Log - 314d81420c7aae3495d59d590b39d8d1b222ebba - boringssl.git

9c33ae8 Fix TLS 1.3 NewSessionTicket processing. by David Benjamin · 8 years ago
08b65f4 Enabling 0-RTT on new Session Tickets. by Steven Valdez · 8 years ago
053fee9 Enforce the SSL 3.0 no_certificate alert in tests. by David Benjamin · 8 years ago
48063c2 Add tests around SSL_write's retry behavior. by David Benjamin · 8 years ago
a660e7a Don't clear cert_request in ssl3_send_client_certificate. by David Benjamin · 8 years ago
2be4aa7 Add a helper function for resetting SSL_get_error state. by David Benjamin · 8 years ago
a1eaba1 Add a test for renegotiation on busy write buffer. by David Benjamin · 8 years ago
2214f4e Remove call to SSL_CTX_set_tls_channel_id_enabled in bssl_shim. by David Benjamin · 8 years ago
650aa1c Clean up certificate auto-chaining. by David Benjamin · 8 years ago
f650c71 Use SSL_CTX_up_ref to up-ref an SSL_CTX. by David Benjamin · 8 years ago
a81967b Add tests for the point format extension. by David Benjamin · 8 years ago
9c70b89 Update fuzzer mode suppressions. by David Benjamin · 8 years ago
1444c3a Add tests for auto-chaining. by David Benjamin · 8 years ago
6f600d6 Add experimental TLS 1.3 short record header extension. by David Benjamin · 8 years ago
17cf2cb Work around language and compiler bug in memcpy, etc. by David Benjamin · 8 years ago
56cadc3 Assert on the alert sent on FALLBACK_SCSV. by David Benjamin · 8 years ago
b442dee Rename FallbackSCSV-MatchVersion. by David Benjamin · 8 years ago
458334a Test name-based version APIs are reported as expected. by David Benjamin · 8 years ago
4cb8494 Splitting handshake traffic derivation from key change. by Steven Valdez · 8 years ago
65fb425 Remove version-specific cipher lists. by David Benjamin · 8 years ago
76bb141 Remove the BORINGSSL_ANDROID_SYSTEM P-521 special-case. by David Benjamin · 9 years ago
629db8c Add |SSL_get_peer_full_cert_chain|. by Adam Langley · 8 years ago
a4b9198 Make TLS 1.3 check ECDSA KeyUsage and add test. by Adam Langley · 8 years ago
0567220 Don't use X.509 functions to check ECDSA keyUsage. by Adam Langley · 8 years ago
0c29425 Don't use |X509_get_pubkey| in TLS 1.3 code either. by Adam Langley · 8 years ago
aa01204 Move per-cipher-suite tests into a separate function. by David Benjamin · 8 years ago
db5bd72 Move key_share extension check with ECDHE code. by David Benjamin · 8 years ago
f1050fd Preserve the peer signature algorithm across resumes. by David Benjamin · 8 years ago
8a55ce4 Test SSL_get_curve_id behavior on resume. by David Benjamin · 8 years ago
4882a6c Replace key_exchange_info with group_id. by David Benjamin · 8 years ago
5488122 Remove SSL_get_dhe_group_size. by David Benjamin · 8 years ago
d515722 Don't depend on the X509 code for getting public keys. by Adam Langley · 8 years ago
d519bf6 Add |SSL_CTX_set0_buffer_pool|. by Adam Langley · 8 years ago
68e7124 Hold certificates in an SSL_SESSION as CRYPTO_BUFFERSs as well. by Adam Langley · 8 years ago
364f7a6 Push the difference in chain semantics to the edge. by Adam Langley · 8 years ago
cb0c29f Move state and next_state to SSL_HANDSHAKE. by David Benjamin · 8 years ago
2644a13 Set up the SSL_HANDSHAKE object earlier. by David Benjamin · 8 years ago
5edfc8c Emulate the client_cert_cb with cert_cb. by David Benjamin · 8 years ago
5888946 Remove SSL_CTX_get_client_cert_cb. by David Benjamin · 8 years ago
287fc4f Don't use SSL_want_* macros internally. by David Benjamin · 8 years ago
3977f30 Rename hs->state to hs->tls13_state. by David Benjamin · 8 years ago
f440e82 Remove New Hope key agreement. by Matthew Braithwaite · 8 years ago
c0fc7a1 Revert "Add |SSL_CTX_set0_buffer_pool|." and "Hold certificates in an SSL_SESSION as CRYPTO_BUFFERSs as well." by Adam Langley · 8 years ago
651aaef Remove CECPQ1 (experimental post-quantum key agreement). by Matthew Braithwaite · 8 years ago
5a6e616 Add |SSL_CTX_set0_buffer_pool|. by Adam Langley · 8 years ago
e850909 Hold certificates in an SSL_SESSION as CRYPTO_BUFFERSs as well. by Adam Langley · 8 years ago
559f064 Support setting per-connection OCSP staple by Alessandro Ghedini · 8 years ago
7c57286 Remove SSL_set_reject_peer_renegotiations. by David Benjamin · 8 years ago
b79cc84 Fix SSL_clear's interaction with session resumption. by David Benjamin · 8 years ago
30c4c30 Revise some integer sizes. by David Benjamin · 8 years ago
813fc01 Remove unreachable check. by David Benjamin · 8 years ago
f04c2e9 Move client_version into SSL_HANDSHAKE. by David Benjamin · 8 years ago
a2bda9f Make more functions static. by David Benjamin · 8 years ago
0be6fc4 Move a few more functions into *_method.c. by David Benjamin · 8 years ago
9d125dc Remove SSL_OP_DISABLE_NPN. by David Benjamin · 8 years ago
aac1e2d Remove the remaining bssl::Main wrappers. by David Benjamin · 8 years ago
4ba6e19 Better pack ssl_handshake_st and ssl3_state_st. by Adam Langley · 8 years ago
33b1d4f Check that tests with a version in the name do something with versions. by Adam Langley · 8 years ago
eebd3c8 Add SSL_(CTX_)set_tls_channel_id_enabled. by David Benjamin · 8 years ago
2578b29 Make ssl3_choose_cipher and dependencies static. by David Benjamin · 8 years ago
731058e Typedef ssl_early_callback_ctx to SSL_CLIENT_HELLO. by David Benjamin · 8 years ago
91e9b0d Remove tls_record_type_t. by David Benjamin · 8 years ago
cd6cfb0 Test SendReceiveIntermediate* with expected version. by Adam Langley · 8 years ago
dfec182 Remove Fake TLS 1.3 code from prf.go. by Nick Harper · 8 years ago
f3c8f8d Pass explicit parameters elsewhere. by David Benjamin · 8 years ago
8baf963 Pass explicit hs parameters to ssl_ext_*. by David Benjamin · 8 years ago
6773972 Pass explicit hs parameters into t1_enc.c. by David Benjamin · 8 years ago
2bd1917 Pass explicit hs parameters into custom_extensions.c. by David Benjamin · 8 years ago
6e4fc33 Pass explicit hs parameters to tls13_*.c. by David Benjamin · 8 years ago
8c880a2 Pass explicit hs parameters to kExtensions callbacks. by David Benjamin · 8 years ago
c3c8882 Match state machine functions with new calling convention. by David Benjamin · 8 years ago
ce8c9d2 Maintain SSL_HANDSHAKE lifetime outside of handshake_func. by David Benjamin · 8 years ago
48891ad Simplify BoGo's TLS 1.3 key derivation. by David Benjamin · 8 years ago
aedf303 Parse the entire PSK extension. by David Benjamin · 8 years ago
bf48364 Support setting per-connection default session lifetime value by Alessandro Ghedini · 8 years ago
a4ee74d Skipping early data on 0RTT rejection. by Steven Valdez · 8 years ago
8f820b4 Clean up resumption secret "derivation" step. by David Benjamin · 8 years ago
3d622e5 Add missing bounds check in tls13_derive_resumption_secret. by David Benjamin · 8 years ago
68f37b7 Run TestOneSidedShutdown at all versions. by David Benjamin · 8 years ago
0fef305 Add a ForEachVersion function to ssl_test. by David Benjamin · 8 years ago
9b885c5 Don't allow invalid SCT lists to be set. by Adam Langley · 8 years ago
6f5f49f Flush TLS 1.3 certificate extensions. by Adam Langley · 8 years ago
cfa08c3 Enforce basic sanity of SCT lists. by Adam Langley · 8 years ago
b5172a7 Make tls1_setup_key_block static. by David Benjamin · 8 years ago
fbbef12 Don't put a colon in the extra error message. by Adam Langley · 8 years ago
35598ae Remove ext_alpn_init. by David Benjamin · 8 years ago
e7f60a2 Fix alert on tls1_process_alert failure. by David Benjamin · 8 years ago
12d6baf Make ssl_ext_pre_shared_key_add_clienthello static. by David Benjamin · 8 years ago
bbaf367 Add |SSL_set_retain_only_sha256_of_client_certs|. by David Benjamin · 8 years ago
a933c38 Test setting session ID context in early or SNI callback. by David Benjamin · 8 years ago
f01f42a Negotiate ciphers before resumption. by David Benjamin · 8 years ago
34202b9 Call cert_cb before resolving resumption. by David Benjamin · 8 years ago
4eb95cc Parse ClientHello extensions before deciding on resumption. by David Benjamin · 8 years ago
e1cc35e Tolerate cipher changes on TLS 1.3 resumption as a client. by David Benjamin · 8 years ago
2b02f4b Loosen TLS 1.3 session/cipher matching in BoGo. by David Benjamin · 8 years ago
d0d532f Select TLS 1.3 cipher before resumption in BoGo. by David Benjamin · 8 years ago
6929f27 Fix return values for TLS 1.3 state machine code. by David Benjamin · 8 years ago
71186e8 Move ExpectTicketAge out of AcceptAnySession. by David Benjamin · 8 years ago
0b8f85e Fix AcceptAnyVersion bug. by David Benjamin · 8 years ago
ba28dfc Add a -repeat-until-failure flag to runner. by David Benjamin · 8 years ago