crypto/x509: require a NULL parameters for RSA public keys.

The RFC is clear that the Parameters in an AlgorithmIdentifer for an RSA public key must be NULL. BoringSSL enforces this so we have strong evidence that this is a widely compatible change. Embarrassingly enough, the major source of violations of this is us. Go used to get this correct in only one of two places. This was only fixed in 2013 (with 4874bc9b). That's why lots of test certificates are updated in this change. Fixes #16166. Change-Id: Ib9a4551349354c66e730d44eb8cee4ec402ea8ab Reviewed-on: https://go-review.googlesource.com/27312Reviewed-by: Brad Fitzpatrick <bradfitz@golang.org>

crypto/x509: require a NULL parameters for RSA public keys.
The RFC is clear that the Parameters in an AlgorithmIdentifer for an RSA public key must be NULL. BoringSSL enforces this so we have strong evidence that this is a widely compatible change. Embarrassingly enough, the major source of violations of this is us. Go used to get this correct in only one of two places. This was only fixed in 2013 (with 4874bc9b). That's why lots of test certificates are updated in this change. Fixes #16166. Change-Id: Ib9a4551349354c66e730d44eb8cee4ec402ea8ab Reviewed-on: https://go-review.googlesource.com/27312Reviewed-by: Brad Fitzpatrick <bradfitz@golang.org>
59aeac20 · Adam Langley · 57370a87 · 59aeac20 · 59aeac20 · 59aeac20
Commit 59aeac20 authored Aug 17, 2016 by Adam Langley
63 changed files
--- a/src/crypto/tls/conn_test.go
+++ b/src/crypto/tls/conn_test.go
@@ -54,13 +54,13 @@ func TestRemovePadding(t *testing.T) {
 	}
 }

-var certExampleCom = `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`
+var certExampleCom = `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`

-var certWildcardExampleCom = `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`
+var certWildcardExampleCom = `308201743082011ea003020102021100a7aa6297c9416a4633af8bec2958c607300d06092a864886f70d01010b050030123110300e060355040a130741636d6520436f301e170d3136303831373231343231395a170d3137303831373231343231395a30123110300e060355040a130741636d6520436f305c300d06092a864886f70d0101010500034b003048024100b105afc859a711ee864114e7d2d46c2dcbe392d3506249f6c2285b0eb342cc4bf2d803677c61c0abde443f084745c1a6d62080e5664ef2cc8f50ad8a0ab8870b0203010001a34f304d300e0603551d0f0101ff0404030205a030130603551d25040c300a06082b06010505070301300c0603551d130101ff0402300030180603551d110411300f820d2a2e6578616d706c652e636f6d300d06092a864886f70d01010b0500034100af26088584d266e3f6566360cf862c7fecc441484b098b107439543144a2b93f20781988281e108c6d7656934e56950e1e5f2bcf38796b814ccb729445856c34`

-var certFooExampleCom = `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`
+var certFooExampleCom = `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`

-var certDoubleWildcardExampleCom = `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`
+var certDoubleWildcardExampleCom = `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`

 func TestCertificateSelection(t *testing.T) {
 	config := Config{

--- a/src/crypto/tls/handshake_server_test.go
+++ b/src/crypto/tls/handshake_server_test.go
--- a/src/crypto/tls/testdata/Client-TLSv10-ClientCert-ECDSA-ECDSA
+++ b/src/crypto/tls/testdata/Client-TLSv10-ClientCert-ECDSA-ECDSA
@@ -9,11 +9,11 @@
 00000070  0d 00 0e 00 0c 04 01 04  03 05 01 05 03 02 01 02  |................|
 00000080  03 ff 01 00 01 00 00 12  00 00                    |..........|
 >>> Flow 2 (server to client)
-00000000  16 03 01 00 59 02 00 00  55 03 01 38 1a 94 8d 84  |....Y...U..8....|
-00000010  d7 a4 29 89 50 ad 07 97  5b c0 2c 7b 8c a6 75 0e  |..).P...[.,{..u.|
-00000020  97 51 62 10 07 87 c5 6f  0a 5f 86 20 1d ac 1d 05  |.Qb....o._. ....|
-00000030  ea 85 48 84 73 d9 07 8d  d0 81 56 99 81 10 7b 18  |..H.s.....V...{.|
-00000040  e8 5e da a9 fe cd f9 91  88 31 9b 6e c0 09 00 00  |.^.......1.n....|
+00000000  16 03 01 00 59 02 00 00  55 03 01 75 a2 11 1e 9d  |....Y...U..u....|
+00000010  5c 45 79 41 ae d4 f0 0b  c8 45 86 2c e8 a0 a0 c9  |\EyA.....E.,....|
+00000020  37 a9 55 f4 f4 a8 f0 a5  f8 64 ad 20 96 c5 22 52  |7.U......d. .."R|
+00000030  3f 37 2f 7c 75 39 64 3c  4c 96 01 e1 bf 12 0a 9c  |?7/|u9d<L.......|
+00000040  57 36 5a 0b 7c e6 70 e3  28 64 82 f1 c0 09 00 00  |W6Z.|.p.(d......|
 00000050  0d ff 01 00 01 00 00 0b  00 04 03 00 01 02 16 03  |................|
 00000060  01 02 0e 0b 00 02 0a 00  02 07 00 02 04 30 82 02  |.............0..|
 00000070  00 30 82 01 62 02 09 00  b8 bf 2d 47 a0 d2 eb f4  |.0..b.....-G....|
@@ -48,21 +48,21 @@
 00000240  13 83 0d 94 06 bb d4 37  7a f6 ec 7a c9 86 2e dd  |.......7z..z....|
 00000250  d7 11 69 7f 85 7c 56 de  fb 31 78 2b e4 c7 78 0d  |..i..|V..1x+..x.|
 00000260  ae cb be 9e 4e 36 24 31  7b 6a 0f 39 95 12 07 8f  |....N6$1{j.9....|
-00000270  2a 16 03 01 00 d5 0c 00  00 d1 03 00 17 41 04 68  |*............A.h|
-00000280  37 18 3d 57 d2 5a 39 75  1e 7f 0a 3a 47 65 36 2e  |7.=W.Z9u...:Ge6.|
-00000290  6d cb 8f aa 0f 0d 45 5e  3f 14 82 f5 8c b1 11 0a  |m.....E^?.......|
-000002a0  8f e0 bc e4 07 d3 d5 bf  2d f4 82 ba cf c9 1c 88  |........-.......|
-000002b0  33 72 a8 49 39 48 40 74  c6 96 c3 30 72 31 34 00  |3r.I9H@t...0r14.|
-000002c0  8a 30 81 87 02 41 0e 43  2d 29 81 e9 c3 07 fc 5c  |.0...A.C-).....\|
-000002d0  ad c0 51 9e 0f cf c5 77  e4 bf 00 b6 66 f9 0e c6  |..Q....w....f...|
-000002e0  40 c6 b5 49 a4 04 05 31  2c 7c 1f 24 38 80 1b 3f  |@..I...1,|.$8..?|
-000002f0  16 5f c7 4d a8 7d 98 50  7f 7d 6d ed e9 19 1d 19  |._.M.}.P.}m.....|
-00000300  7b fd ec c5 4d 18 ab 02  42 01 00 db 37 b7 fa 39  |{...M...B...7..9|
-00000310  4b 3f 16 06 eb b8 4a 22  c6 de 00 d8 a7 eb a2 9e  |K?....J"........|
-00000320  e1 6f f4 a4 32 e2 ca d0  72 3a e5 f3 14 27 a0 dd  |.o..2...r:...'..|
-00000330  c4 26 34 b3 6c a3 d0 03  90 7a 2e 0e bf 0b 63 63  |.&4.l....z....cc|
-00000340  77 66 37 dd 1a 0f 7a 90  3f c8 a9 16 03 01 00 0e  |wf7...z.?.......|
-00000350  0d 00 00 06 03 01 02 40  00 00 0e 00 00 00        |.......@......|
+00000270  2a 16 03 01 00 d6 0c 00  00 d2 03 00 17 41 04 c3  |*............A..|
+00000280  9d 20 75 e6 2f 70 63 0c  3a f8 98 74 d4 df bb 9f  |. u./pc.:..t....|
+00000290  ff d2 95 fc 4f 3e 9b 0e  0e 49 b5 97 dc fe bc 7e  |....O>...I.....~|
+000002a0  62 2a 71 9f f5 72 4c 42  4f e5 14 d7 30 1a 06 fe  |b*q..rLBO...0...|
+000002b0  ca 12 89 e4 61 21 1e 2c  9f 2e 56 56 e9 54 a3 00  |....a!.,..VV.T..|
+000002c0  8b 30 81 88 02 42 01 29  8c cd 92 fe af fd 59 85  |.0...B.)......Y.|
+000002d0  ad 41 ba 23 f2 fc 38 c3  0e 34 73 9c 49 05 e1 7a  |.A.#..8..4s.I..z|
+000002e0  c6 8b cb 33 09 3c 48 66  8f 70 3c 9a 64 96 de fd  |...3.<Hf.p<.d...|
+000002f0  8a 17 e0 11 67 02 12 ef  bb c7 66 f3 d6 69 09 5c  |....g.....f..i.\|
+00000300  55 88 36 55 2e 5b dc 48  02 42 01 6f 80 dd 49 00  |U.6U.[.H.B.o..I.|
+00000310  21 f9 aa 1f 93 7e 6c 00  67 d8 ff 2a e4 9f 2d 1a  |!....~l.g..*..-.|
+00000320  9c 66 ee 5d 31 b6 0e 93  6a 7f 80 1f 72 cb 57 37  |.f.]1...j...r.W7|
+00000330  4d 37 af 9f 1b b7 ae 12  9f fa 2c 84 9b a8 0f 2a  |M7........,....*|
+00000340  d6 5e 27 00 ec 20 57 30  22 c4 ea 37 16 03 01 00  |.^'.. W0"..7....|
+00000350  0e 0d 00 00 06 03 01 02  40 00 00 0e 00 00 00     |........@......|
 >>> Flow 3 (client to server)
 00000000  16 03 01 02 0a 0b 00 02  06 00 02 03 00 02 00 30  |...............0|
 00000010  82 01 fc 30 82 01 5e 02  09 00 9a 30 84 6c 26 35  |...0..^....0.l&5|
@@ -102,29 +102,29 @@
 00000230  24 20 3e b2 56 1c ce 97  28 5e f8 2b 2d 4f 9e f1  |$ >.V...(^.+-O..|
 00000240  07 9f 6c 4b 5b 83 56 e2  32 42 e9 58 b6 d7 49 a6  |..lK[.V.2B.X..I.|
 00000250  b5 68 1a 41 03 56 6b dc  5a 89 16 03 01 00 90 0f  |.h.A.Vk.Z.......|
-00000260  00 00 8c 00 8a 30 81 87  02 41 51 c5 53 a8 0f cb  |.....0...AQ.S...|
-00000270  18 79 4a 59 53 62 17 bb  29 39 fa cd 56 6c 5c 29  |.yJYSb..)9..Vl\)|
-00000280  1f e3 bc df fb 9a 29 fa  38 1a 73 aa 4c 79 6b 1c  |......).8.s.Lyk.|
-00000290  9f 1c 8e 95 c7 11 cc df  5d e9 c7 93 ce a3 9b e6  |........].......|
-000002a0  94 17 24 3a 8e f8 9a a9  46 01 f9 02 42 01 a1 df  |..$:....F...B...|
-000002b0  c5 cc fe 8d 5b 34 fb 89  2f f5 b3 3f 75 d7 19 1b  |....[4../..?u...|
-000002c0  5e 0f 1a 2e 8f 2d 62 61  73 85 2c 03 3b 22 07 2f  |^....-bas.,.;"./|
-000002d0  6b f3 5c fb ba b2 87 54  1c ef d2 f8 82 f3 9e f8  |k.\....T........|
-000002e0  ce 1b fa ce b0 6d d0 85  f8 62 6e d6 ba 93 cc 14  |.....m...bn.....|
-000002f0  03 01 00 01 01 16 03 01  00 30 76 90 a8 a2 8d 25  |.........0v....%|
-00000300  c5 c2 ff ef 2b 76 83 2c  7a 0d 44 37 99 67 02 d3  |....+v.,z.D7.g..|
-00000310  6e 3b 28 83 21 cf f5 6a  71 61 2d 5b 24 57 b2 19  |n;(.!..jqa-[$W..|
-00000320  63 d4 e5 96 0c 0c e1 f3  3a 99                    |c.......:.|
+00000260  00 00 8c 00 8a 30 81 87  02 41 16 3b 14 a8 7e 9e  |.....0...A.;..~.|
+00000270  91 01 b5 56 4b 38 8a 74  46 ad c1 c3 d2 b3 2f ca  |...VK8.tF...../.|
+00000280  57 b8 de 43 4d bb c7 2f  62 3a 94 91 e3 72 60 7d  |W..CM../b:...r`}|
+00000290  cd 90 77 78 35 ef 21 9d  4e b5 79 98 18 e0 46 8b  |..wx5.!.N.y...F.|
+000002a0  e4 97 98 e2 d9 cf 6f c9  a2 ef 35 02 42 00 93 ec  |......o...5.B...|
+000002b0  45 d7 34 da 4f 86 81 67  bf 87 14 6b b8 69 ae 80  |E.4.O..g...k.i..|
+000002c0  2a b0 15 a8 cd 12 46 34  e7 30 d7 f2 84 9d 9e 81  |*.....F4.0......|
+000002d0  3d 3c 24 0e 18 58 0a 4e  66 62 5d ec ae 35 7c e4  |=<$..X.Nfb]..5|.|
+000002e0  66 d9 b3 0b 26 95 fb bc  af f3 02 67 fb da a3 14  |f...&......g....|
+000002f0  03 01 00 01 01 16 03 01  00 30 e0 9d a5 39 ec b2  |.........0...9..|
+00000300  29 40 32 b8 65 3c fb 59  f8 53 de 3c 36 41 2c 48  |)@2.e<.Y.S.<6A,H|
+00000310  08 cb 00 00 f1 64 aa 37  b1 ef 27 18 0d 6a f9 30  |.....d.7..'..j.0|
+00000320  13 6e 6e 9e ab 82 d8 ba  e2 51                    |.nn......Q|
 >>> Flow 4 (server to client)
-00000000  14 03 01 00 01 01 16 03  01 00 30 37 f0 ad 4c 11  |..........07..L.|
-00000010  6d fb 54 90 13 d2 10 93  43 d8 be 3b d0 2b 14 a5  |m.T.....C..;.+..|
-00000020  9d fb a6 5d 38 e0 f5 e9  a6 0a 8e 3d 99 a2 ec 96  |...]8......=....|
-00000030  d8 ff 90 13 03 99 33 d7  15 29 5f                 |......3..)_|
+00000000  14 03 01 00 01 01 16 03  01 00 30 ba 3e 11 94 20  |..........0.>.. |
+00000010  72 43 30 b3 5a eb db 4e  17 fa 83 aa 8f e4 17 92  |rC0.Z..N........|
+00000020  58 0c 56 ce b3 39 cc 40  34 91 55 96 4c 9e 02 5b  |X.V..9.@4.U.L..[|
+00000030  05 ec 4e 6b 95 52 17 ea  06 dc d7                 |..Nk.R.....|
 >>> Flow 5 (client to server)
-00000000  17 03 01 00 20 f9 59 b0  e2 8b f9 2c dd 30 1b 8f  |.... .Y....,.0..|
-00000010  df 85 0f 17 88 23 5e ca  c9 d3 ca 5f 52 d4 33 e0  |.....#^...._R.3.|
-00000020  d2 62 54 17 f2 17 03 01  00 20 62 2d 28 d2 55 68  |.bT...... b-(.Uh|
-00000030  77 ab 6e c0 ac d9 cd 31  1c 38 aa 07 b3 e8 0d 89  |w.n....1.8......|
-00000040  7e e4 f3 a0 65 84 f6 b8  c8 91 15 03 01 00 20 b5  |~...e......... .|
-00000050  95 69 90 d7 32 d1 5a a5  e0 e2 6c 0a dc 00 1c 5e  |.i..2.Z...l....^|
-00000060  d2 10 2b a2 3e ae a5 b2  63 9f c4 4e 62 56 db     |..+.>...c..NbV.|
+00000000  17 03 01 00 20 30 65 6a  9b 39 98 ff ea 90 d9 a7  |.... 0ej.9......|
+00000010  52 88 ca 38 b2 71 b7 75  0f 9f 41 b0 bb 33 ff 83  |R..8.q.u..A..3..|
+00000020  6e 59 7e 81 a1 17 03 01  00 20 18 9a a6 df 69 9c  |nY~...... ....i.|
+00000030  56 f1 4e d4 9b 85 80 64  ee b8 d2 a7 ca 3a 54 5f  |V.N....d.....:T_|
+00000040  d4 e6 64 68 aa fd 28 22  06 3b 15 03 01 00 20 0f  |..dh..(".;.... .|
+00000050  4e 21 15 b2 b0 dd 7a 33  71 88 d9 45 25 05 92 ad  |N!....z3q..E%...|
+00000060  b1 35 dc fa 61 df 53 66  fc 80 89 49 bc 8f c4     |.5..a.Sf...I...|
--- a/src/crypto/tls/testdata/Client-TLSv10-ClientCert-ECDSA-RSA
+++ b/src/crypto/tls/testdata/Client-TLSv10-ClientCert-ECDSA-RSA
--- a/src/crypto/tls/testdata/Client-TLSv10-ClientCert-RSA-ECDSA
+++ b/src/crypto/tls/testdata/Client-TLSv10-ClientCert-RSA-ECDSA
--- a/src/crypto/tls/testdata/Client-TLSv10-ClientCert-RSA-RSA
+++ b/src/crypto/tls/testdata/Client-TLSv10-ClientCert-RSA-RSA
--- a/src/crypto/tls/testdata/Client-TLSv10-ECDHE-ECDSA-AES
+++ b/src/crypto/tls/testdata/Client-TLSv10-ECDHE-ECDSA-AES
@@ -9,11 +9,11 @@
 00000070  0d 00 0e 00 0c 04 01 04  03 05 01 05 03 02 01 02  |................|
 00000080  03 ff 01 00 01 00 00 12  00 00                    |..........|
 >>> Flow 2 (server to client)
-00000000  16 03 01 00 59 02 00 00  55 03 01 78 09 57 86 09  |....Y...U..x.W..|
-00000010  64 7e 35 c7 c7 b9 44 9c  09 ae f0 49 cb 1c 1f 58  |d~5...D....I...X|
-00000020  89 ef 65 16 9e 32 73 cd  4d 1b 8f 20 10 4d 5b cf  |..e..2s.M.. .M[.|
-00000030  d0 24 59 dd e8 47 c9 a2  ad 9c 98 b5 eb 16 46 6b  |.$Y..G........Fk|
-00000040  7d 33 6e 53 0a 3d 81 71  a1 bc 43 7a c0 09 00 00  |}3nS.=.q..Cz....|
+00000000  16 03 01 00 59 02 00 00  55 03 01 0d 2c a2 04 a6  |....Y...U...,...|
+00000010  3f 18 3f 0f 94 88 69 ac  e1 0b e0 45 22 3d 95 91  |?.?...i....E"=..|
+00000020  10 ac a7 9c 1f 48 d0 87  34 34 eb 20 dc ba 2e aa  |.....H..44. ....|
+00000030  65 d7 e5 c5 b8 91 49 e4  bd a0 5e d0 48 1f b8 0f  |e.....I...^.H...|
+00000040  88 d7 3f 7d c6 2d 0b 53  f1 72 96 aa c0 09 00 00  |..?}.-.S.r......|
 00000050  0d ff 01 00 01 00 00 0b  00 04 03 00 01 02 16 03  |................|
 00000060  01 02 0e 0b 00 02 0a 00  02 07 00 02 04 30 82 02  |.............0..|
 00000070  00 30 82 01 62 02 09 00  b8 bf 2d 47 a0 d2 eb f4  |.0..b.....-G....|
@@ -48,41 +48,41 @@
 00000240  13 83 0d 94 06 bb d4 37  7a f6 ec 7a c9 86 2e dd  |.......7z..z....|
 00000250  d7 11 69 7f 85 7c 56 de  fb 31 78 2b e4 c7 78 0d  |..i..|V..1x+..x.|
 00000260  ae cb be 9e 4e 36 24 31  7b 6a 0f 39 95 12 07 8f  |....N6$1{j.9....|
-00000270  2a 16 03 01 00 d6 0c 00  00 d2 03 00 17 41 04 51  |*............A.Q|
-00000280  39 70 43 9c 01 de 29 df  3c d0 f8 31 54 70 34 53  |9pC...).<..1Tp4S|
-00000290  0e ab e8 e0 b0 8b 21 66  63 ac a9 68 7c 92 6f f8  |......!fc..h|.o.|
-000002a0  cf a3 ba cb 6d 39 f4 5c  f5 2e ff 1d d7 1b b9 e7  |....m9.\........|
-000002b0  08 13 59 f8 64 7e 23 e0  1d 04 cf 37 47 d6 b7 00  |..Y.d~#....7G...|
-000002c0  8b 30 81 88 02 42 01 cd  1d 01 46 68 da 4c b6 0d  |.0...B....Fh.L..|
-000002d0  67 05 39 0d aa 6c c5 40  e4 5d bf 4f 2a 92 78 8d  |g.9..l.@.].O*.x.|
-000002e0  08 0e c0 07 8c 68 cc 55  4e 54 a9 9d 22 f9 a6 4a  |.....h.UNT.."..J|
-000002f0  e4 38 9f 53 4a 60 e8 eb  81 02 50 75 7e 13 31 2a  |.8.SJ`....Pu~.1*|
-00000300  ff 3e 17 cd b4 d1 d4 75  02 42 01 95 ba b6 a0 12  |.>.....u.B......|
-00000310  23 59 9f ae 1c c0 60 d2  8f 59 6b 35 ee b3 3f ac  |#Y....`..Yk5..?.|
-00000320  e4 42 9a 23 d0 f4 fd a1  3c 36 1b 31 33 76 8d f0  |.B.#....<6.13v..|
-00000330  b6 66 fd 92 9a 2a 27 8b  06 11 72 41 09 bd 27 55  |.f...*'...rA..'U|
-00000340  c7 1b a9 d1 49 5e 8f 85  dc aa 9d be 16 03 01 00  |....I^..........|
-00000350  04 0e 00 00 00                                    |.....|
+00000270  2a 16 03 01 00 d5 0c 00  00 d1 03 00 17 41 04 29  |*............A.)|
+00000280  63 6f da d7 00 92 13 1c  32 05 51 d9 26 de 0e 76  |co......2.Q.&..v|
+00000290  57 98 e6 73 3a 0b f3 d9  12 3c b6 6e 5f b6 fd 22  |W..s:....<.n_.."|
+000002a0  af 57 55 38 e4 3b 33 2f  2e b1 b8 d8 57 1d c8 d3  |.WU8.;3/....W...|
+000002b0  e0 cb d8 88 e0 7b 74 24  95 10 60 0b 37 de 4d 00  |.....{t$..`.7.M.|
+000002c0  8a 30 81 87 02 42 01 b2  ef 44 46 bb 9a e8 5a eb  |.0...B...DF...Z.|
+000002d0  10 1f 0d 18 28 ec 74 80  f5 f9 1f ef 0e 94 2b d0  |....(.t.......+.|
+000002e0  f0 69 2d ba 82 d6 bd a7  c5 8a 1e 79 9f 1d 06 cd  |.i-........y....|
+000002f0  48 ef 9a 8b 0a 97 e9 25  d5 8d f4 f2 6a a2 de 00  |H......%....j...|
+00000300  7e 8f c5 58 d7 54 4a b5  02 41 51 ee 8f f2 9e f3  |~..X.TJ..AQ.....|
+00000310  24 d9 b7 dd f1 d7 61 91  48 7f f3 bc e9 24 49 a3  |$.....a.H....$I.|
+00000320  bd 65 68 e8 06 ab e0 1b  93 43 db e6 e7 7b 04 2f  |.eh......C...{./|
+00000330  28 df a2 ab bf 77 26 c6  b8 20 1e 97 14 07 09 db  |(....w&.. ......|
+00000340  a1 9e 26 d2 b5 d9 de 29  4e 75 e3 16 03 01 00 04  |..&....)Nu......|
+00000350  0e 00 00 00                                       |....|
 >>> Flow 3 (client to server)
 00000000  16 03 01 00 46 10 00 00  42 41 04 1e 18 37 ef 0d  |....F...BA...7..|
 00000010  19 51 88 35 75 71 b5 e5  54 5b 12 2e 8f 09 67 fd  |.Q.5uq..T[....g.|
 00000020  a7 24 20 3e b2 56 1c ce  97 28 5e f8 2b 2d 4f 9e  |.$ >.V...(^.+-O.|
 00000030  f1 07 9f 6c 4b 5b 83 56  e2 32 42 e9 58 b6 d7 49  |...lK[.V.2B.X..I|
 00000040  a6 b5 68 1a 41 03 56 6b  dc 5a 89 14 03 01 00 01  |..h.A.Vk.Z......|
-00000050  01 16 03 01 00 30 64 61  7f ea 98 8e e7 c9 0f ea  |.....0da........|
-00000060  0a b3 52 ba 3d 01 36 a4  47 24 7b 2d 19 b5 7e 92  |..R.=.6.G${-..~.|
-00000070  04 b7 8c 4f fc 02 5d 79  15 3e 50 72 05 3c df d2  |...O..]y.>Pr.<..|
-00000080  c6 a3 b3 c8 7c 48                                 |....|H|
+00000050  01 16 03 01 00 30 9d b9  d8 94 3f 7c 32 ba a9 cd  |.....0....?|2...|
+00000060  ef 98 3c 84 c9 8b ed fd  00 df fb 01 e1 f3 cb 4f  |..<............O|
+00000070  fd 97 65 75 42 14 44 7b  4b dc 05 d1 f5 77 ae 2e  |..euB.D{K....w..|
+00000080  b4 f7 28 79 4e ac                                 |..(yN.|
 >>> Flow 4 (server to client)
-00000000  14 03 01 00 01 01 16 03  01 00 30 7d 49 8d e9 da  |..........0}I...|
-00000010  87 77 18 4d 10 63 17 ed  1f 34 7a d4 be e3 dd b6  |.w.M.c...4z.....|
-00000020  8b f3 a7 06 bc de 76 8e  04 be 8a 95 5b 24 19 ec  |......v.....[$..|
-00000030  66 55 8a 1b e0 df 0b a1  57 cb 67                 |fU......W.g|
+00000000  14 03 01 00 01 01 16 03  01 00 30 35 97 99 3c c8  |..........05..<.|
+00000010  4e 25 dc 96 f6 1b ad b6  e8 69 78 bf 20 67 90 eb  |N%.......ix. g..|
+00000020  b3 af 9f 77 e6 33 eb f8  50 be ca 9b ef 69 0c 90  |...w.3..P....i..|
+00000030  43 36 39 07 39 65 72 4c  76 17 63                 |C69.9erLv.c|
 >>> Flow 5 (client to server)
-00000000  17 03 01 00 20 2d a3 e5  55 13 3f 73 8e ba 41 79  |.... -..U.?s..Ay|
-00000010  65 e0 83 d5 3a ea cd e9  a8 b4 4b 3c d0 0c bf 06  |e...:.....K<....|
-00000020  75 2a 67 f2 f7 17 03 01  00 20 a0 8d 3c a2 ca b3  |u*g...... ..<...|
-00000030  f3 e5 36 dc 44 a4 3b ad  cd 03 be a9 70 a8 75 51  |..6.D.;.....p.uQ|
-00000040  0f 8e 9f 7c a7 3c 03 84  38 88 15 03 01 00 20 75  |...|.<..8..... u|
-00000050  0f db fe 48 b4 7e 04 3b  f5 5b 47 5b 0a ab 69 18  |...H.~.;.[G[..i.|
-00000060  37 bb 89 d3 a8 40 ba 53  3b 5f 6d 8b 06 ff ae     |7....@.S;_m....|
+00000000  17 03 01 00 20 31 e3 2f  a7 0c 76 46 7c 84 4a d3  |.... 1./..vF|.J.|
+00000010  d5 b7 01 49 6b 53 d6 61  09 26 4a b2 6f e7 00 08  |...IkS.a.&J.o...|
+00000020  25 84 69 cf d6 17 03 01  00 20 68 d7 d2 7b 6d 9a  |%.i...... h..{m.|
+00000030  8d 81 92 3b 32 62 73 b0  02 27 3e e0 5d 1f 08 4c  |...;2bs..'>.]..L|
+00000040  8d ae f7 b1 8e b9 5a c3  bb be 15 03 01 00 20 d0  |......Z....... .|
+00000050  23 1b ea d7 04 35 43 17  9c 94 85 b7 b8 3a 66 31  |#....5C......:f1|
+00000060  f0 7c 0f 09 02 8a 29 9e  98 3b df 9d 61 ac a1     |.|....)..;..a..|
--- a/src/crypto/tls/testdata/Client-TLSv10-ECDHE-RSA-AES
+++ b/src/crypto/tls/testdata/Client-TLSv10-ECDHE-RSA-AES
--- a/src/crypto/tls/testdata/Client-TLSv10-RSA-RC4
+++ b/src/crypto/tls/testdata/Client-TLSv10-RSA-RC4
--- a/src/crypto/tls/testdata/Client-TLSv11-ECDHE-ECDSA-AES
+++ b/src/crypto/tls/testdata/Client-TLSv11-ECDHE-ECDSA-AES
@@ -9,11 +9,11 @@
 00000070  0d 00 0e 00 0c 04 01 04  03 05 01 05 03 02 01 02  |................|
 00000080  03 ff 01 00 01 00 00 12  00 00                    |..........|
 >>> Flow 2 (server to client)
-00000000  16 03 02 00 59 02 00 00  55 03 02 07 ae a6 e4 1a  |....Y...U.......|
-00000010  f7 7a 0c bc ea 21 0e 86  e3 d0 b4 2c fc d9 97 a3  |.z...!.....,....|
-00000020  8b 29 5f 59 3e a9 06 fb  ca d9 57 20 cd 45 e7 cd  |.)_Y>.....W .E..|
-00000030  6c 4c 56 cd 7c 4c 51 2c  8f 8c 67 a2 05 51 26 f5  |lLV.|LQ,..g..Q&.|
-00000040  17 cc 18 c2 a1 29 94 4b  e2 02 cc 1c c0 09 00 00  |.....).K........|
+00000000  16 03 02 00 59 02 00 00  55 03 02 5b 51 a3 17 6d  |....Y...U..[Q..m|
+00000010  99 5a 6c 35 69 44 17 80  89 12 f4 59 fe 19 cd cf  |.Zl5iD.....Y....|
+00000020  5b b4 ff ab d9 c3 d4 f2  62 e2 fe 20 bd 79 bb 35  |[.......b.. .y.5|
+00000030  69 5e 44 5a c4 fd 65 58  f9 80 bd cb e5 47 51 f1  |i^DZ..eX.....GQ.|
+00000040  cf ea e3 83 c4 11 b6 1a  9c c9 13 98 c0 09 00 00  |................|
 00000050  0d ff 01 00 01 00 00 0b  00 04 03 00 01 02 16 03  |................|
 00000060  02 02 0e 0b 00 02 0a 00  02 07 00 02 04 30 82 02  |.............0..|
 00000070  00 30 82 01 62 02 09 00  b8 bf 2d 47 a0 d2 eb f4  |.0..b.....-G....|
@@ -48,20 +48,20 @@
 00000240  13 83 0d 94 06 bb d4 37  7a f6 ec 7a c9 86 2e dd  |.......7z..z....|
 00000250  d7 11 69 7f 85 7c 56 de  fb 31 78 2b e4 c7 78 0d  |..i..|V..1x+..x.|
 00000260  ae cb be 9e 4e 36 24 31  7b 6a 0f 39 95 12 07 8f  |....N6$1{j.9....|
-00000270  2a 16 03 02 00 d6 0c 00  00 d2 03 00 17 41 04 cd  |*............A..|
-00000280  9d 30 75 8d 98 17 b5 1b  2f 4e af ea 69 52 a1 c1  |.0u...../N..iR..|
-00000290  86 73 6a 56 54 f8 ed b6  35 e5 4e 34 a0 6f b1 85  |.sjVT...5.N4.o..|
-000002a0  95 8e be 77 c5 1a 56 9a  59 d1 69 79 ea d6 2b c7  |...w..V.Y.iy..+.|
-000002b0  c1 4a fb bc f8 98 c3 49  1c f3 ce 33 ef 98 20 00  |.J.....I...3.. .|
-000002c0  8b 30 81 88 02 42 00 8b  15 7e 3b 4f 73 b0 8e ca  |.0...B...~;Os...|
-000002d0  67 e0 7c d8 89 70 f1 b2  6b 9c 19 84 fa aa 6e 15  |g.|..p..k.....n.|
-000002e0  8b 46 95 57 d5 ac 79 f3  e8 2a e5 7a a8 1e c3 d7  |.F.W..y..*.z....|
-000002f0  0a b2 02 cd d6 32 34 2f  37 65 41 c8 61 c6 ed e5  |.....24/7eA.a...|
-00000300  d2 6f 0f e8 1a 49 b6 c7  02 42 00 d1 00 f4 05 65  |.o...I...B.....e|
-00000310  dd 43 42 db 8b 0b 95 9d  f5 62 51 e6 58 60 20 9b  |.CB......bQ.X` .|
-00000320  46 84 e6 1f 76 4a 92 42  e4 4d 77 5b 76 a5 78 a0  |F...vJ.B.Mw[v.x.|
-00000330  b0 f0 50 7d f9 4f ca 43  9d c2 50 cb 20 1c 40 52  |..P}.O.C..P. .@R|
-00000340  0f a8 c4 43 7a 9d d5 61  de 26 30 b5 16 03 02 00  |...Cz..a.&0.....|
+00000270  2a 16 03 02 00 d6 0c 00  00 d2 03 00 17 41 04 5c  |*............A.\|
+00000280  fe c6 a2 92 d2 df 79 56  99 a1 bb 0e c5 3e 08 fa  |......yV.....>..|
+00000290  a5 65 46 6a bc 8d c9 64  3e 1f d5 ba ea 3b 47 71  |.eFj...d>....;Gq|
+000002a0  fb 58 8a ab c0 9d 6e 7c  cc c2 6e f6 ca 5b aa 27  |.X....n|..n..[.'|
+000002b0  97 44 67 ef 49 d5 63 fe  cf 1c 69 98 bf 9e 8a 00  |.Dg.I.c...i.....|
+000002c0  8b 30 81 88 02 42 01 7c  1e c7 f6 9a a4 48 f4 47  |.0...B.|.....H.G|
+000002d0  25 a9 9e f0 a7 39 e2 d1  95 09 c2 33 9e 2d cc a0  |%....9.....3.-..|
+000002e0  28 e4 6a ea da f4 fe 04  49 a8 92 ea 6d 00 c4 07  |(.j.....I...m...|
+000002f0  61 45 5d 1e 86 d2 d4 f7  fc bb fe 6e 54 c3 01 14  |aE]........nT...|
+00000300  86 87 40 ce 07 1e 39 17  02 42 01 40 a6 9e 2c 38  |..@...9..B.@..,8|
+00000310  4e c1 40 65 e8 bb 7d 90  1e a7 69 09 7d f1 5c b8  |N.@e..}...i.}.\.|
+00000320  67 33 a0 bf 03 32 7e 63  c2 d2 78 4e 8b 55 cd 46  |g3...2~c..xN.U.F|
+00000330  a9 5e 90 96 5c 33 ac 2d  22 ec 03 27 9d ca 02 ae  |.^..\3.-"..'....|
+00000340  0a 45 8c 98 22 87 2d de  41 3c 55 e3 16 03 02 00  |.E..".-.A<U.....|
 00000350  04 0e 00 00 00                                    |.....|
 >>> Flow 3 (client to server)
 00000000  16 03 02 00 46 10 00 00  42 41 04 1e 18 37 ef 0d  |....F...BA...7..|
@@ -70,21 +70,21 @@
 00000030  f1 07 9f 6c 4b 5b 83 56  e2 32 42 e9 58 b6 d7 49  |...lK[.V.2B.X..I|
 00000040  a6 b5 68 1a 41 03 56 6b  dc 5a 89 14 03 02 00 01  |..h.A.Vk.Z......|
 00000050  01 16 03 02 00 40 00 00  00 00 00 00 00 00 00 00  |.....@..........|
-00000060  00 00 00 00 00 00 c0 81  e7 e8 40 f3 24 45 ed 74  |..........@.$E.t|
-00000070  86 31 7b 39 d1 3c a2 67  99 28 06 b1 34 b6 3c a6  |.1{9.<.g.(..4.<.|
-00000080  1d ce 39 aa 56 c9 72 0d  f1 e0 c1 5a 51 a0 5d f2  |..9.V.r....ZQ.].|
-00000090  44 4d e6 d7 0e 84                                 |DM....|
+00000060  00 00 00 00 00 00 c6 ba  bf 63 87 97 ee 47 b3 2b  |.........c...G.+|
+00000070  4d 9c 53 01 4a 84 c3 8a  a7 0f 48 7d 31 55 28 1e  |M.S.J.....H}1U(.|
+00000080  91 65 b0 ce 15 86 5d f1  4b e6 5e 55 2c 5b 2d d1  |.e....].K.^U,[-.|
+00000090  e9 41 02 cc 34 d3                                 |.A..4.|
 >>> Flow 4 (server to client)
-00000000  14 03 02 00 01 01 16 03  02 00 40 82 8d c7 e3 7b  |..........@....{|
-00000010  f8 9d 33 a1 c2 08 8c 24  d9 af 66 64 6e e8 61 8e  |..3....$..fdn.a.|
-00000020  3c 03 65 2d c3 64 a2 26  23 a5 25 3f a2 a4 f9 40  |<.e-.d.&#.%?...@|
-00000030  ec 9f 0e b8 57 b1 5f 84  ea 94 72 1a 3e 60 f1 dd  |....W._...r.>`..|
-00000040  af 2e 81 f7 16 de 43 85  21 51 49                 |......C.!QI|
+00000000  14 03 02 00 01 01 16 03  02 00 40 93 fc b4 e7 cc  |..........@.....|
+00000010  32 cc 3a 3e 55 8f ca ef  ba 3a 1a 48 38 49 c0 d4  |2.:>U....:.H8I..|
+00000020  70 7e 22 81 cb 7b 9b b8  fc 72 c8 82 03 26 39 2f  |p~"..{...r...&9/|
+00000030  59 a1 2d b3 e5 eb 5e fc  d4 24 7e c2 72 1c f2 a5  |Y.-...^..$~.r...|
+00000040  eb 87 9e a1 48 c9 58 b0  c8 79 62                 |....H.X..yb|
 >>> Flow 5 (client to server)
 00000000  17 03 02 00 30 00 00 00  00 00 00 00 00 00 00 00  |....0...........|
-00000010  00 00 00 00 00 43 8f 88  82 c8 e1 55 37 76 d7 a5  |.....C.....U7v..|
-00000020  83 c6 d2 94 26 fe 30 1f  e2 24 ca d7 27 22 33 47  |....&.0..$..'"3G|
-00000030  5f a9 74 9d ad 15 03 02  00 30 00 00 00 00 00 00  |_.t......0......|
-00000040  00 00 00 00 00 00 00 00  00 00 49 8e ee 5c ec 86  |..........I..\..|
-00000050  e7 64 a7 ac 0d 5c c4 43  a6 45 a4 22 b7 3d 21 06  |.d...\.C.E.".=!.|
-00000060  11 67 08 99 9a 08 a1 7c  e0 1e                    |.g.....|..|
+00000010  00 00 00 00 00 2e bb 57  aa dd 16 83 1a f7 91 b8  |.......W........|
+00000020  48 0a 10 53 79 41 6e 4f  a8 4f f3 87 2b 9d 2f a2  |H..SyAnO.O..+./.|
+00000030  2d f7 a0 d4 0d 15 03 02  00 30 00 00 00 00 00 00  |-........0......|
+00000040  00 00 00 00 00 00 00 00  00 00 36 d7 41 d4 f0 53  |..........6.A..S|
+00000050  9d 4f 47 5c e9 41 b5 07  8e 0d 07 3c 84 c1 3a 3e  |.OG\.A.....<..:>|
+00000060  f0 ad 3a bd 0a 7a 1c 41  3f 3a                    |..:..z.A?:|
--- a/src/crypto/tls/testdata/Client-TLSv11-ECDHE-RSA-AES
+++ b/src/crypto/tls/testdata/Client-TLSv11-ECDHE-RSA-AES
--- a/src/crypto/tls/testdata/Client-TLSv11-RSA-RC4
+++ b/src/crypto/tls/testdata/Client-TLSv11-RSA-RC4
--- a/src/crypto/tls/testdata/Client-TLSv12-AES128-GCM-SHA256
+++ b/src/crypto/tls/testdata/Client-TLSv12-AES128-GCM-SHA256
--- a/src/crypto/tls/testdata/Client-TLSv12-AES256-GCM-SHA384
+++ b/src/crypto/tls/testdata/Client-TLSv12-AES256-GCM-SHA384
--- a/src/crypto/tls/testdata/Client-TLSv12-ALPN
+++ b/src/crypto/tls/testdata/Client-TLSv12-ALPN
--- a/src/crypto/tls/testdata/Client-TLSv12-ALPN-NoMatch
+++ b/src/crypto/tls/testdata/Client-TLSv12-ALPN-NoMatch
--- a/src/crypto/tls/testdata/Client-TLSv12-ClientCert-ECDSA-ECDSA
+++ b/src/crypto/tls/testdata/Client-TLSv12-ClientCert-ECDSA-ECDSA
@@ -9,11 +9,11 @@
 00000070  0d 00 0e 00 0c 04 01 04  03 05 01 05 03 02 01 02  |................|
 00000080  03 ff 01 00 01 00 00 12  00 00                    |..........|
 >>> Flow 2 (server to client)
-00000000  16 03 03 00 59 02 00 00  55 03 03 f0 5c 85 c8 ff  |....Y...U...\...|
-00000010  c5 57 76 99 3d 75 e6 2e  db 31 26 c0 0c 81 c5 6b  |.Wv.=u...1&....k|
-00000020  30 79 e6 72 86 77 48 01  ec 43 1a 20 f8 fd ad b5  |0y.r.wH..C. ....|
-00000030  a0 7b f3 35 27 df ad 95  f9 56 f9 79 6c a2 6c 23  |.{.5'....V.yl.l#|
-00000040  51 4c ef fc 92 fb fa 59  97 e9 63 27 c0 09 00 00  |QL.....Y..c'....|
+00000000  16 03 03 00 59 02 00 00  55 03 03 d6 dd 74 6d 2b  |....Y...U....tm+|
+00000010  d4 87 97 98 54 07 08 91  45 f5 45 65 63 e1 aa 44  |....T...E.Eec..D|
+00000020  1e 89 71 86 a4 11 24 4d  f7 9e 9f 20 62 fd 7b bd  |..q...$M... b.{.|
+00000030  49 07 35 bc 3e cb 28 5a  b0 34 a6 c1 6a 43 e8 97  |I.5.>.(Z.4..jC..|
+00000040  31 d9 b3 ac c9 08 ca a4  e7 a6 02 e7 c0 09 00 00  |1...............|
 00000050  0d ff 01 00 01 00 00 0b  00 04 03 00 01 02 16 03  |................|
 00000060  03 02 0e 0b 00 02 0a 00  02 07 00 02 04 30 82 02  |.............0..|
 00000070  00 30 82 01 62 02 09 00  b8 bf 2d 47 a0 d2 eb f4  |.0..b.....-G....|
@@ -48,24 +48,23 @@
 00000240  13 83 0d 94 06 bb d4 37  7a f6 ec 7a c9 86 2e dd  |.......7z..z....|
 00000250  d7 11 69 7f 85 7c 56 de  fb 31 78 2b e4 c7 78 0d  |..i..|V..1x+..x.|
 00000260  ae cb be 9e 4e 36 24 31  7b 6a 0f 39 95 12 07 8f  |....N6$1{j.9....|
-00000270  2a 16 03 03 00 d8 0c 00  00 d4 03 00 17 41 04 51  |*............A.Q|
-00000280  1e 2e 40 c5 a1 13 15 f0  bc 8a 04 e1 9a 57 74 10  |..@..........Wt.|
-00000290  7e b3 17 bf 0c c9 85 9b  5f bd 6b 39 c7 a6 c0 50  |~......._.k9...P|
-000002a0  0e 5e 9b b1 8c cc 57 39  e8 0f 94 02 be 28 19 16  |.^....W9.....(..|
-000002b0  94 73 2b c1 3c a7 0f c9  e7 b0 89 ac 13 53 f9 04  |.s+.<........S..|
-000002c0  03 00 8b 30 81 88 02 42  01 1b e0 ab 94 02 aa 27  |...0...B.......'|
-000002d0  fa 7b 99 9c 68 36 d8 2d  2e e0 92 84 c7 7b 37 74  |.{..h6.-.....{7t|
-000002e0  6a ad a8 f5 50 3f 74 d5  e8 8e 5a db 31 43 c8 98  |j...P?t...Z.1C..|
-000002f0  d3 ee 61 43 80 9a 72 eb  2d 2b 21 b8 33 aa 61 0a  |..aC..r.-+!.3.a.|
-00000300  cd dc 85 88 29 26 83 ee  3c b2 02 42 00 b6 ea 34  |....)&..<..B...4|
-00000310  30 71 5c 0a 9a 6d a2 25  62 1c 3e 13 90 9c a3 b8  |0q\..m.%b.>.....|
-00000320  0d 97 a8 06 26 9e 31 50  88 9a b9 ff 12 63 a8 14  |....&.1P.....c..|
-00000330  18 f3 c2 b0 af d1 27 25  a9 ec ef 69 85 7a 72 c6  |......'%...i.zr.|
-00000340  b0 88 d2 c1 41 43 f4 69  62 25 13 eb f9 f8 16 03  |....AC.ib%......|
-00000350  03 00 2e 0d 00 00 26 03  01 02 40 00 1e 06 01 06  |......&...@.....|
-00000360  02 06 03 05 01 05 02 05  03 04 01 04 02 04 03 03  |................|
-00000370  01 03 02 03 03 02 01 02  02 02 03 00 00 0e 00 00  |................|
-00000380  00                                                |.|
+00000270  2a 16 03 03 00 d7 0c 00  00 d3 03 00 17 41 04 3a  |*............A.:|
+00000280  c2 3a b5 49 45 bd c8 52  cd f4 25 65 e0 f0 56 20  |.:.IE..R..%e..V |
+00000290  6a 33 e1 23 31 b5 9c 81  fe 8f 87 9a 6b bd 90 9f  |j3.#1.......k...|
+000002a0  c0 65 68 b2 74 5e e3 b8  03 3e 84 e9 53 c8 0d f4  |.eh.t^...>..S...|
+000002b0  a8 5e 41 5a c8 e6 8d 8c  34 f1 c5 e9 5d 07 41 04  |.^AZ....4...].A.|
+000002c0  03 00 8a 30 81 87 02 41  70 d8 b9 4c 7f 49 95 83  |...0...Ap..L.I..|
+000002d0  f4 6b 42 19 d2 f3 a4 63  bd cb c9 a2 d4 98 5b b1  |.kB....c......[.|
+000002e0  24 18 7b fd d0 05 fb a2  46 f2 fa e0 a7 6e 1a a5  |$.{.....F....n..|
+000002f0  64 a3 35 a8 87 84 aa 52  80 37 9a b9 06 53 ee 91  |d.5....R.7...S..|
+00000300  d0 60 02 c1 b3 aa 86 05  6d 02 42 01 88 36 0a a9  |.`......m.B..6..|
+00000310  97 23 9b b9 85 76 a1 6b  c7 69 37 54 d8 4f 07 3a  |.#...v.k.i7T.O.:|
+00000320  6f c3 47 38 b2 0c a7 21  2f bd c1 1a c5 80 76 5b  |o.G8...!/.....v[|
+00000330  32 cb d1 5c 46 88 2e 7a  55 87 87 79 5c 1d 0c ba  |2..\F..zU..y\...|
+00000340  a7 56 86 ae 4a f5 e8 7b  81 23 7e d7 82 16 03 03  |.V..J..{.#~.....|
+00000350  00 2e 0d 00 00 26 03 01  02 40 00 1e 06 01 06 02  |.....&...@......|
+00000360  06 03 05 01 05 02 05 03  04 01 04 02 04 03 03 01  |................|
+00000370  03 02 03 03 02 01 02 02  02 03 00 00 0e 00 00 00  |................|
 >>> Flow 3 (client to server)
 00000000  16 03 03 02 0a 0b 00 02  06 00 02 03 00 02 00 30  |...............0|
 00000010  82 01 fc 30 82 01 5e 02  09 00 9a 30 84 6c 26 35  |...0..^....0.l&5|
@@ -104,32 +103,32 @@
 00000220  51 88 35 75 71 b5 e5 54  5b 12 2e 8f 09 67 fd a7  |Q.5uq..T[....g..|
 00000230  24 20 3e b2 56 1c ce 97  28 5e f8 2b 2d 4f 9e f1  |$ >.V...(^.+-O..|
 00000240  07 9f 6c 4b 5b 83 56 e2  32 42 e9 58 b6 d7 49 a6  |..lK[.V.2B.X..I.|
-00000250  b5 68 1a 41 03 56 6b dc  5a 89 16 03 03 00 93 0f  |.h.A.Vk.Z.......|
-00000260  00 00 8f 05 03 00 8b 30  81 88 02 42 00 8a 82 c2  |.......0...B....|
-00000270  c0 30 8c a1 12 c4 4a ed  d1 00 3f 2d ee bd 8e 9c  |.0....J...?-....|
-00000280  a5 a0 d9 6f 44 27 49 60  e9 75 01 ee b4 0d 87 25  |...oD'I`.u.....%|
-00000290  2a 8d 67 f1 e3 d9 49 6f  a0 34 90 76 93 52 f9 17  |*.g...Io.4.v.R..|
-000002a0  fb 1b cc d0 5a f4 50 37  9c 4c 44 b6 61 5f 02 42  |....Z.P7.LD.a_.B|
-000002b0  01 ad 85 38 e9 3a 69 35  ea 74 76 2c 09 6b ab d4  |...8.:i5.tv,.k..|
-000002c0  e0 dc d1 d5 03 41 22 8e  8b 53 98 b7 f1 b6 e9 29  |.....A"..S.....)|
-000002d0  d2 57 34 dc e0 b6 71 77  79 bd 57 61 7c 30 77 00  |.W4...qwy.Wa|0w.|
-000002e0  7a 42 2d 1f ed e8 14 da  16 33 c6 31 e4 3d 53 3a  |zB-......3.1.=S:|
-000002f0  9a 37 14 03 03 00 01 01  16 03 03 00 40 00 00 00  |.7..........@...|
-00000300  00 00 00 00 00 00 00 00  00 00 00 00 00 d4 fe c1  |................|
-00000310  a6 fb 21 78 21 80 af 0d  da a1 80 68 e2 9c ec 0b  |..!x!......h....|
-00000320  57 8c 2a 7e f1 11 3b 52  ea 17 00 d1 d4 14 78 c5  |W.*~..;R......x.|
-00000330  81 39 12 ad 30 98 93 1b  29 77 45 7d 00           |.9..0...)wE}.|
+00000250  b5 68 1a 41 03 56 6b dc  5a 89 16 03 03 00 92 0f  |.h.A.Vk.Z.......|
+00000260  00 00 8e 05 03 00 8a 30  81 87 02 42 01 4a bf 96  |.......0...B.J..|
+00000270  4a 0b 87 81 26 f1 22 55  c3 8c d1 7d 6f 33 f5 21  |J...&."U...}o3.!|
+00000280  0b 2f 3a ae 08 8b b9 80  55 d4 3f 07 eb 78 6b 52  |./:.....U.?..xkR|
+00000290  f6 5d 63 e1 ac b9 3c fe  fc 37 e7 9a 6b 47 d3 33  |.]c...<..7..kG.3|
+000002a0  3b b1 a3 eb 83 7c 2c 0d  c3 f7 f0 b7 d4 10 02 41  |;....|,........A|
+000002b0  2a 25 f2 b1 da 57 18 24  39 9b 24 21 72 ec d7 ae  |*%...W.$9.$!r...|
+000002c0  cd 28 10 c8 2b e6 53 84  a6 ee 99 12 7c ab 20 6b  |.(..+.S.....|. k|
+000002d0  f2 9c aa d3 5a 74 d0 db  ac 0a e5 8a be 7f b8 bd  |....Zt..........|
+000002e0  ec 47 9e 73 9f ba 80 45  73 5d 43 64 3d b6 67 0a  |.G.s...Es]Cd=.g.|
+000002f0  a5 14 03 03 00 01 01 16  03 03 00 40 00 00 00 00  |...........@....|
+00000300  00 00 00 00 00 00 00 00  00 00 00 00 4c 68 36 55  |............Lh6U|
+00000310  79 e0 a1 ee 57 f3 2b 9c  3f b5 2f c9 3f 28 09 fa  |y...W.+.?./.?(..|
+00000320  e5 ad 4b a2 d2 3a 75 4b  dc e4 fe f8 ea 9d 92 99  |..K..:uK........|
+00000330  cc 3b 80 af fb 59 bc 5b  e1 7b 8c 1a              |.;...Y.[.{..|
 >>> Flow 4 (server to client)
-00000000  14 03 03 00 01 01 16 03  03 00 40 f7 0a 50 d0 87  |..........@..P..|
-00000010  fb f9 be b0 6b 8d 9b a5  8b d2 56 27 67 7d 3c 51  |....k.....V'g}<Q|
-00000020  af 53 8c 7d 61 9f 12 a5  54 5d ec 56 36 31 01 73  |.S.}a...T].V61.s|
-00000030  37 cb 5f ff 36 3c 1c 4a  e3 db ec 99 bc 86 15 e4  |7._.6<.J........|
-00000040  cd 5d 87 bd d7 80 c7 b1  fe 42 9f                 |.].......B.|
+00000000  14 03 03 00 01 01 16 03  03 00 40 78 7d ac 36 4d  |..........@x}.6M|
+00000010  d3 6b fa c6 79 99 50 ee  e3 10 28 ce a7 0e 37 5f  |.k..y.P...(...7_|
+00000020  76 bb 2d 31 91 48 90 23  e2 5b 5d 62 d1 13 a4 1c  |v.-1.H.#.[]b....|
+00000030  92 15 a2 6c 87 9f 47 db  b0 f6 91 25 47 74 24 ef  |...l..G....%Gt$.|
+00000040  0b 42 3c d0 79 e6 50 10  45 b0 5b                 |.B<.y.P.E.[|
 >>> Flow 5 (client to server)
 00000000  17 03 03 00 30 00 00 00  00 00 00 00 00 00 00 00  |....0...........|
-00000010  00 00 00 00 00 ef 81 cf  63 f1 b5 6b b2 30 6f 00  |........c..k.0o.|
-00000020  0e c0 0c 5d d4 85 76 d2  30 db 6b 14 06 e4 75 0b  |...]..v.0.k...u.|
-00000030  cf fc 72 aa 64 15 03 03  00 30 00 00 00 00 00 00  |..r.d....0......|
-00000040  00 00 00 00 00 00 00 00  00 00 ef 28 8a e7 15 51  |...........(...Q|
-00000050  0d 0d 27 4f 36 35 f6 43  28 d2 16 dc a3 35 33 3e  |..'O65.C(....53>|
-00000060  be 80 db 31 a9 89 3d 17  c2 58                    |...1..=..X|
+00000010  00 00 00 00 00 61 a5 a5  a5 58 ca 4b 7a 1e e8 cc  |.....a...X.Kz...|
+00000020  77 ac 01 95 d6 4f 8f 9c  83 cf cf 2a 67 3d 02 1e  |w....O.....*g=..|
+00000030  67 b5 81 db 23 15 03 03  00 30 00 00 00 00 00 00  |g...#....0......|
+00000040  00 00 00 00 00 00 00 00  00 00 ea 7b 51 4f ae cf  |...........{QO..|
+00000050  70 9d 62 db 5e 99 a2 31  1f 41 fa 0c a2 c6 87 0c  |p.b.^..1.A......|
+00000060  a7 ed e7 21 94 34 e1 66  fd b9                    |...!.4.f..|
--- a/src/crypto/tls/testdata/Client-TLSv12-ClientCert-ECDSA-RSA
+++ b/src/crypto/tls/testdata/Client-TLSv12-ClientCert-ECDSA-RSA
--- a/src/crypto/tls/testdata/Client-TLSv12-ClientCert-RSA-AES256-GCM-SHA384
+++ b/src/crypto/tls/testdata/Client-TLSv12-ClientCert-RSA-AES256-GCM-SHA384
--- a/src/crypto/tls/testdata/Client-TLSv12-ClientCert-RSA-ECDSA
+++ b/src/crypto/tls/testdata/Client-TLSv12-ClientCert-RSA-ECDSA
--- a/src/crypto/tls/testdata/Client-TLSv12-ClientCert-RSA-RSA
+++ b/src/crypto/tls/testdata/Client-TLSv12-ClientCert-RSA-RSA
--- a/src/crypto/tls/testdata/Client-TLSv12-ECDHE-ECDSA-AES
+++ b/src/crypto/tls/testdata/Client-TLSv12-ECDHE-ECDSA-AES
@@ -9,11 +9,11 @@
 00000070  0d 00 0e 00 0c 04 01 04  03 05 01 05 03 02 01 02  |................|
 00000080  03 ff 01 00 01 00 00 12  00 00                    |..........|
 >>> Flow 2 (server to client)
-00000000  16 03 03 00 59 02 00 00  55 03 03 8a ae 27 5b 39  |....Y...U....'[9|
-00000010  8b c4 a6 d5 fa 9e 67 9e  6c fe 53 ed ab ec e0 04  |......g.l.S.....|
-00000020  8d 7c f8 1f d0 db 2e cb  22 4d a1 20 ee 80 5f fc  |.|......"M. .._.|
-00000030  f8 77 8a 23 23 c5 95 81  7f a6 12 f5 e0 19 91 50  |.w.##..........P|
-00000040  da 75 42 c2 eb 45 bf e2  a5 54 ed 6e c0 09 00 00  |.uB..E...T.n....|
+00000000  16 03 03 00 59 02 00 00  55 03 03 5b 22 ee ec 51  |....Y...U..["..Q|
+00000010  c0 d3 6a 91 a2 0f 8f f4  80 f1 9c d0 77 88 7c 99  |..j.........w.|.|
+00000020  88 ea c9 dc 17 08 9c fb  3b 24 23 20 32 70 dd bd  |........;$# 2p..|
+00000030  39 5a aa 5d a8 52 7a 6f  c0 ea ec db ed 21 d3 f3  |9Z.].Rzo.....!..|
+00000040  c5 80 be 70 0d 02 cf 0c  5e ec ea c6 c0 09 00 00  |...p....^.......|
 00000050  0d ff 01 00 01 00 00 0b  00 04 03 00 01 02 16 03  |................|
 00000060  03 02 0e 0b 00 02 0a 00  02 07 00 02 04 30 82 02  |.............0..|
 00000070  00 30 82 01 62 02 09 00  b8 bf 2d 47 a0 d2 eb f4  |.0..b.....-G....|
@@ -48,21 +48,21 @@
 00000240  13 83 0d 94 06 bb d4 37  7a f6 ec 7a c9 86 2e dd  |.......7z..z....|
 00000250  d7 11 69 7f 85 7c 56 de  fb 31 78 2b e4 c7 78 0d  |..i..|V..1x+..x.|
 00000260  ae cb be 9e 4e 36 24 31  7b 6a 0f 39 95 12 07 8f  |....N6$1{j.9....|
-00000270  2a 16 03 03 00 d7 0c 00  00 d3 03 00 17 41 04 3e  |*............A.>|
-00000280  e3 d6 d6 7b d7 ec 6f 4b  88 50 53 26 5a 2b a6 69  |...{..oK.PS&Z+.i|
-00000290  25 6f 30 a7 c3 a5 39 5c  e2 ca b6 35 a5 30 35 9a  |%o0...9\...5.05.|
-000002a0  35 8f e3 65 bd 4c 47 30  72 9a 4b 32 c4 6d 01 c9  |5..e.LG0r.K2.m..|
-000002b0  a5 91 d1 cd 0b 79 e2 04  0f a9 9c c2 72 cd 58 04  |.....y......r.X.|
-000002c0  03 00 8a 30 81 87 02 41  70 01 8c dd 0a 32 db e3  |...0...Ap....2..|
-000002d0  0b 04 9c d0 64 a1 08 06  b1 cf e3 66 79 1f c0 c1  |....d......fy...|
-000002e0  14 34 87 a6 e5 52 11 20  12 24 a5 b6 c2 50 63 86  |.4...R. .$...Pc.|
-000002f0  31 6a e3 85 7d 19 2d 3b  68 bf b7 64 20 37 c7 f9  |1j..}.-;h..d 7..|
-00000300  76 38 b5 32 84 0b f9 b6  71 02 42 01 89 e3 93 85  |v8.2....q.B.....|
-00000310  d6 16 8e 44 66 72 d6 9f  b3 b1 e9 22 ad 2e f8 49  |...Dfr....."...I|
-00000320  41 8f 80 f9 0e d4 fd de  35 67 cf 09 ba 65 f7 a1  |A.......5g...e..|
-00000330  17 a8 c0 b5 a3 cc c0 17  83 af 68 92 5b 5c a9 ce  |..........h.[\..|
-00000340  ce 11 92 93 fe 39 b9 80  19 20 f2 b6 3b 16 03 03  |.....9... ..;...|
-00000350  00 04 0e 00 00 00                                 |......|
+00000270  2a 16 03 03 00 d8 0c 00  00 d4 03 00 17 41 04 6d  |*............A.m|
+00000280  3b 97 b1 5e 12 dd bb cc  94 c2 f3 3e 78 52 e1 c8  |;..^.......>xR..|
+00000290  35 b7 e3 2b 6b d9 b1 f2  6a 09 22 de 3d 09 a4 53  |5..+k...j.".=..S|
+000002a0  ee e6 38 af 11 4b 71 fb  f6 e4 fe 75 fc fc 32 eb  |..8..Kq....u..2.|
+000002b0  e3 83 5b 75 a5 fc 4a d3  4e 75 14 81 4a 9f d5 04  |..[u..J.Nu..J...|
+000002c0  03 00 8b 30 81 88 02 42  00 d1 48 44 bc 50 5b b7  |...0...B..HD.P[.|
+000002d0  f4 ed 83 d3 f9 65 1d 7c  4f 0d 0c 03 e6 fc 9a 15  |.....e.|O.......|
+000002e0  84 2d e7 3f 99 5f 26 23  59 5f 88 bd 33 69 1b cc  |.-.?._&#Y_..3i..|
+000002f0  f2 a7 1b 18 7f 9b 16 4f  22 16 90 7c cb cb 56 ac  |.......O"..|..V.|
+00000300  9d 93 6e e4 8e 08 42 05  ef 8f 02 42 01 02 2d 66  |..n...B....B..-f|
+00000310  6f 95 a3 0c 53 39 02 5b  ce bd f1 22 e8 b1 ac 02  |o...S9.[..."....|
+00000320  b0 89 5b 4d 46 5b ed a2  a9 c0 22 9b c0 c0 9a d5  |..[MF[....".....|
+00000330  0f 95 11 1f 30 bf e5 f1  1b bd 19 1c c2 a8 63 5b  |....0.........c[|
+00000340  86 20 99 60 c3 80 38 33  e2 32 96 ea 26 a4 16 03  |. .`..83.2..&...|
+00000350  03 00 04 0e 00 00 00                              |.......|
 >>> Flow 3 (client to server)
 00000000  16 03 03 00 46 10 00 00  42 41 04 1e 18 37 ef 0d  |....F...BA...7..|
 00000010  19 51 88 35 75 71 b5 e5  54 5b 12 2e 8f 09 67 fd  |.Q.5uq..T[....g.|
@@ -70,21 +70,21 @@
 00000030  f1 07 9f 6c 4b 5b 83 56  e2 32 42 e9 58 b6 d7 49  |...lK[.V.2B.X..I|
 00000040  a6 b5 68 1a 41 03 56 6b  dc 5a 89 14 03 03 00 01  |..h.A.Vk.Z......|
 00000050  01 16 03 03 00 40 00 00  00 00 00 00 00 00 00 00  |.....@..........|
-00000060  00 00 00 00 00 00 39 19  e6 fb c7 28 b4 c9 f5 ba  |......9....(....|
-00000070  a2 44 0a 74 70 18 86 1f  5f c2 3d 99 f5 d7 17 04  |.D.tp..._.=.....|
-00000080  88 07 a5 06 01 6a 2c 13  55 0b fc 82 75 b5 24 54  |.....j,.U...u.$T|
-00000090  a0 63 9e f0 ce 92                                 |.c....|
+00000060  00 00 00 00 00 00 0b d9  15 a7 d8 15 3f dc a4 f1  |............?...|
+00000070  16 b7 c4 c2 72 bd e4 32  fd 4a 37 20 f2 8a 03 d4  |....r..2.J7 ....|
+00000080  30 fe f7 d1 a2 49 dc 70  b8 b2 71 12 b0 07 b0 e4  |0....I.p..q.....|
+00000090  f8 ec 84 6b 8b 19                                 |...k..|
 >>> Flow 4 (server to client)
-00000000  14 03 03 00 01 01 16 03  03 00 40 15 37 89 e6 1f  |..........@.7...|
-00000010  20 f6 91 b9 1f fb 29 e9  3e 07 ab c2 09 96 06 89  | .....).>.......|
-00000020  69 c2 dd 63 e1 24 5d cd  af 08 e2 ed df 46 45 6b  |i..c.$]......FEk|
-00000030  1e 9f 62 b6 89 27 04 3f  fc f2 77 71 23 04 24 37  |..b..'.?..wq#.$7|
-00000040  74 8a 0a 64 a8 10 e3 1c  dc 53 64                 |t..d.....Sd|
+00000000  14 03 03 00 01 01 16 03  03 00 40 af fc e3 71 69  |..........@...qi|
+00000010  53 92 6c db 65 5f b6 a0  1e 37 f3 f6 17 60 9c c8  |S.l.e_...7...`..|
+00000020  a4 02 ae ac bb 98 66 e5  15 fb 5b 0e 59 f9 29 36  |......f...[.Y.)6|
+00000030  c7 45 05 23 d0 3f fb f8  ee 7b 6a 3a 7f 77 ed d1  |.E.#.?...{j:.w..|
+00000040  02 f6 f5 c5 cd d8 15 a4  7a 24 cd                 |........z$.|
 >>> Flow 5 (client to server)
 00000000  17 03 03 00 30 00 00 00  00 00 00 00 00 00 00 00  |....0...........|
-00000010  00 00 00 00 00 ae 4e e7  3a 25 9d 8f fa 06 99 49  |......N.:%.....I|
-00000020  2e b8 0f 49 d0 54 2d 06  b4 d7 4c 60 51 f1 13 11  |...I.T-...L`Q...|
-00000030  c1 b3 f5 d0 bc 15 03 03  00 30 00 00 00 00 00 00  |.........0......|
-00000040  00 00 00 00 00 00 00 00  00 00 80 de bf db 10 74  |...............t|
-00000050  da 3f d8 77 ca 37 cc f3  96 bd d3 e1 34 9c f2 0a  |.?.w.7......4...|
-00000060  70 60 5e 7c a4 7e c9 bd  89 5f                    |p`^|.~..._|
+00000010  00 00 00 00 00 d9 d2 27  be 26 cd 7b d5 11 5e 56  |.......'.&.{..^V|
+00000020  96 3e f6 07 8a 71 2d 78  ac 66 d3 55 72 3e 28 61  |.>...q-x.f.Ur>(a|
+00000030  9a 07 96 97 a3 15 03 03  00 30 00 00 00 00 00 00  |.........0......|
+00000040  00 00 00 00 00 00 00 00  00 00 4c 94 79 c1 09 13  |..........L.y...|
+00000050  19 a5 25 a8 97 84 b7 94  e6 f6 04 2f 5a cc 4b 4c  |..%......../Z.KL|
+00000060  98 44 c9 91 7d 11 6d 4d  92 47                    |.D..}.mM.G|
--- a/src/crypto/tls/testdata/Client-TLSv12-ECDHE-ECDSA-AES-GCM
+++ b/src/crypto/tls/testdata/Client-TLSv12-ECDHE-ECDSA-AES-GCM
@@ -9,11 +9,11 @@
 00000070  0d 00 0e 00 0c 04 01 04  03 05 01 05 03 02 01 02  |................|
 00000080  03 ff 01 00 01 00 00 12  00 00                    |..........|
 >>> Flow 2 (server to client)
-00000000  16 03 03 00 59 02 00 00  55 03 03 42 ab c5 81 f5  |....Y...U..B....|
-00000010  c0 5b 73 64 f6 1b e0 59  30 b0 fd c5 e6 b3 57 f2  |.[sd...Y0.....W.|
-00000020  28 3f 5c d2 e8 05 7d a8  29 84 2e 20 8e 18 6b 52  |(?\...}.).. ..kR|
-00000030  1b ee 03 02 64 52 fb 24  44 4f 39 f2 d3 0f e6 9d  |....dR.$DO9.....|
-00000040  50 31 31 b3 39 9e c1 3a  b3 67 41 a0 c0 2b 00 00  |P11.9..:.gA..+..|
+00000000  16 03 03 00 59 02 00 00  55 03 03 b4 45 73 95 81  |....Y...U...Es..|
+00000010  89 ac ac 13 e5 72 ec ef  09 e0 34 5b 20 70 ea a8  |.....r....4[ p..|
+00000020  71 e7 4f 76 4c 0f 1e f5  a2 cb cb 20 81 75 d2 6a  |q.OvL...... .u.j|
+00000030  e2 b7 d2 22 22 2a 09 8b  01 53 d2 25 30 64 7e 02  |...""*...S.%0d~.|
+00000040  63 3c 77 f0 d9 42 4b 8e  dc 81 2a 3a c0 2b 00 00  |c<w..BK...*:.+..|
 00000050  0d ff 01 00 01 00 00 0b  00 04 03 00 01 02 16 03  |................|
 00000060  03 02 0e 0b 00 02 0a 00  02 07 00 02 04 30 82 02  |.............0..|
 00000070  00 30 82 01 62 02 09 00  b8 bf 2d 47 a0 d2 eb f4  |.0..b.....-G....|
@@ -48,20 +48,20 @@
 00000240  13 83 0d 94 06 bb d4 37  7a f6 ec 7a c9 86 2e dd  |.......7z..z....|
 00000250  d7 11 69 7f 85 7c 56 de  fb 31 78 2b e4 c7 78 0d  |..i..|V..1x+..x.|
 00000260  ae cb be 9e 4e 36 24 31  7b 6a 0f 39 95 12 07 8f  |....N6$1{j.9....|
-00000270  2a 16 03 03 00 d8 0c 00  00 d4 03 00 17 41 04 7a  |*............A.z|
-00000280  01 b4 2c 50 85 34 6e 2c  2c 52 bc fa cf 71 82 e5  |..,P.4n,,R...q..|
-00000290  98 8d b0 f1 65 5f 7d bc  c8 1b 7c 84 3e 46 45 c5  |....e_}...|.>FE.|
-000002a0  43 0e 72 e1 90 63 40 26  1c 22 dc 9a 3b b8 12 26  |C.r..c@&."..;..&|
-000002b0  a9 d6 1c e1 44 cf c7 38  db 9e 1b d0 b9 bb 06 04  |....D..8........|
-000002c0  03 00 8b 30 81 88 02 42  01 6b af f8 34 ae 89 50  |...0...B.k..4..P|
-000002d0  df 44 20 16 0b f9 ef a9  99 63 39 48 39 08 69 2d  |.D ......c9H9.i-|
-000002e0  2d 9d 8b 3a e8 8a 9c 2f  e9 d2 85 f2 d3 54 53 ec  |-..:.../.....TS.|
-000002f0  b7 18 5b b0 76 3c 38 02  85 cc 00 20 45 9d e7 ba  |..[.v<8.... E...|
-00000300  c0 3f c0 b5 1f df 64 42  fd 34 02 42 00 fa e5 dd  |.?....dB.4.B....|
-00000310  04 c4 60 60 ff 9b 95 a2  a4 b4 80 87 9f 59 b4 8e  |..``.........Y..|
-00000320  72 bf 53 8e 61 b6 df 99  9d 81 05 c5 71 a2 00 cb  |r.S.a.......q...|
-00000330  80 bd e5 2a c3 51 d0 45  2f a3 8b 6d 21 6e 6c 80  |...*.Q.E/..m!nl.|
-00000340  4e f1 28 23 6d 76 df 55  77 69 a1 be 39 05 16 03  |N.(#mv.Uwi..9...|
+00000270  2a 16 03 03 00 d8 0c 00  00 d4 03 00 17 41 04 a4  |*............A..|
+00000280  2f 56 be b7 78 2d 75 19  98 58 b3 2f be 5c d5 db  |/V..x-u..X./.\..|
+00000290  60 ce b1 e8 fe 59 76 f2  ac ed 8e f8 9d a3 87 5a  |`....Yv........Z|
+000002a0  22 78 31 1e 90 ca 64 be  77 c7 c0 06 d2 a6 ed 08  |"x1...d.w.......|
+000002b0  2a 37 cd c1 fe ce 34 5d  23 1e 8d df e1 9d bc 04  |*7....4]#.......|
+000002c0  03 00 8b 30 81 88 02 42  01 cd cd 3b 33 72 6d 6a  |...0...B...;3rmj|
+000002d0  fc 20 28 18 ae a0 dd 25  9d 16 14 a3 87 45 63 d5  |. (....%.....Ec.|
+000002e0  48 d8 24 2b ea c7 51 c9  3b d1 68 df c6 dc c8 0b  |H.$+..Q.;.h.....|
+000002f0  cd 80 06 1e 06 68 f7 c9  a7 ad e4 44 0b 1a 1b 8d  |.....h.....D....|
+00000300  fe e2 e9 c1 65 f4 f5 fc  8d 5f 02 42 01 78 ac 1e  |....e...._.B.x..|
+00000310  2a cd 55 0d 48 8a ee 1b  96 0c 49 e0 41 76 22 6a  |*.U.H.....I.Av"j|
+00000320  df 98 48 b1 c9 e3 90 d6  9b 57 8b 74 0d 7a 9f 7b  |..H......W.t.z.{|
+00000330  55 8d bb ec 3d 5d 6b 96  6b e1 ee a1 fe dd 63 43  |U...=]k.k.....cC|
+00000340  a3 78 ed 2d af 98 55 d2  91 64 0b 75 83 f0 16 03  |.x.-..U..d.u....|
 00000350  03 00 04 0e 00 00 00                              |.......|
 >>> Flow 3 (client to server)
 00000000  16 03 03 00 46 10 00 00  42 41 04 1e 18 37 ef 0d  |....F...BA...7..|
@@ -69,17 +69,17 @@
 00000020  a7 24 20 3e b2 56 1c ce  97 28 5e f8 2b 2d 4f 9e  |.$ >.V...(^.+-O.|
 00000030  f1 07 9f 6c 4b 5b 83 56  e2 32 42 e9 58 b6 d7 49  |...lK[.V.2B.X..I|
 00000040  a6 b5 68 1a 41 03 56 6b  dc 5a 89 14 03 03 00 01  |..h.A.Vk.Z......|
-00000050  01 16 03 03 00 28 00 00  00 00 00 00 00 00 94 ba  |.....(..........|
-00000060  0a c6 38 6b 65 60 95 5e  df fc 42 7e ac 9f 5a 25  |..8ke`.^..B~..Z%|
-00000070  39 0e a9 7a 61 b3 17 80  77 82 e5 80 0a af        |9..za...w.....|
+00000050  01 16 03 03 00 28 00 00  00 00 00 00 00 00 f7 ed  |.....(..........|
+00000060  e3 5d 52 8d 50 12 94 2b  08 aa 4c f0 1e 1f 96 ad  |.]R.P..+..L.....|
+00000070  d2 3f 44 68 40 01 c5 44  c6 51 b7 f3 2f 53        |.?Dh@..D.Q../S|
 >>> Flow 4 (server to client)
-00000000  14 03 03 00 01 01 16 03  03 00 28 ef 8d ac 17 6f  |..........(....o|
-00000010  88 03 88 8f f3 d5 a0 60  28 a9 4d e8 20 ae 0c 21  |.......`(.M. ..!|
-00000020  fd d1 50 9b c3 d1 e9 cd  27 ed d7 8b 92 60 49 47  |..P.....'....`IG|
-00000030  ed 9a 74                                          |..t|
+00000000  14 03 03 00 01 01 16 03  03 00 28 d9 6e d9 50 4e  |..........(.n.PN|
+00000010  89 ed 8c 78 ed 8d 09 29  5e 30 a8 d6 6e 7f 8f 0d  |...x...)^0..n...|
+00000020  da 57 b2 44 81 2c 86 f5  c2 8d 82 f7 8f 18 3a 19  |.W.D.,........:.|
+00000030  70 4e af                                          |pN.|
 >>> Flow 5 (client to server)
-00000000  17 03 03 00 1e 00 00 00  00 00 00 00 01 1d 4f 3c  |..............O<|
-00000010  c5 d1 39 01 46 ab 7d d1  75 59 e7 f5 cd fa 02 0b  |..9.F.}.uY......|
-00000020  dd 02 17 15 03 03 00 1a  00 00 00 00 00 00 00 02  |................|
-00000030  e9 a5 d5 0c 05 2a 82 fe  a5 6c 03 6e d0 c4 7d cb  |.....*...l.n..}.|
-00000040  32 f3                                             |2.|
+00000000  17 03 03 00 1e 00 00 00  00 00 00 00 01 7e b1 7c  |.............~.||
+00000010  00 de 79 e3 44 41 cd f1  39 76 cc 32 b4 9a 3a 1a  |..y.DA..9v.2..:.|
+00000020  16 1b 20 15 03 03 00 1a  00 00 00 00 00 00 00 02  |.. .............|
+00000030  f1 11 46 a8 1e 1b df 5d  d9 ae 3e 81 5c fd 0c 60  |..F....]..>.\..`|
+00000040  c3 35                                             |.5|
--- a/src/crypto/tls/testdata/Client-TLSv12-ECDHE-ECDSA-AES256-GCM-SHA384
+++ b/src/crypto/tls/testdata/Client-TLSv12-ECDHE-ECDSA-AES256-GCM-SHA384
@@ -9,11 +9,11 @@
 00000070  0d 00 0e 00 0c 04 01 04  03 05 01 05 03 02 01 02  |................|
 00000080  03 ff 01 00 01 00 00 12  00 00                    |..........|
 >>> Flow 2 (server to client)
-00000000  16 03 03 00 59 02 00 00  55 03 03 ed 6d 5a 1c 89  |....Y...U...mZ..|
-00000010  a4 f3 35 0b e4 74 7e e2  05 a5 36 4d 4a 55 b3 7c  |..5..t~...6MJU.||
-00000020  a1 a6 42 a3 fc 35 8c e0  97 5b 4b 20 a1 4a 06 28  |..B..5...[K .J.(|
-00000030  4d 40 0b fc 47 d5 4d 9b  d5 43 b0 0d 0d c6 ae 30  |M@..G.M..C.....0|
-00000040  79 59 00 d4 90 96 98 92  d2 3a 57 07 c0 2c 00 00  |yY.......:W..,..|
+00000000  16 03 03 00 59 02 00 00  55 03 03 34 4d a4 44 46  |....Y...U..4M.DF|
+00000010  4d 2b 28 42 74 7c 7c 25  d0 39 da 2d ec 1a 7a 6a  |M+(Bt||%.9.-..zj|
+00000020  03 e3 7a d5 69 63 e3 08  38 eb c7 20 a3 99 22 43  |..z.ic..8.. .."C|
+00000030  bf 58 19 9b 9b e6 84 19  f9 13 d5 c4 3b af cc c0  |.X..........;...|
+00000040  7e dc 6a c1 d3 2c 3a e6  3f 47 34 0f c0 2c 00 00  |~.j..,:.?G4..,..|
 00000050  0d ff 01 00 01 00 00 0b  00 04 03 00 01 02 16 03  |................|
 00000060  03 02 0e 0b 00 02 0a 00  02 07 00 02 04 30 82 02  |.............0..|
 00000070  00 30 82 01 62 02 09 00  b8 bf 2d 47 a0 d2 eb f4  |.0..b.....-G....|
@@ -48,20 +48,20 @@
 00000240  13 83 0d 94 06 bb d4 37  7a f6 ec 7a c9 86 2e dd  |.......7z..z....|
 00000250  d7 11 69 7f 85 7c 56 de  fb 31 78 2b e4 c7 78 0d  |..i..|V..1x+..x.|
 00000260  ae cb be 9e 4e 36 24 31  7b 6a 0f 39 95 12 07 8f  |....N6$1{j.9....|
-00000270  2a 16 03 03 00 d7 0c 00  00 d3 03 00 17 41 04 89  |*............A..|
-00000280  e6 6d 6a 56 3e e5 4e 72  df 2b 41 11 de a0 c0 3e  |.mjV>.Nr.+A....>|
-00000290  22 04 9a b5 a8 d6 22 30  2a e5 bd 83 1c 7a 8e 6c  |"....."0*....z.l|
-000002a0  93 ab 8f d7 64 9e fe 89  c0 da 9a 45 7d 76 91 69  |....d......E}v.i|
-000002b0  0a 11 c5 59 26 49 ec 69  99 b3 91 a5 4b 2b 89 04  |...Y&I.i....K+..|
-000002c0  03 00 8a 30 81 87 02 42  01 17 1d ff 9a 99 76 20  |...0...B......v |
-000002d0  13 8a e1 5a a8 04 8a 1e  84 57 fd b0 95 c1 6c af  |...Z.....W....l.|
-000002e0  b2 66 13 b5 75 36 ce 86  69 67 3d dc 82 2f 06 57  |.f..u6..ig=../.W|
-000002f0  19 14 56 54 0e 8e 04 74  0b 73 49 61 92 8e d1 9a  |..VT...t.sIa....|
-00000300  b5 60 7f 65 a8 f8 99 eb  ac 56 02 41 57 a3 78 57  |.`.e.....V.AW.xW|
-00000310  8a dd fa 9c 3d 24 a0 f2  0a 74 1a 8a 8f 6c 82 55  |....=$...t...l.U|
-00000320  4c cd d8 5d 79 99 87 93  41 e7 78 f4 28 0d ef 63  |L..]y...A.x.(..c|
-00000330  fb da 8e 93 86 31 6e 3e  ca 6f 6b 1b fd 7a a3 86  |.....1n>.ok..z..|
-00000340  6e bb 17 35 90 d9 a4 df  12 d0 54 5e 25 16 03 03  |n..5......T^%...|
+00000270  2a 16 03 03 00 d7 0c 00  00 d3 03 00 17 41 04 fe  |*............A..|
+00000280  52 a5 95 63 3b 33 98 48  53 2f 94 af 57 3c f2 a1  |R..c;3.HS/..W<..|
+00000290  48 6c 6e e9 88 a3 05 bd  a9 da ae 7d 62 ea 6b a9  |Hln........}b.k.|
+000002a0  60 2a b6 b8 51 f5 32 ac  af 99 2b eb 5f b3 25 d8  |`*..Q.2...+._.%.|
+000002b0  d1 1e f5 f4 bd 17 f0 ab  ff 11 ea bd 50 af 03 04  |............P...|
+000002c0  03 00 8a 30 81 87 02 41  7c cb 5e 47 3f c0 61 92  |...0...A|.^G?.a.|
+000002d0  1c ac d2 9d 20 11 d4 37  d4 24 56 d0 46 16 32 73  |.... ..7.$V.F.2s|
+000002e0  4c 2d d6 b0 47 ab ea a3  c2 4e a5 0c 36 88 1b e7  |L-..G....N..6...|
+000002f0  a7 e5 52 ac 0a 9c f2 6a  df 08 ec 7a a2 14 ae de  |..R....j...z....|
+00000300  6e 10 d9 8f 4e ea c7 60  fe 02 42 01 a5 ee 92 6c  |n...N..`..B....l|
+00000310  64 f1 b0 0f 62 ff 9b 87  63 56 e6 fb f6 6d 14 8d  |d...b...cV...m..|
+00000320  7f a7 7e 9f 0c 19 16 38  00 5e 62 20 51 47 58 19  |..~....8.^b QGX.|
+00000330  d9 35 be 1f 83 68 c8 60  8a 92 7c 44 4e 20 93 83  |.5...h.`..|DN ..|
+00000340  0e 09 99 8d af 14 c7 d2  d5 0d 2b 86 ff 16 03 03  |..........+.....|
 00000350  00 04 0e 00 00 00                                 |......|
 >>> Flow 3 (client to server)
 00000000  16 03 03 00 46 10 00 00  42 41 04 1e 18 37 ef 0d  |....F...BA...7..|
@@ -69,17 +69,17 @@
 00000020  a7 24 20 3e b2 56 1c ce  97 28 5e f8 2b 2d 4f 9e  |.$ >.V...(^.+-O.|
 00000030  f1 07 9f 6c 4b 5b 83 56  e2 32 42 e9 58 b6 d7 49  |...lK[.V.2B.X..I|
 00000040  a6 b5 68 1a 41 03 56 6b  dc 5a 89 14 03 03 00 01  |..h.A.Vk.Z......|
-00000050  01 16 03 03 00 28 00 00  00 00 00 00 00 00 9d e7  |.....(..........|
-00000060  31 2a 0a 46 84 fd d9 18  c2 b0 b1 31 eb 63 4d 2d  |1*.F.......1.cM-|
-00000070  ee 17 59 e6 b4 0f c6 d8  3d 8c e9 57 83 a8        |..Y.....=..W..|
+00000050  01 16 03 03 00 28 00 00  00 00 00 00 00 00 72 ed  |.....(........r.|
+00000060  57 32 07 69 25 b8 12 93  10 17 43 f2 17 43 5a 2e  |W2.i%.....C..CZ.|
+00000070  61 95 8b c5 d2 0d db cf  46 9f 76 4d 2a e9        |a.......F.vM*.|
 >>> Flow 4 (server to client)
-00000000  14 03 03 00 01 01 16 03  03 00 28 e0 85 25 02 b4  |..........(..%..|
-00000010  86 32 57 70 3c 7e 6b e5  75 e0 3a 43 c8 c2 fe f8  |.2Wp<~k.u.:C....|
-00000020  2e 04 fe 73 e4 7b 2c 9a  e0 65 2e d6 53 ae f1 19  |...s.{,..e..S...|
-00000030  dd 6f 1a                                          |.o.|
+00000000  14 03 03 00 01 01 16 03  03 00 28 14 1e de a9 ec  |..........(.....|
+00000010  11 c5 c8 7d be 31 9a 45  66 26 d4 c5 aa 6f 55 98  |...}.1.Ef&...oU.|
+00000020  83 ca 3e ed e6 e6 f4 88  8d b9 15 84 6a d4 91 e9  |..>.........j...|
+00000030  51 92 55                                          |Q.U|
 >>> Flow 5 (client to server)
-00000000  17 03 03 00 1e 00 00 00  00 00 00 00 01 29 b2 e6  |.............)..|
-00000010  c3 2e 72 ba cc ac d9 3b  c7 0c 1d 53 b2 30 39 71  |..r....;...S.09q|
-00000020  6e dd 79 15 03 03 00 1a  00 00 00 00 00 00 00 02  |n.y.............|
-00000030  88 c9 92 fe 6c 1f 6c fd  bd 7b fb 0a 8a b5 cc c9  |....l.l..{......|
-00000040  94 90                                             |..|
+00000000  17 03 03 00 1e 00 00 00  00 00 00 00 01 d5 16 52  |...............R|
+00000010  c8 3a be 00 42 92 e9 c1  65 56 9d 3e 79 26 ff 67  |.:..B...eV.>y&.g|
+00000020  1a f2 97 15 03 03 00 1a  00 00 00 00 00 00 00 02  |................|
+00000030  b4 ef 56 91 04 f6 9c 68  1c dd 9f f7 c0 6c 78 fc  |..V....h.....lx.|
+00000040  1c 6d                                             |.m|
--- a/src/crypto/tls/testdata/Client-TLSv12-ECDHE-RSA-AES
+++ b/src/crypto/tls/testdata/Client-TLSv12-ECDHE-RSA-AES
--- a/src/crypto/tls/testdata/Client-TLSv12-RSA-RC4
+++ b/src/crypto/tls/testdata/Client-TLSv12-RSA-RC4
--- a/src/crypto/tls/testdata/Client-TLSv12-RenegotiateOnce
+++ b/src/crypto/tls/testdata/Client-TLSv12-RenegotiateOnce
--- a/src/crypto/tls/testdata/Client-TLSv12-RenegotiateTwice
+++ b/src/crypto/tls/testdata/Client-TLSv12-RenegotiateTwice
--- a/src/crypto/tls/testdata/Client-TLSv12-RenegotiateTwiceRejected
+++ b/src/crypto/tls/testdata/Client-TLSv12-RenegotiateTwiceRejected
--- a/src/crypto/tls/testdata/Client-TLSv12-RenegotiationRejected
+++ b/src/crypto/tls/testdata/Client-TLSv12-RenegotiationRejected
--- a/src/crypto/tls/testdata/Client-TLSv12-SCT
+++ b/src/crypto/tls/testdata/Client-TLSv12-SCT
--- a/src/crypto/tls/testdata/Server-SSLv3-RSA-3DES
+++ b/src/crypto/tls/testdata/Server-SSLv3-RSA-3DES
--- a/src/crypto/tls/testdata/Server-SSLv3-RSA-AES
+++ b/src/crypto/tls/testdata/Server-SSLv3-RSA-AES
--- a/src/crypto/tls/testdata/Server-SSLv3-RSA-RC4
+++ b/src/crypto/tls/testdata/Server-SSLv3-RSA-RC4
--- a/src/crypto/tls/testdata/Server-TLSv10-ECDHE-ECDSA-AES
+++ b/src/crypto/tls/testdata/Server-TLSv10-ECDHE-ECDSA-AES
--- a/src/crypto/tls/testdata/Server-TLSv10-RSA-3DES
+++ b/src/crypto/tls/testdata/Server-TLSv10-RSA-3DES
--- a/src/crypto/tls/testdata/Server-TLSv10-RSA-AES
+++ b/src/crypto/tls/testdata/Server-TLSv10-RSA-AES
--- a/src/crypto/tls/testdata/Server-TLSv10-RSA-RC4
+++ b/src/crypto/tls/testdata/Server-TLSv10-RSA-RC4
--- a/src/crypto/tls/testdata/Server-TLSv11-FallbackSCSV
+++ b/src/crypto/tls/testdata/Server-TLSv11-FallbackSCSV
 >>> Flow 1 (client to server)
-00000000  16 03 01 00 cf 01 00 00  cb 03 02 ee 33 c1 3f a6  |............3.?.|
-00000010  62 ba a6 4f c7 32 25 0f  15 66 f7 35 a2 cf c0 cd  |b..O.2%..f.5....|
-00000020  48 93 77 1c 04 1f fb 65  41 37 ca 00 00 70 c0 14  |H.w....eA7...p..|
+00000000  16 03 01 00 c4 01 00 00  c0 03 02 55 d6 5d c6 70  |...........U.].p|
+00000010  be c8 b5 f1 98 c5 64 9f  5a 0f 99 77 96 39 5e fb  |......d.Z..w.9^.|
+00000020  95 6f 56 db ee 8f bd 00  bd ec 50 00 00 66 c0 14  |.oV.......P..f..|
 00000030  c0 0a 00 39 00 38 00 37  00 36 00 88 00 87 00 86  |...9.8.7.6......|
 00000040  00 85 c0 0f c0 05 00 35  00 84 c0 13 c0 09 00 33  |.......5.......3|
 00000050  00 32 00 31 00 30 00 9a  00 99 00 98 00 97 00 45  |.2.1.0.........E|
 00000060  00 44 00 43 00 42 c0 0e  c0 04 00 2f 00 96 00 41  |.D.C.B...../...A|
 00000070  00 07 c0 11 c0 07 c0 0c  c0 02 00 05 00 04 c0 12  |................|
 00000080  c0 08 00 16 00 13 00 10  00 0d c0 0d c0 03 00 0a  |................|
-00000090  00 15 00 12 00 0f 00 0c  00 09 00 ff 56 00 02 01  |............V...|
-000000a0  00 00 31 00 0b 00 04 03  00 01 02 00 0a 00 1c 00  |..1.............|
-000000b0  1a 00 17 00 19 00 1c 00  1b 00 18 00 1a 00 16 00  |................|
-000000c0  0e 00 0d 00 0b 00 0c 00  09 00 0a 00 23 00 00 00  |............#...|
-000000d0  0f 00 01 01                                       |....|
+00000090  00 ff 56 00 01 00 00 31  00 0b 00 04 03 00 01 02  |..V....1........|
+000000a0  00 0a 00 1c 00 1a 00 17  00 19 00 1c 00 1b 00 18  |................|
+000000b0  00 1a 00 16 00 0e 00 0d  00 0b 00 0c 00 09 00 0a  |................|
+000000c0  00 23 00 00 00 0f 00 01  01                       |.#.......|
 >>> Flow 2 (server to client)
 00000000  15 03 02 00 02 02 56                              |......V|
--- a/src/crypto/tls/testdata/Server-TLSv11-RSA-RC4
+++ b/src/crypto/tls/testdata/Server-TLSv11-RSA-RC4
--- a/src/crypto/tls/testdata/Server-TLSv12-ALPN
+++ b/src/crypto/tls/testdata/Server-TLSv12-ALPN
--- a/src/crypto/tls/testdata/Server-TLSv12-ALPN-NoMatch
+++ b/src/crypto/tls/testdata/Server-TLSv12-ALPN-NoMatch
--- a/src/crypto/tls/testdata/Server-TLSv12-CipherSuiteCertPreferenceECDSA
+++ b/src/crypto/tls/testdata/Server-TLSv12-CipherSuiteCertPreferenceECDSA
--- a/src/crypto/tls/testdata/Server-TLSv12-CipherSuiteCertPreferenceRSA
+++ b/src/crypto/tls/testdata/Server-TLSv12-CipherSuiteCertPreferenceRSA
--- a/src/crypto/tls/testdata/Server-TLSv12-ClientAuthRequestedAndECDSAGiven
+++ b/src/crypto/tls/testdata/Server-TLSv12-ClientAuthRequestedAndECDSAGiven
--- a/src/crypto/tls/testdata/Server-TLSv12-ClientAuthRequestedAndGiven
+++ b/src/crypto/tls/testdata/Server-TLSv12-ClientAuthRequestedAndGiven
--- a/src/crypto/tls/testdata/Server-TLSv12-ClientAuthRequestedNotGiven
+++ b/src/crypto/tls/testdata/Server-TLSv12-ClientAuthRequestedNotGiven
--- a/src/crypto/tls/testdata/Server-TLSv12-ECDHE-ECDSA-AES
+++ b/src/crypto/tls/testdata/Server-TLSv12-ECDHE-ECDSA-AES
--- a/src/crypto/tls/testdata/Server-TLSv12-IssueTicket
+++ b/src/crypto/tls/testdata/Server-TLSv12-IssueTicket
--- a/src/crypto/tls/testdata/Server-TLSv12-IssueTicketPreDisable
+++ b/src/crypto/tls/testdata/Server-TLSv12-IssueTicketPreDisable
--- a/src/crypto/tls/testdata/Server-TLSv12-RSA-3DES
+++ b/src/crypto/tls/testdata/Server-TLSv12-RSA-3DES
--- a/src/crypto/tls/testdata/Server-TLSv12-RSA-AES
+++ b/src/crypto/tls/testdata/Server-TLSv12-RSA-AES
--- a/src/crypto/tls/testdata/Server-TLSv12-RSA-AES-GCM
+++ b/src/crypto/tls/testdata/Server-TLSv12-RSA-AES-GCM
--- a/src/crypto/tls/testdata/Server-TLSv12-RSA-AES256-GCM-SHA384
+++ b/src/crypto/tls/testdata/Server-TLSv12-RSA-AES256-GCM-SHA384
--- a/src/crypto/tls/testdata/Server-TLSv12-RSA-RC4
+++ b/src/crypto/tls/testdata/Server-TLSv12-RSA-RC4
--- a/src/crypto/tls/testdata/Server-TLSv12-Resume
+++ b/src/crypto/tls/testdata/Server-TLSv12-Resume
--- a/src/crypto/tls/testdata/Server-TLSv12-ResumeDisabled
+++ b/src/crypto/tls/testdata/Server-TLSv12-ResumeDisabled
--- a/src/crypto/tls/testdata/Server-TLSv12-SNI
+++ b/src/crypto/tls/testdata/Server-TLSv12-SNI
--- a/src/crypto/tls/testdata/Server-TLSv12-SNI-GetCertificate
+++ b/src/crypto/tls/testdata/Server-TLSv12-SNI-GetCertificate
--- a/src/crypto/tls/testdata/Server-TLSv12-SNI-GetCertificateNotFound
+++ b/src/crypto/tls/testdata/Server-TLSv12-SNI-GetCertificateNotFound
--- a/src/crypto/x509/x509.go
+++ b/src/crypto/x509/x509.go
--- a/src/crypto/x509/x509_test.go
+++ b/src/crypto/x509/x509_test.go
--- a/src/net/smtp/smtp_test.go
+++ b/src/net/smtp/smtp_test.go