Log - 45573cc04d6cc3352082b6a523e2ad1bfd909d94 - boringssl.git

08b65f4 Enabling 0-RTT on new Session Tickets. by Steven Valdez · 8 years ago
2be4aa7 Add a helper function for resetting SSL_get_error state. by David Benjamin · 8 years ago
f650c71 Use SSL_CTX_up_ref to up-ref an SSL_CTX. by David Benjamin · 8 years ago
6f600d6 Add experimental TLS 1.3 short record header extension. by David Benjamin · 8 years ago
17cf2cb Work around language and compiler bug in memcpy, etc. by David Benjamin · 8 years ago
65fb425 Remove version-specific cipher lists. by David Benjamin · 8 years ago
629db8c Add |SSL_get_peer_full_cert_chain|. by Adam Langley · 8 years ago
f1050fd Preserve the peer signature algorithm across resumes. by David Benjamin · 8 years ago
4882a6c Replace key_exchange_info with group_id. by David Benjamin · 8 years ago
5488122 Remove SSL_get_dhe_group_size. by David Benjamin · 8 years ago
d519bf6 Add |SSL_CTX_set0_buffer_pool|. by Adam Langley · 8 years ago
364f7a6 Push the difference in chain semantics to the edge. by Adam Langley · 8 years ago
cb0c29f Move state and next_state to SSL_HANDSHAKE. by David Benjamin · 8 years ago
2644a13 Set up the SSL_HANDSHAKE object earlier. by David Benjamin · 8 years ago
287fc4f Don't use SSL_want_* macros internally. by David Benjamin · 8 years ago
c0fc7a1 Revert "Add |SSL_CTX_set0_buffer_pool|." and "Hold certificates in an SSL_SESSION as CRYPTO_BUFFERSs as well." by Adam Langley · 8 years ago
651aaef Remove CECPQ1 (experimental post-quantum key agreement). by Matthew Braithwaite · 8 years ago
5a6e616 Add |SSL_CTX_set0_buffer_pool|. by Adam Langley · 8 years ago
559f064 Support setting per-connection OCSP staple by Alessandro Ghedini · 8 years ago
7c57286 Remove SSL_set_reject_peer_renegotiations. by David Benjamin · 8 years ago
b79cc84 Fix SSL_clear's interaction with session resumption. by David Benjamin · 8 years ago
30c4c30 Revise some integer sizes. by David Benjamin · 8 years ago
813fc01 Remove unreachable check. by David Benjamin · 8 years ago
f04c2e9 Move client_version into SSL_HANDSHAKE. by David Benjamin · 8 years ago
a2bda9f Make more functions static. by David Benjamin · 8 years ago
eebd3c8 Add SSL_(CTX_)set_tls_channel_id_enabled. by David Benjamin · 8 years ago
2578b29 Make ssl3_choose_cipher and dependencies static. by David Benjamin · 8 years ago
731058e Typedef ssl_early_callback_ctx to SSL_CLIENT_HELLO. by David Benjamin · 8 years ago
f3c8f8d Pass explicit parameters elsewhere. by David Benjamin · 8 years ago
ce8c9d2 Maintain SSL_HANDSHAKE lifetime outside of handshake_func. by David Benjamin · 8 years ago
bf48364 Support setting per-connection default session lifetime value by Alessandro Ghedini · 8 years ago
9b885c5 Don't allow invalid SCT lists to be set. by Adam Langley · 8 years ago
bbaf367 Add |SSL_set_retain_only_sha256_of_client_certs|. by David Benjamin · 8 years ago
4eb95cc Parse ClientHello extensions before deciding on resumption. by David Benjamin · 8 years ago
78476f6 Move tlsext_ticket_expected to SSL_HANDSHAKE. by David Benjamin · 8 years ago
c5ac2b6 Rename X.509 members in |SSL_SESSION| and |CERT|. by Adam Langley · 8 years ago
a983b4c Set SSL_MODE_NO_AUTO_CHAIN by default. by David Benjamin · 8 years ago
ec978dd Add corpora for fuzzers with fuzzer mode disabled. by David Benjamin · 8 years ago
d2cb1c1 Remove cipher_list_by_id. by David Benjamin · 8 years ago
af3b3d3 Only resolve which cipher list to use once. by David Benjamin · 8 years ago
34941c0 Forbid renego in SSL 3.0. by David Benjamin · 8 years ago
49ddf41 Remove redundant copies of the Finished messages. by David Benjamin · 8 years ago
ced00b4 Turn off Finished-based APIs at TLS 1.3 and SSL 3.0. by David Benjamin · 8 years ago
34de91e Revise server-side ECDSA certificate checks. by David Benjamin · 8 years ago
b74b081 Move next_proto_neg_seen into SSL_HANDSHAKE. by David Benjamin · 8 years ago
a048678 Move some fields from tmp to hs. by David Benjamin · 8 years ago
803c77a Update crypto negotation to draft 15. by Steven Valdez · 9 years ago
5fd1807 Implement SSL_CTX_set1_curves_list() by Alessandro Ghedini · 9 years ago
fdd1099 Moving TLS 1.3 version negotiation into extension. by Steven Valdez · 9 years ago
65ac997 Implement draft-davidben-tls-grease-01. by David Benjamin · 9 years ago
01a9057 Fix remaining non-determinism in fuzzer transcripts. by David Benjamin · 9 years ago
e34bcc9 Support default versions with set_{min,max}_proto_version. by David Benjamin · 9 years ago
e470690 Align SSL_set_{min,max}_version with upstream. by David Benjamin · 9 years ago
2dc0204 Don't return invalid versions in version_from_wire. by David Benjamin · 9 years ago
c027999 Take the version parameter out of ssl_do_msg_callback. by David Benjamin · 9 years ago
e0ff767 Remove SSL_set_fallback_version. by David Benjamin · 9 years ago
7867934 Do not distinguish NULL and empty PSK identity hints. by David Benjamin · 9 years ago
8aaa9e1 Remove RC4 from TLS for real. by Matthew Braithwaite · 9 years ago
6e3f5cc Add SSL_CTX_get_keylog_callback. by David Benjamin · 9 years ago
5409123 Use C99 for size_t loops. by David Benjamin · 9 years ago
fc0c9d9 Use a common state to begin the handshake. by David Benjamin · 9 years ago
311c257 Declare SSL_R_BLOCK_CIPHER_PAD_IS_WRONG and SSL_R_NO_CIPHERS_SPECIFIED. by David Benjamin · 9 years ago
cb96654 Adding ARRAY_SIZE macro for getting the size of constant arrays. by Steven Valdez · 9 years ago
7aa31d6 Remove ssl->verify_result. by David Benjamin · 9 years ago
93d9743 Deprecate and no-op SSL_set_verify_result. by David Benjamin · 9 years ago
32635b8 Add limit for consecutive KeyUpdate messages. by Steven Valdez · 9 years ago
4aa154e Adding code to send session as PSK Identity. by Steven Valdez · 9 years ago
96a16cd Finish aligning up_ref functions with OpenSSL 1.1.0. by David Benjamin · 9 years ago
1deb41b Move SCSV handling out of cipher list parsing. by David Benjamin · 9 years ago
e14ff06 Only have one ClientHello parser, not three. by David Benjamin · 9 years ago
b919540 Align SSL_SESSION_up_ref with OpenSSL. by David Benjamin · 9 years ago
721e8b7 Test that servers enforce session timeouts. by David Benjamin · 9 years ago
33dad1b Stop pretending to ssl_clear_bad_session. by David Benjamin · 9 years ago
ce079fd Add SSL_is_dtls. by David Benjamin · 9 years ago
4501bd5 Align with OpenSSL on SSL_set_bio behavior. by David Benjamin · 9 years ago
9498e74 Don't have the default value of |verify_result| be X509_V_OK. by Adam Langley · 9 years ago
8e1c7be Adding Post-Handshake message handling. by Steven Valdez · 9 years ago
87eab49 Splitting SSL session state. by Steven Valdez · 9 years ago
163f29a Move post-handshake message handling out of read_app_data. by David Benjamin · 9 years ago
4905454 Clear init_msg/init_num whenever we clear the backing store. by David Benjamin · 9 years ago
1d4f4c0 Add SSL_send_fatal_alert. by David Benjamin · 9 years ago
a68c118 Make SSL_get_extms_support a little friendlier. by David Benjamin · 9 years ago
5e7e7cc Add SSL_set_fallback_version. by David Benjamin · 9 years ago
e776cc2 Implement SSLKEYLOGFILE support for TLS 1.3. by David Benjamin · 9 years ago
143e8b3 Add TLS 1.3 1-RTT. by Steven Valdez · 9 years ago
0c0b7e1 Widen SSL_PRIVATE_KEY_METHOD types to include the curve name. by David Benjamin · 9 years ago
310d3f6 Change |EVP_PKEY_up_ref| to return int. by Adam Langley · 9 years ago
df759b5 Allow CECPQ1 cipher suites to do False Start. by Adam Langley · 9 years ago
7a4b404 Remove SSL_get_server_key_exchange_hash. by David Benjamin · 9 years ago
84cd159 Add SSL_CTX_up_ref. by Adam Langley · 9 years ago
9e68f19 Add SSL_get_curve_id and SSL_get_dhe_group_size. by David Benjamin · 9 years ago
b6a0a51 Simplify version configuration. by David Benjamin · 9 years ago
0256385 Changing representation of signature/hash to use SignatureScheme. by Steven Valdez · 9 years ago
f0ee907 Remove the 'ssl_' prefix on most SSL_PROTOCOL_METHOD hooks. by David Benjamin · 9 years ago
10e664b Always set min_version / max_version. by David Benjamin · 9 years ago
5744ca6 Fold cert_req into cert_request. by David Benjamin · 9 years ago
f715c42 Make SSL_set_bio's ownership easier to reason about. by David Benjamin · 9 years ago
9edb2c6 Adding function to set the "current time" callback used for DTLS. by Taylor Brandstetter · 9 years ago
936aada Move a bunch of public APIs from s3_lib.c to ssl_lib.c. by David Benjamin · 9 years ago
9f1dc82 A bit of cleanup post state machine merging. by David Benjamin · 9 years ago