Google Git
Sign in
boringssl / boringssl.git / 1e663e8f396e26025309553459bc334e2d21fd0e / ssl / t1_lib.c
  1. c8b6b4f Only predict X25519 in TLS 1.3. by David Benjamin · 9 years ago
  2. 7e1f984 Fix some bugs in TLS 1.3 server key_share code. by David Benjamin · 9 years ago
  3. 2dc0204 Don't return invalid versions in version_from_wire. by David Benjamin · 9 years ago
  4. 4fe3c90 Release TLS 1.3 key shares earlier in TLS 1.2. by David Benjamin · 9 years ago
  5. 3d458dc Revert of Determining certificate_auth and key_exchange based on SSL. by David Benjamin · 9 years ago
  6. 5409123 Use C99 for size_t loops. by David Benjamin · 9 years ago
  7. bd09ecc Determining certificate_auth and key_exchange based on SSL. by Steven Valdez · 9 years ago
  8. 57e929f Enable RSA-PSS in TLS 1.2 by default. by David Benjamin · 9 years ago
  9. 163c956 Forbid EMS from changing during renegotation. by David Benjamin · 9 years ago
  10. 0fc37ef Fix a number of sigalg scope issues. by David Benjamin · 9 years ago
  11. 7c7d831 Trim a few extensions when min_version is TLS 1.3. by David Benjamin · 9 years ago
  12. 5c4e857 Fill in the curve ID for TLS 1.3. by David Benjamin · 9 years ago
  13. cb96654 Adding ARRAY_SIZE macro for getting the size of constant arrays. by Steven Valdez · 9 years ago
  14. 0e95015 RSA-PSS should work in TLS 1.2. by David Benjamin · 9 years ago
  15. ee32bea Fix TLS 1.2 sigalgs fallback logic for ECDSA. by David Benjamin · 9 years ago
  16. 4aa154e Adding code to send session as PSK Identity. by Steven Valdez · 9 years ago
  17. 4ac2dc4 Add a comment about ServerHello.supported_groups. by David Benjamin · 9 years ago version_for_cocoapods_6.0
  18. 3e51757d Enforce the server ALPN protocol was advertised. by David Benjamin · 9 years ago
  19. 1deb41b Move SCSV handling out of cipher list parsing. by David Benjamin · 9 years ago
  20. e14ff06 Only have one ClientHello parser, not three. by David Benjamin · 9 years ago
  21. cec7344 Add a CBS version of SSL_early_callback_ctx_extension_get. by David Benjamin · 9 years ago
  22. 7259f2f Prefix ext_key_share methods. by Steven Valdez · 9 years ago
  23. a70de14 Check for trailing data in key_share extension. by David Benjamin · 9 years ago
  24. ce079fd Add SSL_is_dtls. by David Benjamin · 9 years ago
  25. 0c40a96 Send unsupported_extension on unexpected ServerHello extensions. by David Benjamin · 9 years ago
  26. 87eab49 Splitting SSL session state. by Steven Valdez · 9 years ago
  27. d7573dc Tweak ssl_early_callback_init. by David Benjamin · 9 years ago
  28. 5440fe0 Adding HelloRetryRequest. by Steven Valdez · 9 years ago
  29. 3a28755 Fix sending draft_version. by Steven Valdez · 9 years ago
  30. 942f4ed Implement OCSP stapling in TLS 1.3. by David Benjamin · 9 years ago
  31. 143e8b3 Add TLS 1.3 1-RTT. by Steven Valdez · 9 years ago
  32. 0c0b7e1 Widen SSL_PRIVATE_KEY_METHOD types to include the curve name. by David Benjamin · 9 years ago
  33. eff1e8d Adding RSA-PSS signature algorithms. by Steven Valdez · 9 years ago
  34. 1fb125c Enforce ECDSA curve matching in TLS 1.3. by David Benjamin · 9 years ago
  35. 75ea5bb Don't check certificates against the curve list in TLS 1.3. by David Benjamin · 9 years ago
  36. 887c300 Move the key type check from tls12_check_peer_sigalg to ssl_verify_*. by David Benjamin · 9 years ago
  37. 51dd7d6 Don't fall back to SHA-1 in TLS 1.3, only TLS 1.2. by David Benjamin · 9 years ago
  38. 6b8509a Add default handlers for extension parsing. by Steven Valdez · 9 years ago
  39. ea9a0d5 Refine SHA-1 default in signature algorithm negotiation. by David Benjamin · 9 years ago
  40. d246b81 Don't decompose sigalgs in key preferences. by David Benjamin · 9 years ago
  41. 9e68f19 Add SSL_get_curve_id and SSL_get_dhe_group_size. by David Benjamin · 9 years ago
  42. b6a0a51 Simplify version configuration. by David Benjamin · 9 years ago
  43. f0451ca Cleaning up internal use of Signature Algorithms. by Steven Valdez · 9 years ago
  44. 0256385 Changing representation of signature/hash to use SignatureScheme. by Steven Valdez · 9 years ago
  45. ce902a9 Generalizing curves to groups in preparation for TLS 1.3. by Steven Valdez · 9 years ago
  46. 9b611e2 Simplify server_name extension parsing. by David Benjamin · 9 years ago
  47. 9819367 Remove some easy obj.h dependencies. by David Benjamin · 9 years ago
  48. 1e4ae00 Add a comment about final empty extension intolerance. by David Benjamin · 9 years ago
  49. 78f8aab ssl->ctx cannot be NULL. by David Benjamin · 9 years ago
  50. 51545ce Remove a number of unnecessary stdio.h includes. by David Benjamin · 9 years ago
  51. fde5afc Remove dead comment. by David Benjamin · 9 years ago
  52. 5ba0689 Don't cast |OPENSSL_malloc|/|OPENSSL_realloc| result. by Brian Smith · 9 years ago
  53. 43946d4 Update references to the extended master secret draft. by David Benjamin · 9 years ago
  54. 72f7e21 Stop allowing SHA-224 in TLS 1.2. by David Benjamin · 9 years ago
  55. a1e9cab Replace enc_flags with normalized version checks. by David Benjamin · 9 years ago
  56. ce9d85e Tweaks for node.js by Adam Langley · 9 years ago
  57. fc6e5a7 Drop the silly 'ECDH_' prefix on X25519. by David Benjamin · 9 years ago
  58. d2f0ce8 Enable X25519 by default in TLS. by David Benjamin · 9 years ago
  59. 23b0a65 Move some functions to file scope. by David Benjamin · 9 years ago
  60. baa1216 Prune finished labels from SSL3_ENC_METHOD. by David Benjamin · 9 years ago
  61. f8d8071 Remove a few unnecessary SSL3_ENC_METHOD hooks. by David Benjamin · 9 years ago
  62. 79978df Move aead_{read,write}_ctx and next_proto_negotiated into ssl->s3. by David Benjamin · 9 years ago
  63. 57997da Simplify the ChangeCipherSpec logic. by David Benjamin · 9 years ago
  64. ef1b009 Consider session if the client supports tickets but offered a session ID. by David Benjamin · 9 years ago
  65. 0d56f88 Switch s to ssl everywhere. by David Benjamin · 9 years ago
  66. 4298d77 Implement draft-ietf-tls-curve25519-01 in C. by David Benjamin · 9 years ago
  67. 64d9250 Completely remove P-224 from the TLS stack. by David Benjamin · 9 years ago
  68. fc82512 Convert ssl3_send_cert_verify to CBB. by David Benjamin · 9 years ago
  69. a01deee Make CBB_len relative to its argument. by David Benjamin · 9 years ago
  70. 5ddffbb Make SSL_(CTX_)?set_tmp_ecdh call SSL_(CTX_)?set1_curves. by David Benjamin · 9 years ago
  71. 53e5c2c Remove SSL_(CTX_)?set_ecdh_callback. by David Benjamin · 9 years ago
  72. e9cddb8 Remove SSL_OP_LEGACY_SERVER_CONNECT. by David Benjamin · 9 years ago
  73. 3e052de Tighten SSL_OP_LEGACY_SERVER_CONNECT to align with RFC 5746. by David Benjamin · 9 years ago
  74. 758d127 Add get0 getters for EVP_PKEY. by David Benjamin · 9 years ago
  75. 99fdfb9 Move curve check out of tls12_check_peer_sigalg. by David Benjamin · 9 years ago
  76. 6e80765 Add SSL_get_server_key_exchange_hash. by David Benjamin · 9 years ago
  77. 788be4a Remove the hard-coded SHA-1 exception for sigalgs. by David Benjamin · 9 years ago
  78. c7817d8 Add SSL_CIPHER_get_min_version and tidy up SSL_TLSV1_2 logic. by David Benjamin · 9 years ago
  79. e564a5b |assert| → |OPENSSL_STATIC_ASSERT| where possible. by Matt Braithwaite · 10 years ago
  80. 091c4b9 Add an option to disable NPN on a per-SSL basis. by David Benjamin · 9 years ago
  81. 10a1a9d Update references to the padding draft. by Adam Langley · 9 years ago
  82. d4c2bce Document early callback functions. by David Benjamin · 9 years ago
  83. 5638046 Convert ssl3_send_server_hello to CBB. by David Benjamin · 9 years ago
  84. e8d5350 Convert ssl3_send_client_hello to CBB. by David Benjamin · 9 years ago
  85. c7ce977 Ignore all extensions but renegotiation_info in SSL 3.0. by David Benjamin · 9 years ago
  86. d98dc13 Upstream Android-specific things under |BORINGSSL_ANDROID_SYSTEM| by Adam Langley · 10 years ago
  87. 0d62f26 Adding more options for signing digest fallback. by Steven Valdez · 10 years ago
  88. 62be8ac Skip the SCT and OCSP extensions in ServerHello when resuming sessions. by Paul Lietar · 10 years ago
  89. 9e4e01e Align the SSL stack on #include style. by David Benjamin · 10 years ago
  90. 4fac72e Add server-side support for Signed Certificate Timestamps. by Paul Lietar · 10 years ago
  91. 76c2efc Forbid a server from negotiating both ALPN and NPN. by David Benjamin · 10 years ago
  92. aeeff2c Server-side OCSP stapling support. by Paul Lietar · 10 years ago
  93. 3dd9016 Remove signature algorithm configuration hooks and SSL_ctrl. by David Benjamin · 10 years ago
  94. 2b23d24 Make key exchange strength available. by Sigbjorn Vik · 10 years ago
  95. d6a4ae9 Simplify tls1_channel_id_hash. by David Benjamin · 10 years ago
  96. 9550c3a Decouple the handshake buffer and digest. by David Benjamin · 10 years ago
  97. fc05994 Fold away EC point format negotiation. by David Benjamin · 10 years ago
  98. 0950563 Implement custom extensions. by Adam Langley · 10 years ago
  99. 0a96859 Minor simplification to the padding extension logic. by David Benjamin · 10 years ago
  100. 821464e Remove old 'prepare' extensions functions. by David Benjamin · 10 years ago