Google Git
Sign in
boringssl / boringssl.git / 7de9498a886ab28fe4a6023c33cf98524c1090ff / crypto / err
  1. 98e848a Add XOF compilation compatibility flags by Shelley Vohr · 5 years ago
  2. 9806ae0 Check the second ClientHello's PSK binder on resumption. by David Benjamin · 6 years ago
  3. 2c65707 Add EVP_PKEY support for X25519. by David Benjamin · 6 years ago
  4. 8728af4 Reject obviously invalid DSA parameters during signing. by David Benjamin · 6 years ago
  5. d7266ec Enforce key usage for RSA keys in TLS 1.2. by Jesse Selover · 6 years ago
  6. 6c1b376 Implement server support for delegated credentials. by Christopher Patton · 7 years ago
  7. 8285ccd Fix SSL_R_TOO_MUCH_READ_EARLY_DATA. by David Benjamin · 6 years ago
  8. 5ecfb10 Modernize OPENSSL_COMPILE_ASSERT, part 2. by David Benjamin · 6 years ago
  9. c8e0f90 Add an interface for QUIC integration. by Steven Valdez · 7 years ago
  10. 371305f Push an error on sigalg mismatch in X509_verify. by David Benjamin · 6 years ago
  11. 8c7c635 Support symbol prefixes by Joshua Liebow-Feeser · 7 years ago
  12. 681ff27 Flatten most of the crypto target. by David Benjamin · 7 years ago
  13. 1c2532f Fix error strings for SSL_R_TLS13_DOWNGRADE. by David Benjamin · 7 years ago
  14. 826ce15 Support OpenSSL APIs SSL[_CTX]_set1_sigalgs[_list]. by Adam Langley · 7 years ago
  15. 4732c54 Add ECDH_compute_key_fips inside the module. by Adam Langley · 7 years ago
  16. 0080d83 Implement the client side of certificate compression. by Adam Langley · 7 years ago
  17. 5267ef7 Reject unexpected application data in bidirectional shutdown. by David Benjamin · 7 years ago
  18. caf8ddd Add SSL_SESSION_set1_id. by David Benjamin · 7 years ago
  19. d12f2ba Tweak RSA errors for compatibility. by David Benjamin · 7 years ago
  20. 103ed08 Implement legacy OCSP APIs for libssl. by David Benjamin · 7 years ago
  21. 2e67153 Add PKCS12_create. by David Benjamin · 7 years ago
  22. bc2562e Treat PKCS#12 passwords as UTF-8. by David Benjamin · 7 years ago
  23. ae153bb Use new encoding functions in ASN1_mbstring_ncopy. by David Benjamin · 7 years ago
  24. 5d626b2 Add some more compatibility functions. by David Benjamin · 7 years ago
  25. ed188fd Enforce supported_versions in the second ServerHello. by David Benjamin · 7 years ago
  26. 3c37d0a Reland "Fix bssl client/server's error-handling." by David Benjamin · 7 years ago
  27. 0cdbc87 Revert "Fix bssl client/server's error-handling." by Steven Valdez · 7 years ago
  28. e7ca8a5 Fix bssl client/server's error-handling. by David Benjamin · 7 years ago
  29. c1c6eeb Check d is mostly-reduced in RSA_check_key. by David Benjamin · 7 years ago
  30. 2a19a17 Limit ASN.1 constructed types recursive definition depth by David Benjamin · 7 years ago
  31. fa65113 Push an error if custom private keys fail. by David Benjamin · 7 years ago
  32. 0ab3f0c Notice earlier if a server echoes the TLS 1.3 compatibility session ID. by David Benjamin · 7 years ago
  33. 36fcc4c Implement Token Binding by Nick Harper · 7 years ago
  34. f88242d SSL_export_keying_material should work in half-RTT. by David Benjamin · 7 years ago
  35. 650d8c3 Implement TLS 1.3 early exporters. by David Benjamin · 7 years ago
  36. 47b8f00 Reimplement OBJ_txt2obj and add a lower-level function. by David Benjamin · 7 years ago
  37. a838f9d Make ECDSA signing 10% faster and plug some timing leaks. by David Benjamin · 7 years ago
  38. e7c95d9 Run TLS 1.3 tests at all variants and fix bugs. by David Benjamin · 7 years ago
  39. b25a899 Add the ability to save and restore the error state. by David Benjamin · 7 years ago
  40. a65c252 Further simplify error queue flags. by David Benjamin · 7 years ago
  41. e1c3dad Error data is always a NUL-terminated malloced string. by David Benjamin · 7 years ago
  42. 808f832 Run the comment converter on libcrypto. by David Benjamin · 8 years ago
  43. f4ecc84 Prevent both early data and custom extensions from being accepted. by Steven Valdez · 8 years ago
  44. 5aaaa98 Detect WatchGuard's TLS 1.3 interference failure mode. by David Benjamin · 8 years ago
  45. b529253 Implement scrypt from RFC 7914. by David Benjamin · 8 years ago
  46. 2f3404b Enforce incrementing counter for TLS 1.2 AES-GCM. by Steven Valdez · 8 years ago
  47. 8ebc9ea Update BN_enhanced_miller_rabin_primality_test to enforce preconditions and accept BN_prime_checks. by Steven Valdez · 8 years ago
  48. 6fdea2a Move PKCS#7 functions into their own directory. by David Benjamin · 8 years ago
  49. de254b4 Enforce max_early_data_size on the server. by Alessandro Ghedini · 8 years ago
  50. b15143f Fix check_fips for public keys and synchronize the EC and RSA versions. by Steven Valdez · 8 years ago
  51. d0b9882 Add RSA_check_fips to support public key validation checks. by Steven Valdez · 8 years ago
  52. 3cfeb95 Disable SSLv3 by default. by David Benjamin · 8 years ago
  53. d69d94e Teach crypto/x509 how to verify an Ed25519 signature. by David Benjamin · 8 years ago
  54. 417830d Support EVP_PKEY_{sign,verify}_message with Ed25519. by David Benjamin · 8 years ago
  55. 05bb1c5 Implement draft-ietf-curdle-pkix-04's serialization. by David Benjamin · 8 years ago
  56. 2a07072 Prevent Channel ID and Custom Extensions on 0-RTT. by Steven Valdez · 8 years ago
  57. 3cb047e Decouple PKCS#12 hash lookup from the OID table. by David Benjamin · 8 years ago
  58. 2d85062 Add Data-less Zero-RTT support. by Steven Valdez · 8 years ago
  59. cfb9d14 Update pkcs8 error data. by David Benjamin · 8 years ago
  60. 2d05568 Fix out-of-memory condition in conf. by David Benjamin · 8 years ago
  61. 4c341d0 Support asynchronous ticket decryption with TLS 1.0–1.2. by Adam Langley · 8 years ago
  62. 6ad20dc Move error-on-empty-cipherlist into ssl_create_cipher_list(). by Matthew Braithwaite · 8 years ago
  63. d04ca95 Add |SSL[_CTX]_set_chain_and_key|. by Adam Langley · 8 years ago
  64. a58baaf Forbid the server certificate from changing on renego. by David Benjamin · 8 years ago
  65. bc6ef7a Convert err_test to GTest. by David Benjamin · 8 years ago
  66. 17cf2cb Work around language and compiler bug in memcpy, etc. by David Benjamin · 8 years ago
  67. d515722 Don't depend on the X509 code for getting public keys. by Adam Langley · 8 years ago
  68. aedf303 Parse the entire PSK extension. by David Benjamin · 8 years ago
  69. a4ee74d Skipping early data on 0RTT rejection. by Steven Valdez · 8 years ago
  70. 9b885c5 Don't allow invalid SCT lists to be set. by Adam Langley · 8 years ago
  71. e1cc35e Tolerate cipher changes on TLS 1.3 resumption as a client. by David Benjamin · 8 years ago
  72. a833c35 Update to TLS 1.3 draft 18. by Steven Valdez · 8 years ago
  73. 1db9e1b Add the certificate_required alert. by David Benjamin · 8 years ago
  74. 803c77a Update crypto negotation to draft 15. by Steven Valdez · 9 years ago
  75. c8b6b4f Only predict X25519 in TLS 1.3. by David Benjamin · 9 years ago
  76. 7e1f984 Fix some bugs in TLS 1.3 server key_share code. by David Benjamin · 8 years ago
  77. 163c956 Forbid EMS from changing during renegotation. by David Benjamin · 9 years ago
  78. 311c257 Declare SSL_R_BLOCK_CIPHER_PAD_IS_WRONG and SSL_R_NO_CIPHERS_SPECIFIED. by David Benjamin · 9 years ago
  79. 32635b8 Add limit for consecutive KeyUpdate messages. by Steven Valdez · 9 years ago
  80. 3e51757d Enforce the server ALPN protocol was advertised. by David Benjamin · 9 years ago
  81. 143e8b3 Add TLS 1.3 1-RTT. by Steven Valdez · 9 years ago
  82. 6167281 Check for buffered handshake messages on cipher change in DTLS. by David Benjamin · 9 years ago
  83. 1f61f0d Implement TLS 1.3's downgrade signal. by David Benjamin · 9 years ago
  84. ea9a0d5 Refine SHA-1 default in signature algorithm negotiation. by David Benjamin · 9 years ago
  85. 2b8415e Move the Digest/Sign split for SignatureAlgorithms to a lower level. by Steven Valdez · 9 years ago
  86. c9ae27c Build up TLS 1.3 record-layer tests. by David Benjamin · 9 years ago
  87. 8cf79af Always use Fermat's Little Theorem in ecdsa_sign_setup. by David Benjamin · 9 years ago
  88. a353cdb Wrap MSVC-only warning pragmas in a macro. by David Benjamin · 9 years ago
  89. 29270de Split unlock functions into read/write variants. by David Benjamin · 9 years ago
  90. 3473315 Reimplement PKCS #3 DH parameter parsing with crypto/bytestring. by David Benjamin · 9 years ago
  91. 52a3bf2 Add checks to X509_NAME_oneline() by David Benjamin · 9 years ago
  92. 56703d9 Make err_data_generator.go silent by default. by David Benjamin · 9 years ago
  93. a2f2bc3 Align with upstream's error strings, take two. by David Benjamin · 9 years ago
  94. fb8e678 Match upstream's error codes for the old sigalg code. by David Benjamin · 9 years ago
  95. 63d9246 Reset crypto/evp error codes. by David Benjamin · 9 years ago
  96. 17727c6 Move all signature algorithm code to crypto/x509. by David Benjamin · 9 years ago
  97. b9824e2 Handle SSL_shutdown while in init more appropriately by Steven Valdez · 9 years ago
  98. 68772b3 Implement new SPKI parsers. by David Benjamin · 9 years ago
  99. fda22a7 Reimplement DSA parsing logic with crypto/asn1. by David Benjamin · 9 years ago
  100. 2f6410b Rewrite ECPrivateKey serialization. by David Benjamin · 9 years ago