Google Git
Sign in
boringssl / boringssl.git / 538b2a6cf0497cf8bb61ae726a484a3d7a34e54e / ssl / ssl_lib.cc
  1. 558960d Add support for the new ALPS codepoint by Victor Tan · 1 year, 9 months ago
  2. 7cb91d2 Reflect OPENSSL_NO_SOCK and OPENSSL_NO_POSIX_IO into headers by David Benjamin · 1 year, 9 months ago
  3. 4e88a35 Make the curve compat APIs into real functions by David Benjamin · 1 year, 9 months ago
  4. 6cf9820 Align NIDs vs group IDs in TLS group APIs by David Benjamin · 1 year, 10 months ago
  5. 335523a Align remaining TLS ECDH APIs on "group" terminology by David Benjamin · 1 year, 10 months ago
  6. 2da5ba9 Align on using the "group" over "curve" for ECDH in TLS by David Benjamin · 1 year, 10 months ago
  7. 2f6409e Support WPA 3.1 "enterprise" mode. by Adam Langley · 2 years ago
  8. cee2dbb Default SSL_set_enforce_rsa_key_usage to enabled. by David Benjamin · 2 years ago
  9. 8cacbd9 Add functions to allow the mocking of AES hw support for testing. by Bob Beck · 2 years ago
  10. dcabfe2 Make OPENSSL_malloc push ERR_R_MALLOC_FAILURE on failure. by Bob Beck · 2 years, 2 months ago
  11. a614d46 Add SSL_was_key_usage_invalid. by David Benjamin · 2 years, 4 months ago
  12. 7ac94aa More -Wshorten-64-to-32 fixes. by David Benjamin · 2 years, 5 months ago
  13. 4b35543 Revert "Default SSL_set_enforce_rsa_key_usage to enabled." by David Benjamin · 2 years, 5 months ago
  14. 64393b5 Default SSL_set_enforce_rsa_key_usage to enabled. by David Benjamin · 2 years, 6 months ago
  15. 32013e8 Maintain the sequence number as a uint64_t. by David Benjamin · 2 years, 6 months ago
  16. 7b2795a Replace even more ad-hoc bytes/integer conversions. by David Benjamin · 2 years, 7 months ago
  17. e8e6cac Add the "groups" variants of SSL_CTX_set1_curves_list. by David Benjamin · 2 years, 7 months ago
  18. 10fef97 Prefer established session properties mid renegotiation. by David Benjamin · 2 years, 7 months ago
  19. ebd8b89 Track SSL_ERROR_ZERO_RETURN explicitly. by David Benjamin · 2 years, 8 months ago
  20. b7d6320 Replace OPENSSL_STATIC_ASSERT with static_assert. by David Benjamin · 2 years, 8 months ago
  21. 4bd32a8 Convert more of the SSL write path to size_t and Spans. by David Benjamin · 3 years, 11 months ago
  22. b95c7e5 Fix up book-keeping between the write buffer and pending writes. by David Benjamin · 2 years, 8 months ago
  23. 5697a92 Add SSL_CTX_get_num_tickets. by David Benjamin · 2 years, 8 months ago
  24. 451ea3c Add SSL_[CTX_]_set_compliance_policy. by Adam Langley · 2 years, 11 months ago
  25. 3f180b8 Implement SSL_CTX_set_num_tickets. by David Benjamin · 2 years, 11 months ago
  26. b3ed071 Add SSL_has_pending. by David Benjamin · 3 years, 5 months ago
  27. 69ec7c8 Fix some error returns from SSL_read and SSL_write. by David Benjamin · 3 years, 8 months ago
  28. a10017c Reduce bouncing on the cache lock in ssl_update_cache. by David Benjamin · 3 years, 10 months ago
  29. 10a76ac Only clear not_resumable after the handshake. by David Benjamin · 3 years, 10 months ago
  30. 9734e44 More reliably report handshake errors through SSL_write. by David Benjamin · 3 years, 10 months ago
  31. e9c5d72 Add an option to permute ClientHello extension order. by David Benjamin · 3 years, 10 months ago
  32. da15f29 Move ECH-related APIs to encrypted_client_hello.cc. by David Benjamin · 3 years, 11 months ago
  33. b587911 Remove the Channel ID callback. by David Benjamin · 3 years, 11 months ago
  34. a1d3bfb Cite an RFC over 9000 (draft-ietf-quic-tls is now RFC 9001). by David Benjamin · 3 years, 10 months ago
  35. 747229e Add a missing case to SSL_error_description. by David Benjamin · 3 years, 11 months ago
  36. d89ec68 Remove draft tokbind implementation. by David Benjamin · 3 years, 11 months ago
  37. 71a3b82 Check for resumption identifiers in SSL_SESSION_is_resumable. by David Benjamin · 3 years, 11 months ago
  38. 1d58cd1 Shift the KEM dependency in HPKE up a step. by David Benjamin · 4 years ago
  39. 9b2cdb7 Add SSL_can_release_private_key. by David Benjamin · 4 years ago
  40. b571e77 Add experimental handshake hints API. by David Benjamin · 4 years ago
  41. 12a3e7e Check for invalid ALPN inputs in SSL_(CTX_)set_alpn_protos. by David Benjamin · 4 years ago
  42. 00e434d Add ECH server (draft-ietf-tls-esni-09). by Daniel McArdle · 4 years, 1 month ago
  43. a1d1a67 Remove some remnants of TLS 1.3 downgrade carveouts. by David Benjamin · 4 years, 1 month ago
  44. 3d8b8c3 Add support for the new QUIC TLS extension codepoint by David Schinazi · 4 years, 3 months ago
  45. ca058c0 Revert "Add support for the new QUIC TLS extension codepoint" by Adam Langley · 4 years, 4 months ago
  46. 7ba96a6 Add support for the new QUIC TLS extension codepoint by David Schinazi · 4 years, 4 months ago
  47. 1920c6f Implement GREASE for ECH (draft-ietf-tls-esni-08). by Dan McArdle · 5 years ago
  48. 0a6bfa3 Always check the TLS 1.3 downgrade signal. by David Benjamin · 4 years, 4 months ago
  49. fa9796e Add SSL_early_data_reason_string. by David Benjamin · 4 years, 5 months ago
  50. 51607f1 Implement draft-vvv-tls-alps-01. by Steven Valdez · 4 years, 8 months ago
  51. dcd6e44 Support delegated credentials verison 06 by Watson Ladd · 4 years, 8 months ago
  52. 53a17f5 Add a |SSL_process_tls13_new_session_ticket|. by Adam Langley · 4 years, 10 months ago
  53. 7c52299 Restrict when 0-RTT will be accepted in QUIC. by Nick Harper · 5 years ago
  54. 1766935 Remove SSL_CTX_set_ed25519_enabled. by David Benjamin · 5 years ago
  55. f249840 Remove SSL_CTX_set_rsa_pss_rsae_certs_enabled. by David Benjamin · 5 years ago
  56. e0d95ad Remove post-quantum experiment signal extension. by David Benjamin · 5 years ago
  57. b11902a HelloRetryRequest getter by Kris Kwiatkowski · 6 years ago
  58. 3ab3b12 Add compatibility functions for sigalgs by Shelley Vohr · 5 years ago
  59. 3ba9586 Rename a number of BUF_* functions to OPENSSL_*. by David Benjamin · 5 years ago
  60. 8fe1584 Switch cert_compression_algs to GrowableArray. by David Benjamin · 5 years ago
  61. 0e7dbd5 Add an option for explicit renegotiations. by David Benjamin · 6 years ago
  62. bd2a8d6 Add a function to convert SSL_ERROR_* values to strings. by David Benjamin · 6 years ago
  63. f492830 Fold SSL_want constants into SSL_get_error constants. by David Benjamin · 6 years ago
  64. b244e3a Switch another low-level function to spans. by David Benjamin · 6 years ago
  65. 9f5c419 Move the PQ-experiment signal to SSL_CTX. by Adam Langley · 6 years ago
  66. a86c698 Add post-quantum experiment signal extension. by Adam Langley · 6 years ago
  67. b29e1e1 Save and restore errors when ignoring ssl_send_alert result. by David Benjamin · 6 years ago
  68. 6477012 Add SSL_get_early_data_reason. by David Benjamin · 6 years ago
  69. c9827e0 Output a ClientHello during handoff. by Adam Langley · 6 years ago
  70. f9c8d30 Remove SSL_get_structure_sizes. by David Benjamin · 6 years ago
  71. d7266ec Enforce key usage for RSA keys in TLS 1.2. by Jesse Selover · 6 years ago
  72. 823effe Revert "Fix protos_len size in SSL_set_alpn_protos and SSL_CTX_set_alpn_protos" by Adam Langley · 6 years ago
  73. 3cbb029 Allow configuring QUIC method per-connection by Alessandro Ghedini · 6 years ago
  74. b84674b Delete the variants/draft code. by Steven Valdez · 7 years ago
  75. 35771ff Fix protos_len size in SSL_set_alpn_protos and SSL_CTX_set_alpn_protos by Raul Tambre · 6 years ago
  76. ba9ad66 Add |SSL_key_update|. by Adam Langley · 6 years ago
  77. d6e1f23 Add |SSL_export_traffic_secrets|. by Adam Langley · 6 years ago
  78. 6965d25 Work around a JDK 11 TLS 1.3 bug. by David Benjamin · 6 years ago
  79. e6eef1c Add post-handshake support for the QUIC API. by Steven Valdez · 6 years ago
  80. 7d10ab5 Abstract hs_buf a little. by David Benjamin · 6 years ago
  81. 384d0ea Make SSL_get_current_cipher valid during QUIC callbacks. by Steven Valdez · 6 years ago
  82. c8e0f90 Add an interface for QUIC integration. by Steven Valdez · 7 years ago
  83. c0c9001 Implement SSL_get_tlsext_status_type by Jeremy Apthorp · 6 years ago
  84. 2d98d49 Add a per-SSL TLS 1.3 downgrade enforcement option and improve tests. by David Benjamin · 6 years ago
  85. 8c7c635 Support symbol prefixes by Joshua Liebow-Feeser · 7 years ago
  86. 1c2779e Don't let a NULL mean the initial SSL_CTX in SSL_set_SSL_CTX. by Adam Langley · 7 years ago
  87. f1af129 Implement TLS 1.3 anti-downgrade signal. by Steven Valdez · 7 years ago
  88. ae32239 Remove dummy PQ padding extension. by Adam Langley · 7 years ago
  89. 1c337e5 Option to reverify certs on resumption. by Jesse Selover · 7 years ago
  90. 826ce15 Support OpenSSL APIs SSL[_CTX]_set1_sigalgs[_list]. by Adam Langley · 7 years ago
  91. 8d1203d Fix some malloc error handling. by David Benjamin · 7 years ago
  92. 861abcc Switch a bunch of ints to bools. by David Benjamin · 7 years ago
  93. 35b4a12 Namespace CertCompressionAlg and use more scopers. by David Benjamin · 7 years ago
  94. bc118ee6 Add SSL_get0_peer_verify_algorithms. by David Benjamin · 7 years ago
  95. 0a3e07a Remove custom extensions support. by David Benjamin · 7 years ago
  96. 4685376 Remove other unnecessary tlsext_ prefixes. by David Benjamin · 7 years ago
  97. 7bb0fbf C++ the ticket keys a bit. by David Benjamin · 7 years ago
  98. 0ce090a A bunch more scopers. by David Benjamin · 7 years ago
  99. 50596f8 Switch some easy SSL fields to UniquePtr. by David Benjamin · 7 years ago
  100. c1389f2 Give SSL and SSL_CTX dummy constructor and destructor. by David Benjamin · 7 years ago