faraphel/chrony
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
2662 commits 8 branches 75 tags 4.3 MiB
Commit graph

5 commits

Author SHA1 Message Date
Miroslav Lichvar
e3cd248f0d nts: update NTS-KE port number 
The port assigned by IANA for NTS-KE is 4460.
 2020-06-17 15:59:18 +02:00
Miroslav Lichvar
2a4fd0a5c6 nts: update TLS exporter label 
Change the string to "EXPORTER-network-time-security" as specified in
the latest NTS draft.
 2020-04-09 17:08:52 +02:00
Miroslav Lichvar
adcf073484 nts: refactor NTS context 
Add a context structure for the algorithm and keys established by
NTS-KE. Modify the client to save the context and reset the SIV key to
the C2S/S2C key before each request/response instead of keeping two SIV
instances.

This will make it easier for the server to support different algorithms
and allow the client to save the context with cookies to disk.
 2020-04-09 16:57:31 +02:00
Miroslav Lichvar
66dc2b6d6b nts: rework NTS-KE retry interval 
Make the NTS-KE retry interval exponentially increasing, using a factor
provided by the NKE session. Use shorter intervals when the server is
refusing TCP connections or the connection is closed or timing out
before the TLS handshake.
 2020-03-26 15:30:27 +01:00
Miroslav Lichvar
a420ed57a1 nts: add NTS-KE server and client 
Add a client and server implementing the Network Time Security (NTS) Key
Establishment. Use the GnuTLS library for TLS.
 2020-03-05 16:02:15 +01:00