[gnutls-devel] GnuTLS | add API to get access to early exporter (#329)

[Read-only notification of GnuTLS library development activities]

Neustradamus commented: https://gitlab.com/gnutls/gnutls/-/issues/329#note_2914543001


---------------

Note:
- @rufferson has done a good job in GnuTLS to have all Channel Binding: "tls-unique" (initially added by @jas), "tls-server-end-point", "tls-exporter"
- @dueno has done a good job in GnuTLS about RFC 5705: Keying Material Exporters for Transport Layer Security (TLS) aka TLS Exporter

GnuTLS source code researches (recall, when it is good commented, it is easy):
- tls-unique: https://gitlab.com/search?group_id=121613&project_id=179611&repository_ref=master&scope=commits&search=tls-unique
- tls-server-end-point: https://gitlab.com/search?group_id=121613&project_id=179611&repository_ref=master&scope=commits&search=tls-server-end-point
- rfc5929: https://gitlab.com/search?group_id=121613&project_id=179611&repository_ref=master&scope=blobs&search=rfc5929
- rfc 5929: https://gitlab.com/search?group_id=121613&project_id=179611&repository_ref=master&scope=blobs&search=rfc+5929
- tls-exporter: https://gitlab.com/search?group_id=121613&project_id=179611&repository_ref=master&scope=commits&search=tls-exporter
- rfc9266: https://gitlab.com/search?group_id=121613&project_id=179611&repository_ref=master&scope=blobs&search=rfc9266
- rfc 9266: https://gitlab.com/search?group_id=121613&project_id=179611&repository_ref=master&scope=blobs&search=rfc+9266
- rfc5705: https://gitlab.com/search?group_id=121613&project_id=179611&repository_ref=master&scope=blobs&search=rfc5705
- rfc 5705: https://gitlab.com/search?group_id=121613&project_id=179611&repository_ref=master&scope=blobs&search=rfc+5705

GnuTLS linked Issues:
- @nmav: 2017-11-24: add API to get access to early exporter: https://gitlab.com/gnutls/gnutls/-/issues/329
- @tomato42: 2019-03-21: gnutls_prf_rfc5705() API not exposed by command line utilities: https://gitlab.com/gnutls/gnutls/-/issues/736
- @rufferson: 2020-06-18: gnutls_session_channel_binding returns empty binding data for TLS1.3: https://gitlab.com/gnutls/gnutls/-/issues/1041
- @dueno: 2021-04-27: Implement channel bindings for TLS 1.3: https://gitlab.com/gnutls/gnutls/-/issues/1214
- @dueno: 2022-03-20: gnutls-cli, gnutls-serv: "Channel binding error: The request is invalid" when TLS 1.3 is negotiated: https://gitlab.com/gnutls/gnutls/-/issues/1350
- @Neustradamus: 2022-08-02: RFC 9266: Channel Bindings for TLS 1.3 support: https://gitlab.com/gnutls/gnutls/-/issues/1391

GnuTLS linked PR:
- @dueno: 2019-01-25: prf: add function to retrieve early keying material: https://gitlab.com/gnutls/gnutls/-/merge_requests/894
- @rufferson: 2020-06-20: Copy Finished packet to cb_tls_unique buffer in tls13/finished: https://gitlab.com/gnutls/gnutls/-/merge_requests/1293
- @rufferson: 2021-05-01: Implement new tls channel biding types: https://gitlab.com/gnutls/gnutls/-/merge_requests/1422
- @jas: 2022-07-20: Update doc for GNUTLS_CB_TLS_EXPORTER towards RFC9266.: https://gitlab.com/gnutls/gnutls/-/merge_requests/1621

GnuTLS linked commits:
- @jas: 2010-10-15: Implement RFC 5929 tls-unique channel binding.: https://gitlab.com/gnutls/gnutls/-/commit/3f86e31a554d02a2d92b5423942915554af7fc59
- @rufferson: 2021-05-01: Add tls-server-end-point tls channel binding implementation.: https://gitlab.com/gnutls/gnutls/-/commit/9ebee00c793e40e3e8c797c645577c9e025b9f1e
- @rufferson: 2021-05-01: Introduce new tls channel binding types into gnutls_channel_binding_t: https://gitlab.com/gnutls/gnutls/-/commit/480a3ed6e2fa1201fd54448c6fcb05ed2e4372f2
- @rufferson: 2021-05-01: Restructure gnutls_session_channel_binding and add tls-exporter: https://gitlab.com/gnutls/gnutls/-/commit/8ff4eaf19875d1088e8e24f1810fa99083cdee16
- @dueno: 2022-08-20: src: request tls-exporter only when unique master secrets are used: https://gitlab.com/gnutls/gnutls/-/commit/25beb4af246870b1f6c7e024aaf054ef18c9d8cf
- @dueno: 2022-08-28: gnutls_session_channel_binding: perform check on "tls-exporter": https://gitlab.com/gnutls/gnutls/-/commit/12bd7e5337351473bcdf080a602b3336230e689e

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/issues/329#note_2914543001
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20251126/9424bdc6/attachment-0001.html>