1. 71dfad4 Add new functions for configuring the client CA list. by David Benjamin · 8 years ago
  2. 11d11d6 Fix and/or annotate all switch fall-throughs. by Adam Langley · 8 years ago
  3. e64d2c7 Convert ssl_buffer, ssl_cert, and ssl_cipher to C++. by David Benjamin · 8 years ago[Renamed (98%) from ssl/ssl_cert.c]
  4. 7e06de5 Really remove DHE ciphersuites from TLS. by Matthew Braithwaite · 8 years ago
  5. 6952211 Support Ed25519 in TLS. by David Benjamin · 8 years ago
  6. a232a71 Deprecate SSL_PRIVATE_KEY_METHOD type and max_signature_len. by David Benjamin · 8 years ago
  7. 67bb45f Support enabling early data on SSL by Alessandro Ghedini · 8 years ago
  8. d04ca95 Add |SSL[_CTX]_set_chain_and_key|. by Adam Langley · 8 years ago
  9. ab1d28e Trim x509.h includes. by David Benjamin · 8 years ago
  10. f465461 Add SSL_get0_peer_certificates. by David Benjamin · 8 years ago
  11. d6c22ee Add |SSL_get0_server_requested_CAs|. by Adam Langley · 8 years ago
  12. 2a3b343 Move X509-related verification code into ssl_x509.c. by Adam Langley · 8 years ago
  13. 0bdef09 Check CA names during the handshake. by Adam Langley · 8 years ago
  14. 34b4c82 Hold CA names as |CRYPTO_BUFFER|s. by Adam Langley · 8 years ago
  15. 45738dd Move new_cipher and new_session to SSL_HANDSHAKE. by David Benjamin · 8 years ago
  16. 5960a90 Move sid_ctx from SSL/SSL_CTX to CERT. by David Benjamin · 8 years ago
  17. 83a3212 Move SCT lists and OCSP responses to CERT. by David Benjamin · 8 years ago
  18. 52940c4 Move a number of certificate-related functions from ssl_rsa.c to ssl_cert.c by Adam Langley · 8 years ago
  19. 3509dac Add |X509_METHOD| and, using it, move many functions to ssl_x509.c. by Adam Langley · 8 years ago
  20. 7dccc71 Set output alert when failing to parse public key. by Adam Langley · 8 years ago
  21. c26692c Push the use of X509 upwards, out of |ssl_set_cert|. by Adam Langley · 8 years ago
  22. e1e7813 Keep a reference to |X509|s appended to a chain. by Adam Langley · 8 years ago
  23. 6f07d72 Don't up_ref a NULL |CRYPTO_BUFFER|. by Adam Langley · 8 years ago
  24. 3a2b47a Don't use |X509| objects in |CERT|, by default. by Adam Langley · 8 years ago
  25. 2fe6e22 Remove mask_a and mask_k from CERT. by David Benjamin · 8 years ago
  26. 03b96d7 Remove unused |ssl_parse_x509|. by Adam Langley · 8 years ago
  27. 5b410b6 Remove unnecessary CBS_get_asn1_element. by David Benjamin · 8 years ago
  28. 650aa1c Clean up certificate auto-chaining. by David Benjamin · 8 years ago
  29. 17cf2cb Work around language and compiler bug in memcpy, etc. by David Benjamin · 8 years ago
  30. 0567220 Don't use X.509 functions to check ECDSA keyUsage. by Adam Langley · 8 years ago
  31. d515722 Don't depend on the X509 code for getting public keys. by Adam Langley · 8 years ago
  32. d519bf6 Add |SSL_CTX_set0_buffer_pool|. by Adam Langley · 8 years ago
  33. 68e7124 Hold certificates in an SSL_SESSION as CRYPTO_BUFFERSs as well. by Adam Langley · 8 years ago
  34. 5edfc8c Emulate the client_cert_cb with cert_cb. by David Benjamin · 8 years ago
  35. c0fc7a1 Revert "Add |SSL_CTX_set0_buffer_pool|." and "Hold certificates in an SSL_SESSION as CRYPTO_BUFFERSs as well." by Adam Langley · 8 years ago
  36. 5a6e616 Add |SSL_CTX_set0_buffer_pool|. by Adam Langley · 8 years ago
  37. e850909 Hold certificates in an SSL_SESSION as CRYPTO_BUFFERSs as well. by Adam Langley · 8 years ago
  38. a2bda9f Make more functions static. by David Benjamin · 8 years ago
  39. a833c35 Update to TLS 1.3 draft 18. by Steven Valdez · 8 years ago
  40. c5ac2b6 Rename X.509 members in |SSL_SESSION| and |CERT|. by Adam Langley · 8 years ago
  41. 938fa7c Inline tls1_check_ec_cert. by David Benjamin · 8 years ago
  42. a048678 Move some fields from tmp to hs. by David Benjamin · 8 years ago
  43. 5409123 Use C99 for size_t loops. by David Benjamin · 9 years ago
  44. a6cd185 Set verify_result, even on failure. by Adam Langley · 9 years ago
  45. 0fc37ef Fix a number of sigalg scope issues. by David Benjamin · 9 years ago
  46. 7aa31d6 Remove ssl->verify_result. by David Benjamin · 9 years ago
  47. 96a16cd Finish aligning up_ref functions with OpenSSL 1.1.0. by David Benjamin · 9 years ago
  48. 37b486a Remove optimisation for known DH groups. by Adam Langley · 9 years ago
  49. e455e51 Push some duplicated code into ssl_verify_cert_chain. by David Benjamin · 9 years ago
  50. 13f1ebe Factor out the client_cert_cb code. by David Benjamin · 9 years ago
  51. bf5aa84 Moving ssl_check_leaf_certificate to ssl_cert. by Steven Valdez · 9 years ago
  52. 5c900c8 Factor out certificate list parsing. by David Benjamin · 9 years ago
  53. e0332e8 Factor out CA list parsing. by David Benjamin · 9 years ago
  54. 32a66d5 Tidy up a few certificate-related utility functions. by David Benjamin · 9 years ago
  55. 310d3f6 Change |EVP_PKEY_up_ref| to return int. by Adam Langley · 9 years ago
  56. d246b81 Don't decompose sigalgs in key preferences. by David Benjamin · 9 years ago
  57. 57a6f3c Fix missing cert length prefix. by Steven Valdez · 9 years ago
  58. 7583643 Disconnect handshake message creation from init_buf. by David Benjamin · 9 years ago
  59. b32a915 Ensure we check i2d_X509 return val by Steven Valdez · 9 years ago
  60. 66b2fe8 Add |SSL_CTX_set_private_key_method| to parallel |SSL_set_private_key_method| by Tom Thorogood · 9 years ago
  61. d323f4b Bring back |verify_store|. by Adam Langley · 9 years ago
  62. 5ba0689 Don't cast |OPENSSL_malloc|/|OPENSSL_realloc| result. by Brian Smith · 9 years ago
  63. 60a08ac Remove unreachable code to duplicate DH keys. by David Benjamin · 9 years ago
  64. 5ddffbb Make SSL_(CTX_)?set_tmp_ecdh call SSL_(CTX_)?set1_curves. by David Benjamin · 9 years ago
  65. 53e5c2c Remove SSL_(CTX_)?set_ecdh_callback. by David Benjamin · 9 years ago
  66. 5993704 Document certificate verification functions in SSL. by David Benjamin · 10 years ago
  67. 0d62f26 Adding more options for signing digest fallback. by Steven Valdez · 10 years ago
  68. 306ece3 Fix some malloc failure crashes. by David Benjamin · 10 years ago
  69. 1d128f3 Make SSL_get_client_CA_list slightly more OpenSSL-compatible. by David Benjamin · 10 years ago
  70. 443a1f6 Toss file-related convenience bits of ssl/ into a corner. by David Benjamin · 10 years ago
  71. 26416e9 Remove the last of SESS_CERT. by David Benjamin · 10 years ago
  72. b1bdc5b Remove peer_cert from SESS_CERT. by David Benjamin · 10 years ago
  73. 6505567 Move peer_dh_tmp and peer_ecdh_tmp out of SESS_CERT. by David Benjamin · 10 years ago
  74. 3dd9016 Remove signature algorithm configuration hooks and SSL_ctrl. by David Benjamin · 10 years ago
  75. 2b9ec70 Remove SSL_CTRL_SET_CLIENT_CERT_TYPES. by David Benjamin · 10 years ago
  76. d27441a Remove separate APIs for configuring chain and verify stores. by David Benjamin · 10 years ago
  77. aa58513 Reserve ex_data index zero for app_data. by David Benjamin · 10 years ago
  78. 3570d73 Remove the func parameter to OPENSSL_PUT_ERROR. by David Benjamin · 10 years ago
  79. 71d2e54 Clear key_method in ssl_cert_clear_certs. by David Benjamin · 10 years ago
  80. 11c0f8e Promote certificate-related ctrl macros to functions. by David Benjamin · 10 years ago
  81. b2a9d6a Remove SSL_build_cert_chain. by David Benjamin · 10 years ago
  82. d1d8078 Fold away certificate slots mechanism. by David Benjamin · 10 years ago
  83. bb20f52 Merge the RSA_ENC and RSA_SIGN certificate slots. by David Benjamin · 10 years ago
  84. 680ca96 Preserve session->sess_cert on ticket renewal. by David Benjamin · 10 years ago
  85. b31040d Get rid of CERT_PKEY slots in SESS_CERT. by David Benjamin · 10 years ago
  86. 4bdb6e4 Remove remaining calls to the old lock functions. by Adam Langley · 10 years ago
  87. 0da323a Convert reference counts in crypto/ by Adam Langley · 10 years ago
  88. 9a10f8f Switch EVP_PKEY_dup calls to EVP_PKEY_up_ref. by David Benjamin · 10 years ago
  89. 6abb370 Remove ciphers_raw. by David Benjamin · 10 years ago
  90. 60da0cd Fix STACK_OF pointer style. by David Benjamin · 10 years ago
  91. 605641e Move the NULL case in ssl_add_cert_chain up. by David Benjamin · 10 years ago
  92. 9362b6e Errors are uint32_t, not unsigned long. by David Benjamin · 10 years ago
  93. 2755a3e Remove unnecessary NULL checks, part 5. by David Benjamin · 10 years ago
  94. ed8fbad Remove SSL cert_flags. by David Benjamin · 10 years ago
  95. dd97878 Always enable ecdh_auto. by David Benjamin · 10 years ago
  96. f0ae170 Include-what-you-use ssl/internal.h. by David Benjamin · 10 years ago
  97. 2ee94aa Rename ssl_locl.h to internal.h by David Benjamin · 10 years ago
  98. c0f763b Simplify server-side ECDH curve selection. by David Benjamin · 10 years ago
  99. ab2479a Clean up error reporting. by Håvard Molland · 10 years ago
  100. b85a4c2 Remove unnecessary NULL initializations in ssl_cert_dup. by David Benjamin · 10 years ago