ctz / rustls

96%

master: 96%

LAST BUILD ON BRANCH jbp-custom-sigverify

branch: jbp-custom-sigverify

CHANGE BRANCH

x

Reset

• jbp-custom-sigverify
• master
• jbp-iovec
• trytls
• jbp-tls13
• jbp-tlsserver-stable
• jbp-tls13-draft19
• jbp-ocsp
• jbp-tls13-draft20
• jbp-dangerous-apis
• jbp-lcov
• jbp-pr-79
• jbp-travis
• jbp-xfer
• jbp-separated-rng
• jbp-tls13-draft22
• jbp-get-cs
• jbp-vectored-io
• jbp-ecdsa
• HEAD
• jbp-0rtt-client
• backports-0.13
• jbp-final-tls13
• jbp-tls13-stateful-resumption
• jbp-edition-2018
• dependabot/cargo/env_logger-0.6
• jbp-no-sha1
• v/0.15.0
• v/0.15.1
• jbp-azure-pipelines
• jbp-mio-optional-for-basic-tests
• v/0.15.2
• jbp-faster-read_tls-errors
• jbp-refactor-hs
• jbp-azure-min-versions
• jbp-azure-fixes
• jbp-ring0.16
• v/0.16.0
• jbp-workspace
• dependabot/cargo/docopt-approx-1.1
• dependabot/cargo/criterion-0.3.0
• jbp-reduce-cert-resolve-sigalgs
• jbp-server-cert-resolve-alpn
• dependabot/cargo/env_logger-0.7.0
• dependabot/cargo/webpki-roots-0.18.0
• dependabot/cargo/env_logger-0.7.1
• jbp-test-workspace
• jbp-refactor-secrets
• jbp-refactor-keyschedule
• jbp-client-auth-by-sni
• dependabot/cargo/webpki-roots-0.19.0
• jbp-mdbook
• jbp-mdbook-2
• v/0.17.0
• dependabot/cargo/mio-0.7.0
• dependabot/cargo/base64-0.12
• jbp-tls-read-perf

Build # 988

Build Type

push

travis-ci

Committed by ctz

Commit Message

Fix client detection of bad CertificateRequests

A certificate request with no signature schemes is meaningless.
In TLS1.3 we reject this outright, but it was allowed in TLS1.2.
Fix that first.

Secondly, fix the TLS1.2 behaviour when `choose_scheme` fails:
we want to avoid any client auth in this case, not send a certificate
but be unable to send the matching CertificateVerify.

Run Details

11 of 11 new or added lines in 3 files covered. (100.0%)

8060 of 8385 relevant lines covered (96.12%)

363601.87 hits per line