On Tue, May 14, 2013 at 2:12 AM, Christian Koßmann <christiankossm...@googlemail.com> wrote: > Hey, > > I try to implement a prototype implementation of tls-unique (RFC 5929) > in Firefox for a German research group. Therefore I need the finished > message of the TLS handshake. After hours of research I found out > that this is "most likely" not possible to get the finished message in a > Firefox extension. But what about XPCOM components? Is it possible > to create an XPCOM component that propagates such implementation > details or do I really have to modify the source code of nss? Or is there > any other way that I have overlooked?
Hi, You can try the NSS patches in https://bugzilla.mozilla.org/show_bug.cgi?id=563276#c1 https://bugzilla.mozilla.org/show_bug.cgi?id=563276#c4 The two patches are independent attempts at an implementation, so you only need one of the patches. You can also try the SSL_ExportKeyingMaterial function: http://mxr.mozilla.org/nss/ident?i=SSL_ExportKeyingMaterial This implements RFC 5705, Keying Material Exporters for Transport Layer Security (TLS). It is already in NSS. Wan-Teh _______________________________________________ dev-security mailing list dev-security@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security
