Google Git
Sign in
boringssl / boringssl.git / 1bd6e92b2a454009cc3243f5eb54f09c1929810c / ssl / ssl_cert.cc
  1. 1bd6e92 Remove some indirection in SSL_certs_clear by David Benjamin · 1 year, 2 months ago
  2. 90f0f05 Integrate TLS 1.2 sigalg and cipher suite selection by David Benjamin · 1 year, 2 months ago
  3. 48b0edf Update delegated credentials to the final RFC by David Benjamin · 1 year, 2 months ago
  4. 10605c0 Minor formatting fixes by David Benjamin · 1 year, 2 months ago
  5. fbb4133 Add SSL_get0_chain method by Gabriel Redner · 1 year, 2 months ago
  6. 890c201 Make EVP_PKEY opaque. by David Benjamin · 2 years, 2 months ago
  7. dcabfe2 Make OPENSSL_malloc push ERR_R_MALLOC_FAILURE on failure. by Bob Beck · 2 years, 2 months ago
  8. df8a55b Const-correct sk_FOO_deep_copy's copy callback. by David Benjamin · 2 years, 3 months ago
  9. 2f3958a Fix issuerUID and subjectUID parsing in the key usage checker. by David Benjamin · 4 years ago
  10. dcd6e44 Support delegated credentials verison 06 by Watson Ladd · 4 years, 8 months ago
  11. 964256d Add |SSL_CTX_get0_chain|. by Adam Langley · 5 years ago
  12. 3ba9586 Rename a number of BUF_* functions to OPENSSL_*. by David Benjamin · 5 years ago
  13. 629f321 Add an API to record use of delegated credential by Watson Ladd · 6 years ago
  14. 3390fd8 Correct outdated comments by Watson Ladd · 6 years ago
  15. 2f213f6 Update delegated credentials to draft-03 by Watson Ladd · 6 years ago
  16. d7266ec Enforce key usage for RSA keys in TLS 1.2. by Jesse Selover · 6 years ago
  17. 6c1b376 Implement server support for delegated credentials. by Christopher Patton · 7 years ago
  18. 9cde848 Use handshake parameters to decide if cert/key are available by Christopher Patton · 7 years ago
  19. 8525ff3 Another batch of bools. by David Benjamin · 7 years ago
  20. 8c7c635 Support symbol prefixes by Joshua Liebow-Feeser · 7 years ago
  21. 0ce090a A bunch more scopers. by David Benjamin · 7 years ago
  22. 50596f8 Switch some easy SSL fields to UniquePtr. by David Benjamin · 7 years ago
  23. bfdd1a9 Give SSL_SESSION a destructor. by David Benjamin · 7 years ago
  24. 2908dd1 Add bssl::UpRef. by David Benjamin · 7 years ago
  25. 5f001d1 Const-correct some functions. by David Benjamin · 7 years ago
  26. 418cdc4 Use the right alert for bad CA lists. by David Benjamin · 7 years ago
  27. b7bc80a SSL_CONFIG: new struct for sheddable handshake configuration. by Matthew Braithwaite · 7 years ago
  28. e325c3f Give CERT a destructor. by David Benjamin · 7 years ago
  29. cd8470f Adding support for draft 21 as a TLS 1.3 variant. by Steven Valdez · 7 years ago
  30. d1e3ce1 Rename ssl3_send_alert and ssl3_protocol_version. by David Benjamin · 7 years ago
  31. c64d123 Push Span down a layer. by David Benjamin · 7 years ago
  32. c11ea942 Convert comments in ssl. by David Benjamin · 8 years ago
  33. 27e377e Fix miscellaneous clang-tidy warnings. by David Benjamin · 8 years ago
  34. ee910bf Use new STACK_OF helpers. by David Benjamin · 8 years ago
  35. ec78383 Make ranged for loops work with STACK_OF(T). by David Benjamin · 8 years ago
  36. e664a53 Return null from SSL_get0_peer_certificates if unauthenticated. by David Benjamin · 8 years ago
  37. 31b0c9b Add a bunch of scopers. by David Benjamin · 8 years ago
  38. e39ac8f Switch BORINGSSL_INTERNAL_CXX_TYPES in favor of subclassing games. by David Benjamin · 8 years ago
  39. 86e95b8 Move libssl's internals into the bssl namespace. by David Benjamin · 8 years ago
  40. 71dfad4 Add new functions for configuring the client CA list. by David Benjamin · 8 years ago
  41. 11d11d6 Fix and/or annotate all switch fall-throughs. by Adam Langley · 8 years ago
  42. e64d2c7 Convert ssl_buffer, ssl_cert, and ssl_cipher to C++. by David Benjamin · 8 years ago[Renamed (98%) from ssl/ssl_cert.c]
  43. 7e06de5 Really remove DHE ciphersuites from TLS. by Matthew Braithwaite · 8 years ago
  44. 6952211 Support Ed25519 in TLS. by David Benjamin · 8 years ago
  45. a232a71 Deprecate SSL_PRIVATE_KEY_METHOD type and max_signature_len. by David Benjamin · 8 years ago
  46. 67bb45f Support enabling early data on SSL by Alessandro Ghedini · 8 years ago
  47. d04ca95 Add |SSL[_CTX]_set_chain_and_key|. by Adam Langley · 8 years ago
  48. ab1d28e Trim x509.h includes. by David Benjamin · 8 years ago
  49. f465461 Add SSL_get0_peer_certificates. by David Benjamin · 8 years ago
  50. d6c22ee Add |SSL_get0_server_requested_CAs|. by Adam Langley · 8 years ago
  51. 2a3b343 Move X509-related verification code into ssl_x509.c. by Adam Langley · 8 years ago
  52. 0bdef09 Check CA names during the handshake. by Adam Langley · 8 years ago
  53. 34b4c82 Hold CA names as |CRYPTO_BUFFER|s. by Adam Langley · 8 years ago
  54. 45738dd Move new_cipher and new_session to SSL_HANDSHAKE. by David Benjamin · 8 years ago
  55. 5960a90 Move sid_ctx from SSL/SSL_CTX to CERT. by David Benjamin · 8 years ago
  56. 83a3212 Move SCT lists and OCSP responses to CERT. by David Benjamin · 8 years ago
  57. 52940c4 Move a number of certificate-related functions from ssl_rsa.c to ssl_cert.c by Adam Langley · 8 years ago
  58. 3509dac Add |X509_METHOD| and, using it, move many functions to ssl_x509.c. by Adam Langley · 8 years ago
  59. 7dccc71 Set output alert when failing to parse public key. by Adam Langley · 8 years ago
  60. c26692c Push the use of X509 upwards, out of |ssl_set_cert|. by Adam Langley · 8 years ago
  61. e1e7813 Keep a reference to |X509|s appended to a chain. by Adam Langley · 8 years ago
  62. 6f07d72 Don't up_ref a NULL |CRYPTO_BUFFER|. by Adam Langley · 8 years ago
  63. 3a2b47a Don't use |X509| objects in |CERT|, by default. by Adam Langley · 8 years ago
  64. 2fe6e22 Remove mask_a and mask_k from CERT. by David Benjamin · 8 years ago
  65. 03b96d7 Remove unused |ssl_parse_x509|. by Adam Langley · 8 years ago
  66. 5b410b6 Remove unnecessary CBS_get_asn1_element. by David Benjamin · 8 years ago
  67. 650aa1c Clean up certificate auto-chaining. by David Benjamin · 8 years ago
  68. 17cf2cb Work around language and compiler bug in memcpy, etc. by David Benjamin · 8 years ago
  69. 0567220 Don't use X.509 functions to check ECDSA keyUsage. by Adam Langley · 8 years ago
  70. d515722 Don't depend on the X509 code for getting public keys. by Adam Langley · 8 years ago
  71. d519bf6 Add |SSL_CTX_set0_buffer_pool|. by Adam Langley · 8 years ago
  72. 68e7124 Hold certificates in an SSL_SESSION as CRYPTO_BUFFERSs as well. by Adam Langley · 8 years ago
  73. 5edfc8c Emulate the client_cert_cb with cert_cb. by David Benjamin · 8 years ago
  74. c0fc7a1 Revert "Add |SSL_CTX_set0_buffer_pool|." and "Hold certificates in an SSL_SESSION as CRYPTO_BUFFERSs as well." by Adam Langley · 8 years ago
  75. 5a6e616 Add |SSL_CTX_set0_buffer_pool|. by Adam Langley · 8 years ago
  76. e850909 Hold certificates in an SSL_SESSION as CRYPTO_BUFFERSs as well. by Adam Langley · 8 years ago
  77. a2bda9f Make more functions static. by David Benjamin · 8 years ago
  78. a833c35 Update to TLS 1.3 draft 18. by Steven Valdez · 8 years ago
  79. c5ac2b6 Rename X.509 members in |SSL_SESSION| and |CERT|. by Adam Langley · 8 years ago
  80. 938fa7c Inline tls1_check_ec_cert. by David Benjamin · 8 years ago
  81. a048678 Move some fields from tmp to hs. by David Benjamin · 8 years ago
  82. 5409123 Use C99 for size_t loops. by David Benjamin · 9 years ago
  83. a6cd185 Set verify_result, even on failure. by Adam Langley · 9 years ago
  84. 0fc37ef Fix a number of sigalg scope issues. by David Benjamin · 9 years ago
  85. 7aa31d6 Remove ssl->verify_result. by David Benjamin · 9 years ago
  86. 96a16cd Finish aligning up_ref functions with OpenSSL 1.1.0. by David Benjamin · 9 years ago
  87. 37b486a Remove optimisation for known DH groups. by Adam Langley · 9 years ago
  88. e455e51 Push some duplicated code into ssl_verify_cert_chain. by David Benjamin · 9 years ago
  89. 13f1ebe Factor out the client_cert_cb code. by David Benjamin · 9 years ago
  90. bf5aa84 Moving ssl_check_leaf_certificate to ssl_cert. by Steven Valdez · 9 years ago
  91. 5c900c8 Factor out certificate list parsing. by David Benjamin · 9 years ago
  92. e0332e8 Factor out CA list parsing. by David Benjamin · 9 years ago
  93. 32a66d5 Tidy up a few certificate-related utility functions. by David Benjamin · 9 years ago
  94. 310d3f6 Change |EVP_PKEY_up_ref| to return int. by Adam Langley · 9 years ago
  95. d246b81 Don't decompose sigalgs in key preferences. by David Benjamin · 9 years ago
  96. 57a6f3c Fix missing cert length prefix. by Steven Valdez · 9 years ago
  97. 7583643 Disconnect handshake message creation from init_buf. by David Benjamin · 9 years ago
  98. b32a915 Ensure we check i2d_X509 return val by Steven Valdez · 9 years ago
  99. 66b2fe8 Add |SSL_CTX_set_private_key_method| to parallel |SSL_set_private_key_method| by Tom Thorogood · 9 years ago
  100. d323f4b Bring back |verify_store|. by Adam Langley · 9 years ago