Google Git
Sign in
boringssl / boringssl.git / 47b1e39042bc3208771a8d947f1a1ed2fe5f3d8b / ssl / ssl_cert.cc
  1. 964256d Add |SSL_CTX_get0_chain|. by Adam Langley · 5 years ago
  2. 3ba9586 Rename a number of BUF_* functions to OPENSSL_*. by David Benjamin · 5 years ago
  3. 629f321 Add an API to record use of delegated credential by Watson Ladd · 6 years ago
  4. 3390fd8 Correct outdated comments by Watson Ladd · 6 years ago
  5. 2f213f6 Update delegated credentials to draft-03 by Watson Ladd · 6 years ago
  6. d7266ec Enforce key usage for RSA keys in TLS 1.2. by Jesse Selover · 6 years ago
  7. 6c1b376 Implement server support for delegated credentials. by Christopher Patton · 7 years ago
  8. 9cde848 Use handshake parameters to decide if cert/key are available by Christopher Patton · 7 years ago
  9. 8525ff3 Another batch of bools. by David Benjamin · 7 years ago
  10. 8c7c635 Support symbol prefixes by Joshua Liebow-Feeser · 7 years ago
  11. 0ce090a A bunch more scopers. by David Benjamin · 7 years ago
  12. 50596f8 Switch some easy SSL fields to UniquePtr. by David Benjamin · 7 years ago
  13. bfdd1a9 Give SSL_SESSION a destructor. by David Benjamin · 7 years ago
  14. 2908dd1 Add bssl::UpRef. by David Benjamin · 7 years ago
  15. 5f001d1 Const-correct some functions. by David Benjamin · 7 years ago
  16. 418cdc4 Use the right alert for bad CA lists. by David Benjamin · 7 years ago
  17. b7bc80a SSL_CONFIG: new struct for sheddable handshake configuration. by Matthew Braithwaite · 7 years ago
  18. e325c3f Give CERT a destructor. by David Benjamin · 7 years ago
  19. cd8470f Adding support for draft 21 as a TLS 1.3 variant. by Steven Valdez · 7 years ago
  20. d1e3ce1 Rename ssl3_send_alert and ssl3_protocol_version. by David Benjamin · 7 years ago
  21. c64d123 Push Span down a layer. by David Benjamin · 7 years ago
  22. c11ea942 Convert comments in ssl. by David Benjamin · 8 years ago
  23. 27e377e Fix miscellaneous clang-tidy warnings. by David Benjamin · 8 years ago
  24. ee910bf Use new STACK_OF helpers. by David Benjamin · 8 years ago
  25. ec78383 Make ranged for loops work with STACK_OF(T). by David Benjamin · 8 years ago
  26. e664a53 Return null from SSL_get0_peer_certificates if unauthenticated. by David Benjamin · 8 years ago
  27. 31b0c9b Add a bunch of scopers. by David Benjamin · 8 years ago
  28. e39ac8f Switch BORINGSSL_INTERNAL_CXX_TYPES in favor of subclassing games. by David Benjamin · 8 years ago
  29. 86e95b8 Move libssl's internals into the bssl namespace. by David Benjamin · 8 years ago
  30. 71dfad4 Add new functions for configuring the client CA list. by David Benjamin · 8 years ago
  31. 11d11d6 Fix and/or annotate all switch fall-throughs. by Adam Langley · 8 years ago
  32. e64d2c7 Convert ssl_buffer, ssl_cert, and ssl_cipher to C++. by David Benjamin · 8 years ago[Renamed (98%) from ssl/ssl_cert.c]
  33. 7e06de5 Really remove DHE ciphersuites from TLS. by Matthew Braithwaite · 8 years ago
  34. 6952211 Support Ed25519 in TLS. by David Benjamin · 8 years ago
  35. a232a71 Deprecate SSL_PRIVATE_KEY_METHOD type and max_signature_len. by David Benjamin · 8 years ago
  36. 67bb45f Support enabling early data on SSL by Alessandro Ghedini · 8 years ago
  37. d04ca95 Add |SSL[_CTX]_set_chain_and_key|. by Adam Langley · 8 years ago
  38. ab1d28e Trim x509.h includes. by David Benjamin · 8 years ago
  39. f465461 Add SSL_get0_peer_certificates. by David Benjamin · 8 years ago
  40. d6c22ee Add |SSL_get0_server_requested_CAs|. by Adam Langley · 8 years ago
  41. 2a3b343 Move X509-related verification code into ssl_x509.c. by Adam Langley · 8 years ago
  42. 0bdef09 Check CA names during the handshake. by Adam Langley · 8 years ago
  43. 34b4c82 Hold CA names as |CRYPTO_BUFFER|s. by Adam Langley · 8 years ago
  44. 45738dd Move new_cipher and new_session to SSL_HANDSHAKE. by David Benjamin · 8 years ago
  45. 5960a90 Move sid_ctx from SSL/SSL_CTX to CERT. by David Benjamin · 8 years ago
  46. 83a3212 Move SCT lists and OCSP responses to CERT. by David Benjamin · 8 years ago
  47. 52940c4 Move a number of certificate-related functions from ssl_rsa.c to ssl_cert.c by Adam Langley · 8 years ago
  48. 3509dac Add |X509_METHOD| and, using it, move many functions to ssl_x509.c. by Adam Langley · 8 years ago
  49. 7dccc71 Set output alert when failing to parse public key. by Adam Langley · 8 years ago
  50. c26692c Push the use of X509 upwards, out of |ssl_set_cert|. by Adam Langley · 8 years ago
  51. e1e7813 Keep a reference to |X509|s appended to a chain. by Adam Langley · 8 years ago
  52. 6f07d72 Don't up_ref a NULL |CRYPTO_BUFFER|. by Adam Langley · 8 years ago
  53. 3a2b47a Don't use |X509| objects in |CERT|, by default. by Adam Langley · 8 years ago
  54. 2fe6e22 Remove mask_a and mask_k from CERT. by David Benjamin · 8 years ago
  55. 03b96d7 Remove unused |ssl_parse_x509|. by Adam Langley · 8 years ago
  56. 5b410b6 Remove unnecessary CBS_get_asn1_element. by David Benjamin · 8 years ago
  57. 650aa1c Clean up certificate auto-chaining. by David Benjamin · 8 years ago
  58. 17cf2cb Work around language and compiler bug in memcpy, etc. by David Benjamin · 8 years ago
  59. 0567220 Don't use X.509 functions to check ECDSA keyUsage. by Adam Langley · 8 years ago
  60. d515722 Don't depend on the X509 code for getting public keys. by Adam Langley · 8 years ago
  61. d519bf6 Add |SSL_CTX_set0_buffer_pool|. by Adam Langley · 8 years ago
  62. 68e7124 Hold certificates in an SSL_SESSION as CRYPTO_BUFFERSs as well. by Adam Langley · 8 years ago
  63. 5edfc8c Emulate the client_cert_cb with cert_cb. by David Benjamin · 8 years ago
  64. c0fc7a1 Revert "Add |SSL_CTX_set0_buffer_pool|." and "Hold certificates in an SSL_SESSION as CRYPTO_BUFFERSs as well." by Adam Langley · 8 years ago
  65. 5a6e616 Add |SSL_CTX_set0_buffer_pool|. by Adam Langley · 8 years ago
  66. e850909 Hold certificates in an SSL_SESSION as CRYPTO_BUFFERSs as well. by Adam Langley · 8 years ago
  67. a2bda9f Make more functions static. by David Benjamin · 8 years ago
  68. a833c35 Update to TLS 1.3 draft 18. by Steven Valdez · 8 years ago
  69. c5ac2b6 Rename X.509 members in |SSL_SESSION| and |CERT|. by Adam Langley · 8 years ago
  70. 938fa7c Inline tls1_check_ec_cert. by David Benjamin · 8 years ago
  71. a048678 Move some fields from tmp to hs. by David Benjamin · 8 years ago
  72. 5409123 Use C99 for size_t loops. by David Benjamin · 9 years ago
  73. a6cd185 Set verify_result, even on failure. by Adam Langley · 9 years ago
  74. 0fc37ef Fix a number of sigalg scope issues. by David Benjamin · 9 years ago
  75. 7aa31d6 Remove ssl->verify_result. by David Benjamin · 9 years ago
  76. 96a16cd Finish aligning up_ref functions with OpenSSL 1.1.0. by David Benjamin · 9 years ago
  77. 37b486a Remove optimisation for known DH groups. by Adam Langley · 9 years ago
  78. e455e51 Push some duplicated code into ssl_verify_cert_chain. by David Benjamin · 9 years ago
  79. 13f1ebe Factor out the client_cert_cb code. by David Benjamin · 9 years ago
  80. bf5aa84 Moving ssl_check_leaf_certificate to ssl_cert. by Steven Valdez · 9 years ago
  81. 5c900c8 Factor out certificate list parsing. by David Benjamin · 9 years ago
  82. e0332e8 Factor out CA list parsing. by David Benjamin · 9 years ago
  83. 32a66d5 Tidy up a few certificate-related utility functions. by David Benjamin · 9 years ago
  84. 310d3f6 Change |EVP_PKEY_up_ref| to return int. by Adam Langley · 9 years ago
  85. d246b81 Don't decompose sigalgs in key preferences. by David Benjamin · 9 years ago
  86. 57a6f3c Fix missing cert length prefix. by Steven Valdez · 9 years ago
  87. 7583643 Disconnect handshake message creation from init_buf. by David Benjamin · 9 years ago
  88. b32a915 Ensure we check i2d_X509 return val by Steven Valdez · 9 years ago
  89. 66b2fe8 Add |SSL_CTX_set_private_key_method| to parallel |SSL_set_private_key_method| by Tom Thorogood · 9 years ago
  90. d323f4b Bring back |verify_store|. by Adam Langley · 9 years ago
  91. 5ba0689 Don't cast |OPENSSL_malloc|/|OPENSSL_realloc| result. by Brian Smith · 9 years ago
  92. 60a08ac Remove unreachable code to duplicate DH keys. by David Benjamin · 9 years ago
  93. 5ddffbb Make SSL_(CTX_)?set_tmp_ecdh call SSL_(CTX_)?set1_curves. by David Benjamin · 9 years ago
  94. 53e5c2c Remove SSL_(CTX_)?set_ecdh_callback. by David Benjamin · 9 years ago
  95. 5993704 Document certificate verification functions in SSL. by David Benjamin · 10 years ago
  96. 0d62f26 Adding more options for signing digest fallback. by Steven Valdez · 10 years ago
  97. 306ece3 Fix some malloc failure crashes. by David Benjamin · 10 years ago
  98. 1d128f3 Make SSL_get_client_CA_list slightly more OpenSSL-compatible. by David Benjamin · 10 years ago
  99. 443a1f6 Toss file-related convenience bits of ssl/ into a corner. by David Benjamin · 10 years ago
  100. 26416e9 Remove the last of SESS_CERT. by David Benjamin · 10 years ago