key_share_entry[1].group).to eq NamedGroup::SECP256R1
-      expect(extension.key_share_entry[1].key_exchange)
-        .to eq public_key_secp256r1
-    end
-
-    it 'should be serialized' do
-      expect(extension.serialize)
-        .to eq ExtensionType::KEY_SHARE \
-               + 172.to_uint16 \
-               + 170.to_uint16 \
-               + NamedGroup::SECP384R1 \
-               + NamedGroup.key_exchange_len(NamedGroup::SECP384R1).to_uint16 \
-               + public_key_secp384r1 \
-               + NamedGroup::SECP256R1 \
-               + NamedGroup.key_exchange_len(NamedGroup::SECP256R1).to_uint16 \
-               + public_key_secp256r1
-    end
-  end
-
-  context 'valid key_share, empty KeyShare.client_shares vector' do
-    let(:extension) do
-      KeyShare.new(
-        msg_type: HandshakeType::CLIENT_HELLO,
-        key_share_entry: []
-      )
-    end
-
-    it 'should be generated' do
-      expect(extension.msg_type).to eq HandshakeType::CLIENT_HELLO
-      expect(extension.extension_type).to eq ExtensionType::KEY_SHARE
-      expect(extension.key_share_entry).to be_empty
-    end
-
-    it 'should be serialized' do
-      expect(extension.serialize).to eq ExtensionType::KEY_SHARE \
-                                        + 2.to_uint16 \
-                                        + 0.to_uint16
-    end
-  end
-
-  context 'valid key_share, KeyShareServerHello,' do
-    let(:public_key_secp256r1) do
-      "\x04" + OpenSSL::Random.random_bytes(64)
-    end
-
-    let(:extension) do
-      KeyShare.new(
-        msg_type: HandshakeType::SERVER_HELLO,
-        key_share_entry: [
-          KeyShareEntry.new(
-            group: NamedGroup::SECP256R1,
-            key_exchange: public_key_secp256r1
-          )
-        ]
-      )
-    end
-
-    it 'should be generated' do
-      expect(extension.msg_type).to eq HandshakeType::SERVER_HELLO
-      expect(extension.extension_type).to eq ExtensionType::KEY_SHARE
-      expect(extension.key_share_entry[0].group).to eq NamedGroup::SECP256R1
-      expect(extension.key_share_entry[0].key_exchange)
-        .to eq public_key_secp256r1
-    end
-
-    it 'should be serialized' do
-      expect(extension.serialize)
-        .to eq ExtensionType::KEY_SHARE \
-               + 69.to_uint16 \
-               + NamedGroup::SECP256R1 \
-               + public_key_secp256r1.prefix_uint16_length
-    end
-  end
-
-  context 'valid key_share, KeyShareHelloRetryRequest,' do
-    let(:extension) do
-      KeyShare.new(
-        msg_type: HandshakeType::HELLO_RETRY_REQUEST,
-        key_share_entry: [
-          KeyShareEntry.new(
-            group: NamedGroup::SECP256R1,
-            key_exchange: nil
-          )
-        ]
-      )
-    end
-
-    it 'should be generated' do
-      expect(extension.msg_type).to eq HandshakeType::HELLO_RETRY_REQUEST
-      expect(extension.extension_type).to eq ExtensionType::KEY_SHARE
-      expect(extension.key_share_entry[0].group).to eq NamedGroup::SECP256R1
-      expect(extension.key_share_entry[0].key_exchange).to be_empty
-    end
-
-    it 'should be serialized' do
-      expect(extension.serialize)
-        .to eq ExtensionType::KEY_SHARE \
-               + NamedGroup::SECP256R1.prefix_uint16_length
-    end
-  end
-
-  context 'valid key_share binary, KeyShareClientHello,' do
-    let(:extension) do
-      KeyShare.deserialize(TESTBINARY_KEY_SHARE_CH, HandshakeType::CLIENT_HELLO)
-    end
-
-    it 'should generate valid object' do
-      expect(extension.msg_type).to eq HandshakeType::CLIENT_HELLO
-      expect(extension.extension_type).to eq ExtensionType::KEY_SHARE
-      expect(extension.key_share_entry[0].group).to eq NamedGroup::SECP256R1
-      expect(extension.key_share_entry[0].key_exchange.length)
-        .to eq NamedGroup.key_exchange_len(NamedGroup::SECP256R1)
-    end
-
-    it 'should generate serializable object' do
-      expect(extension.serialize)
-        .to eq ExtensionType::KEY_SHARE \
-               + TESTBINARY_KEY_SHARE_CH.prefix_uint16_length
-    end
-  end
-
-  context 'valid key_share binary, KeyShareServerHello,' do
-    let(:extension) do
-      KeyShare.deserialize(TESTBINARY_KEY_SHARE_SH, HandshakeType::SERVER_HELLO)
-    end
-
-    it 'should generate valid object' do
-      expect(extension.msg_type).to eq HandshakeType::SERVER_HELLO
-      expect(extension.extension_type).to eq ExtensionType::KEY_SHARE
-      expect(extension.key_share_entry[0].group).to eq NamedGroup::SECP256R1
-      expect(extension.key_share_entry[0].key_exchange.length)
-        .to eq NamedGroup.key_exchange_len(NamedGroup::SECP256R1)
-    end
-
-    it 'should generate serializable object' do
-      expect(extension.serialize)
-        .to eq ExtensionType::KEY_SHARE \
-               + TESTBINARY_KEY_SHARE_SH.prefix_uint16_length
-    end
-  end
-
-  context 'valid key_share binary, KeyShareHelloRetryRequest,' do
-    let(:extension) do
-      KeyShare.deserialize(TESTBINARY_KEY_SHARE_HRR,
-                           HandshakeType::HELLO_RETRY_REQUEST)
-    end
-
-    it 'should generate valid object' do
-      expect(extension.msg_type).to eq HandshakeType::HELLO_RETRY_REQUEST
-      expect(extension.extension_type).to eq ExtensionType::KEY_SHARE
-      expect(extension.key_share_entry[0].group).to eq NamedGroup::SECP256R1
-      expect(extension.key_share_entry[0].key_exchange).to be_empty
-    end
-
-    it 'should generate serializable object' do
-      expect(extension.serialize)
-        .to eq ExtensionType::KEY_SHARE \
-               + TESTBINARY_KEY_SHARE_HRR.prefix_uint16_length
-    end
-  end
-end