Log - 44d40c5e2b0c5423940e7abd030e567c18df5974 - boringssl.git

7e06de5 Really remove DHE ciphersuites from TLS. by Matthew Braithwaite · 8 years ago
6952211 Support Ed25519 in TLS. by David Benjamin · 8 years ago
a232a71 Deprecate SSL_PRIVATE_KEY_METHOD type and max_signature_len. by David Benjamin · 8 years ago
67bb45f Support enabling early data on SSL by Alessandro Ghedini · 8 years ago
d04ca95 Add |SSL[_CTX]_set_chain_and_key|. by Adam Langley · 8 years ago
ab1d28e Trim x509.h includes. by David Benjamin · 8 years ago
f465461 Add SSL_get0_peer_certificates. by David Benjamin · 8 years ago
d6c22ee Add |SSL_get0_server_requested_CAs|. by Adam Langley · 8 years ago
2a3b343 Move X509-related verification code into ssl_x509.c. by Adam Langley · 8 years ago
0bdef09 Check CA names during the handshake. by Adam Langley · 8 years ago
34b4c82 Hold CA names as |CRYPTO_BUFFER|s. by Adam Langley · 8 years ago
45738dd Move new_cipher and new_session to SSL_HANDSHAKE. by David Benjamin · 8 years ago
5960a90 Move sid_ctx from SSL/SSL_CTX to CERT. by David Benjamin · 8 years ago
83a3212 Move SCT lists and OCSP responses to CERT. by David Benjamin · 8 years ago
52940c4 Move a number of certificate-related functions from ssl_rsa.c to ssl_cert.c by Adam Langley · 8 years ago
3509dac Add |X509_METHOD| and, using it, move many functions to ssl_x509.c. by Adam Langley · 8 years ago
7dccc71 Set output alert when failing to parse public key. by Adam Langley · 8 years ago
c26692c Push the use of X509 upwards, out of |ssl_set_cert|. by Adam Langley · 8 years ago
e1e7813 Keep a reference to |X509|s appended to a chain. by Adam Langley · 8 years ago
6f07d72 Don't up_ref a NULL |CRYPTO_BUFFER|. by Adam Langley · 8 years ago
3a2b47a Don't use |X509| objects in |CERT|, by default. by Adam Langley · 8 years ago
2fe6e22 Remove mask_a and mask_k from CERT. by David Benjamin · 8 years ago
03b96d7 Remove unused |ssl_parse_x509|. by Adam Langley · 8 years ago
5b410b6 Remove unnecessary CBS_get_asn1_element. by David Benjamin · 8 years ago
650aa1c Clean up certificate auto-chaining. by David Benjamin · 8 years ago
17cf2cb Work around language and compiler bug in memcpy, etc. by David Benjamin · 8 years ago
0567220 Don't use X.509 functions to check ECDSA keyUsage. by Adam Langley · 8 years ago
d515722 Don't depend on the X509 code for getting public keys. by Adam Langley · 8 years ago
d519bf6 Add |SSL_CTX_set0_buffer_pool|. by Adam Langley · 8 years ago
68e7124 Hold certificates in an SSL_SESSION as CRYPTO_BUFFERSs as well. by Adam Langley · 8 years ago
5edfc8c Emulate the client_cert_cb with cert_cb. by David Benjamin · 8 years ago
c0fc7a1 Revert "Add |SSL_CTX_set0_buffer_pool|." and "Hold certificates in an SSL_SESSION as CRYPTO_BUFFERSs as well." by Adam Langley · 8 years ago
5a6e616 Add |SSL_CTX_set0_buffer_pool|. by Adam Langley · 8 years ago
e850909 Hold certificates in an SSL_SESSION as CRYPTO_BUFFERSs as well. by Adam Langley · 8 years ago
a2bda9f Make more functions static. by David Benjamin · 8 years ago
a833c35 Update to TLS 1.3 draft 18. by Steven Valdez · 8 years ago
c5ac2b6 Rename X.509 members in |SSL_SESSION| and |CERT|. by Adam Langley · 8 years ago
938fa7c Inline tls1_check_ec_cert. by David Benjamin · 8 years ago
a048678 Move some fields from tmp to hs. by David Benjamin · 8 years ago
5409123 Use C99 for size_t loops. by David Benjamin · 9 years ago
a6cd185 Set verify_result, even on failure. by Adam Langley · 9 years ago
0fc37ef Fix a number of sigalg scope issues. by David Benjamin · 9 years ago
7aa31d6 Remove ssl->verify_result. by David Benjamin · 9 years ago
96a16cd Finish aligning up_ref functions with OpenSSL 1.1.0. by David Benjamin · 9 years ago
37b486a Remove optimisation for known DH groups. by Adam Langley · 9 years ago
e455e51 Push some duplicated code into ssl_verify_cert_chain. by David Benjamin · 9 years ago
13f1ebe Factor out the client_cert_cb code. by David Benjamin · 9 years ago
bf5aa84 Moving ssl_check_leaf_certificate to ssl_cert. by Steven Valdez · 9 years ago
5c900c8 Factor out certificate list parsing. by David Benjamin · 9 years ago
e0332e8 Factor out CA list parsing. by David Benjamin · 9 years ago
32a66d5 Tidy up a few certificate-related utility functions. by David Benjamin · 9 years ago
310d3f6 Change |EVP_PKEY_up_ref| to return int. by Adam Langley · 9 years ago
d246b81 Don't decompose sigalgs in key preferences. by David Benjamin · 9 years ago
57a6f3c Fix missing cert length prefix. by Steven Valdez · 9 years ago
7583643 Disconnect handshake message creation from init_buf. by David Benjamin · 9 years ago
b32a915 Ensure we check i2d_X509 return val by Steven Valdez · 9 years ago
66b2fe8 Add |SSL_CTX_set_private_key_method| to parallel |SSL_set_private_key_method| by Tom Thorogood · 9 years ago
d323f4b Bring back |verify_store|. by Adam Langley · 9 years ago
5ba0689 Don't cast |OPENSSL_malloc|/|OPENSSL_realloc| result. by Brian Smith · 9 years ago
60a08ac Remove unreachable code to duplicate DH keys. by David Benjamin · 9 years ago
5ddffbb Make SSL_(CTX_)?set_tmp_ecdh call SSL_(CTX_)?set1_curves. by David Benjamin · 9 years ago
53e5c2c Remove SSL_(CTX_)?set_ecdh_callback. by David Benjamin · 9 years ago
5993704 Document certificate verification functions in SSL. by David Benjamin · 10 years ago
0d62f26 Adding more options for signing digest fallback. by Steven Valdez · 10 years ago
306ece3 Fix some malloc failure crashes. by David Benjamin · 10 years ago
1d128f3 Make SSL_get_client_CA_list slightly more OpenSSL-compatible. by David Benjamin · 10 years ago
443a1f6 Toss file-related convenience bits of ssl/ into a corner. by David Benjamin · 10 years ago
26416e9 Remove the last of SESS_CERT. by David Benjamin · 10 years ago
b1bdc5b Remove peer_cert from SESS_CERT. by David Benjamin · 10 years ago
6505567 Move peer_dh_tmp and peer_ecdh_tmp out of SESS_CERT. by David Benjamin · 10 years ago
3dd9016 Remove signature algorithm configuration hooks and SSL_ctrl. by David Benjamin · 10 years ago
2b9ec70 Remove SSL_CTRL_SET_CLIENT_CERT_TYPES. by David Benjamin · 10 years ago
d27441a Remove separate APIs for configuring chain and verify stores. by David Benjamin · 10 years ago
aa58513 Reserve ex_data index zero for app_data. by David Benjamin · 10 years ago
3570d73 Remove the func parameter to OPENSSL_PUT_ERROR. by David Benjamin · 10 years ago
71d2e54 Clear key_method in ssl_cert_clear_certs. by David Benjamin · 10 years ago
11c0f8e Promote certificate-related ctrl macros to functions. by David Benjamin · 10 years ago
b2a9d6a Remove SSL_build_cert_chain. by David Benjamin · 10 years ago
d1d8078 Fold away certificate slots mechanism. by David Benjamin · 10 years ago
bb20f52 Merge the RSA_ENC and RSA_SIGN certificate slots. by David Benjamin · 10 years ago
680ca96 Preserve session->sess_cert on ticket renewal. by David Benjamin · 10 years ago
b31040d Get rid of CERT_PKEY slots in SESS_CERT. by David Benjamin · 10 years ago
4bdb6e4 Remove remaining calls to the old lock functions. by Adam Langley · 10 years ago
0da323a Convert reference counts in crypto/ by Adam Langley · 10 years ago
9a10f8f Switch EVP_PKEY_dup calls to EVP_PKEY_up_ref. by David Benjamin · 10 years ago
6abb370 Remove ciphers_raw. by David Benjamin · 10 years ago
60da0cd Fix STACK_OF pointer style. by David Benjamin · 10 years ago
605641e Move the NULL case in ssl_add_cert_chain up. by David Benjamin · 10 years ago
9362b6e Errors are uint32_t, not unsigned long. by David Benjamin · 10 years ago
2755a3e Remove unnecessary NULL checks, part 5. by David Benjamin · 10 years ago
ed8fbad Remove SSL cert_flags. by David Benjamin · 10 years ago
dd97878 Always enable ecdh_auto. by David Benjamin · 10 years ago
f0ae170 Include-what-you-use ssl/internal.h. by David Benjamin · 10 years ago
2ee94aa Rename ssl_locl.h to internal.h by David Benjamin · 10 years ago
c0f763b Simplify server-side ECDH curve selection. by David Benjamin · 10 years ago
ab2479a Clean up error reporting. by Håvard Molland · 10 years ago
b85a4c2 Remove unnecessary NULL initializations in ssl_cert_dup. by David Benjamin · 10 years ago
a5a3eeb Remove ssl_cert_inst() by David Benjamin · 10 years ago
6eb000d Add in missing curly braces part 3. by David Benjamin · 10 years ago
a307dfd Add (void) to some macros to satisfy compiler. by Adam Langley · 10 years ago