Custom TLS Extensions in NSS (Patch in Progress)

Hi all, With the guidance of Trevor Perrin (cc-ed), I have put together the beginnings of a patch to allow clients of the NSS library to implement support for arbitrary TLS extensions. The motivation is to allow clients of NSS to implement new proposals that bolster the CA trust model, such as

Re: Custom TLS Extensions in NSS (Patch in Progress)

On Aug 14, 2013, at 5:39 PM, Robert Relyea rrel...@redhat.com wrote: Are you adding the extensions programmatically (that is an application can add extensions by making various calls to do so) or are you adding extensions dynamically through some sort of configuration. Both are useful,

Re: Custom TLS Extensions in NSS (Patch in Progress)

I have opened an issue on bugzilla, with patch attached: https://bugzilla.mozilla.org/show_bug.cgi?id=905848 On Aug 14, 2013, at 6:05 PM, Daniel Jackoway dani...@matasano.com wrote: Ok, I'll get a patch on bugzilla soon. -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https

Re: Custom TLS Extensions in NSS (Patch in Progress)

Hi, I have submitted an updated patch that is more-or-less complete. Feedback is the main thing I need to make further progress. Specific questions that I need feedback on can be found in the bugzilla comment. https://bugzilla.mozilla.org/show_bug.cgi?id=905848#c1 Best, Daniel --