Google Git
Sign in
boringssl / boringssl.git / 0de64a749b344ce16367bc6514a7d4549bba8c6c / ssl
  1. 04a89c8 Add |SSL_CIPHER_get_value| to get the IANA number of a cipher suite. by Adam Langley · 6 years ago
  2. b82f945 Use the Go 1.13 standard library ed25519. by David Benjamin · 6 years ago
  3. 3b62960 Move the config->async check into RetryAsync. by David Benjamin · 6 years ago
  4. d0b9794 Clear *out in ReadHandshakeData's empty case. by David Benjamin · 6 years ago
  5. d634357 Add initial support for 0-RTT with QUIC. by David Benjamin · 6 years ago
  6. 95dd54e Have some more fun with spans. by David Benjamin · 6 years ago
  7. f350351 Align 0-RTT and resumption state machines slightly by David Benjamin · 6 years ago
  8. bd2a8d6 Add a function to convert SSL_ERROR_* values to strings. by David Benjamin · 6 years ago
  9. f492830 Fold SSL_want constants into SSL_get_error constants. by David Benjamin · 6 years ago
  10. e530ea3 Use spans for the various TLS 1.3 secrets. by David Benjamin · 6 years ago
  11. b244e3a Switch another low-level function to spans. by David Benjamin · 6 years ago
  12. 79b8b3a Switch tls13_enc.cc to spans. by David Benjamin · 6 years ago
  13. 9806ae0 Check the second ClientHello's PSK binder on resumption. by David Benjamin · 6 years ago
  14. 8c98bac Remove stale TODO. by David Benjamin · 6 years ago
  15. fd863b6 Add a QUIC test for HelloRetryRequest. by David Benjamin · 6 years ago
  16. ee4888c Make alert_dispatch into a bool. by David Benjamin · 6 years ago
  17. bc42402 Trim some more per-connection memory. by David Benjamin · 6 years ago
  18. 94b2871 Remove SSL_export_early_keying_material. by David Benjamin · 6 years ago
  19. ef0183c Make SSL_get_servername work in the early callback. by David Benjamin · 6 years ago
  20. 4dfd5af Only bypass the signature verification itself in fuzzer mode. by David Benjamin · 6 years ago
  21. 9f5c419 Move the PQ-experiment signal to SSL_CTX. by Adam Langley · 6 years ago
  22. b9e2b8a Name cipher suite tests in runner by IETF names. by David Benjamin · 6 years ago
  23. a86c698 Add post-quantum experiment signal extension. by Adam Langley · 6 years ago
  24. 0fc4979 Fix shim error message endings. by Adam Langley · 6 years ago
  25. 3c8ae0f Implements SIKE/p434 by Kris Kwiatkowski · 6 years ago
  26. d6f9c35 Factor out TLS cipher selection to ssl_choose_tls_cipher. by Steven Valdez · 6 years ago
  27. 629f321 Add an API to record use of delegated credential by Watson Ladd · 6 years ago
  28. d59682c Fix runner tests with Go 1.13. by David Benjamin · 6 years ago
  29. 5b89336 Replace addc64,subc64,mul64 in SIKE Go code with functions from math/bits by Kris Kwiatkowski · 6 years ago
  30. c0b4c72 Eliminate some superfluous conditions in SIKE Go code. by Adam Langley · 6 years ago
  31. 567e463 Fix various typos. by Adam Langley · 6 years ago
  32. 78c88c9 Integrate SIKE with TLS key exchange. by Kris Kwiatkowski · 6 years ago
  33. 6676b9a Convert ecdsa_p224_key.pem to PKCS#8. by David Benjamin · 6 years ago
  34. 5274cea Always store early data tickets. by Steven Valdez · 6 years ago
  35. b29e1e1 Save and restore errors when ignoring ssl_send_alert result. by David Benjamin · 6 years ago
  36. b19b79d Make expect/expected flag and variable names match. by David Benjamin · 6 years ago
  37. 0ad8d57 clang-format Flag arrays in test_config.cc. by David Benjamin · 6 years ago
  38. 262fd6a Rename remnants of ticket_early_data_info. by David Benjamin · 6 years ago
  39. 6433a91 Enforce the ticket_age parameter for 0-RTT. by David Benjamin · 6 years ago
  40. 6477012 Add SSL_get_early_data_reason. by David Benjamin · 6 years ago
  41. 572edbf Remove implicit -on-resume for -expect-early-data-accept. by David Benjamin · 6 years ago
  42. ffe384c Fix spelling in comments. by Adam Langley · 6 years ago
  43. 1b878e7 Check for errors when setting up X509_STORE_CTX. by David Benjamin · 6 years ago
  44. 1e77ef4 Convert a few more things from int to bool. by David Benjamin · 6 years ago
  45. 85eef29 Compute the delegated credentials length prefix with CBB. by David Benjamin · 6 years ago
  46. a486c6c Convert the rest of ssl_test to GTest. by David Benjamin · 6 years ago
  47. 777a239 Hold off flushing NewSessionTicket until write. by Steven Valdez · 6 years ago
  48. 7540cc2 Predeclare enums in base.h by Adam Langley · 6 years ago
  49. c9827e0 Output a ClientHello during handoff. by Adam Langley · 6 years ago
  50. be7006a Update third_party/googletest. by David Benjamin · 6 years ago
  51. be9953a nit: Update references to draft-ietf-tls-subcerts. by Christopher Patton · 6 years ago
  52. a4af5f8 Support get versions with get_{min,max}_proto_version for context by Nitish Sakhawalkar · 6 years ago
  53. 3390fd8 Correct outdated comments by Watson Ladd · 6 years ago
  54. f9c8d30 Remove SSL_get_structure_sizes. by David Benjamin · 6 years ago
  55. f109f20 Clear out a bunch of -Wextra-semi warnings. by David Benjamin · 6 years ago
  56. 2f213f6 Update delegated credentials to draft-03 by Watson Ladd · 6 years ago
  57. 2d38b83 Remove separate default group list for servers. by Adam Langley · 6 years ago
  58. fcc1ad7 Enable all curves (inc CECPQ2) during fuzzing. by Adam Langley · 6 years ago
  59. 20a9b40 runner: Don't generate an RSA key on startup. by David Benjamin · 6 years ago
  60. d7266ec Enforce key usage for RSA keys in TLS 1.2. by Jesse Selover · 6 years ago
  61. 73308b6 Avoid SCT/OCSP extensions in SH on {Omit|Empty}Extensions by Filippo Valsorda · 6 years ago
  62. 6c1b376 Implement server support for delegated credentials. by Christopher Patton · 7 years ago
  63. 9801a07 Tweak some slightly fragile tests. by Adam Langley · 6 years ago
  64. 4bfab5d Make 256-bit ciphers a preference for CECPQ2, not a requirement. by Adam Langley · 6 years ago
  65. fa81cc6 Update comments around JDK11 workaround. by David Benjamin · 6 years ago
  66. 14c611c Don't pass NULL,0 to qsort. by David Benjamin · 6 years ago
  67. 823effe Revert "Fix protos_len size in SSL_set_alpn_protos and SSL_CTX_set_alpn_protos" by Adam Langley · 6 years ago
  68. 3cbb029 Allow configuring QUIC method per-connection by Alessandro Ghedini · 6 years ago
  69. b84674b Delete the variants/draft code. by Steven Valdez · 7 years ago
  70. 35771ff Fix protos_len size in SSL_set_alpn_protos and SSL_CTX_set_alpn_protos by Raul Tambre · 6 years ago
  71. 9cde848 Use handshake parameters to decide if cert/key are available by Christopher Patton · 7 years ago
  72. 17d553d Add a CFI tester to CHECK_ABI. by David Benjamin · 6 years ago
  73. 2cc6f44 Use same HKDF label as TLS 1.3 for QUIC as per draft-ietf-quic-tls-17 by Alessandro Ghedini · 6 years ago
  74. ba9ad66 Add |SSL_key_update|. by Adam Langley · 6 years ago
  75. 9700b44 HRSS: omit reconstruction of ciphertext. by Adam Langley · 6 years ago
  76. a6a049a Add start of infrastructure for checking constant-time properties. by Adam Langley · 6 years ago
  77. 4cce955 Fix thread-safety bug in SSL_get_peer_cert_chain. by David Benjamin · 6 years ago
  78. 200fe67 Remove HRSS confirmation hash. by Adam Langley · 6 years ago
  79. d6e1f23 Add |SSL_export_traffic_secrets|. by Adam Langley · 6 years ago
  80. 43cc9c6 Do not allow AES_128_GCM_SHA256 with CECPQ2. by David Benjamin · 6 years ago
  81. 7b93593 Add initial HRSS support. by Adam Langley · 6 years ago
  82. 602f466 Forbid empty CertificateRequestsupported_signature_algorithms in TLS 1.2. by David Benjamin · 6 years ago
  83. e6ad7a0 Drop some explicit SSLKeyShare destructors. by Adam Langley · 6 years ago
  84. 278b312 Validate ClientHellos in tests some more. by David Benjamin · 6 years ago
  85. 9113e09 Satisfy golint. by David Benjamin · 6 years ago
  86. 6965d25 Work around a JDK 11 TLS 1.3 bug. by David Benjamin · 6 years ago
  87. c65a1f4 go fmt by Adam Langley · 6 years ago
  88. ce61710 Move JSON test results code into a common module. by David Benjamin · 6 years ago
  89. f241a59 In 0RTT mode, reverify the server certificate before sending early data. by Jesse Selover · 6 years ago
  90. e6eef1c Add post-handshake support for the QUIC API. by Steven Valdez · 6 years ago
  91. ce45588 Speculatively remove __STDC_*_MACROS. by David Benjamin · 6 years ago
  92. 7d10ab5 Abstract hs_buf a little. by David Benjamin · 6 years ago
  93. 384d0ea Make SSL_get_current_cipher valid during QUIC callbacks. by Steven Valdez · 6 years ago
  94. c65eb2c Serialize SSL curve list in handoff and check it on application. by Matthew Braithwaite · 6 years ago
  95. d2ed382 Serialize SSL configuration in handoff and check it on application. by Matthew Braithwaite · 7 years ago
  96. cc9d935 Buffer up QUIC data within a level internally. by David Benjamin · 6 years ago
  97. c8e0f90 Add an interface for QUIC integration. by Steven Valdez · 7 years ago
  98. c0c9001 Implement SSL_get_tlsext_status_type by Jeremy Apthorp · 6 years ago
  99. 1eff948 Use proper functions for lh_*. by David Benjamin · 7 years ago
  100. 2d98d49 Add a per-SSL TLS 1.3 downgrade enforcement option and improve tests. by David Benjamin · 6 years ago