- c5e9b4b Add threading documentation to DH and DSA by David Benjamin · 12 months ago
- 8ede951 Make EVP_PKEY_type into the identity function by David Benjamin · 1 year ago
- 044fbc86 Move EVP_PKEY setters to their corresponding type-specific files by David Benjamin · 1 year ago
- 6609736 Avoid EVP_PKEY_set_type in EVP_PKEY_new_raw_*_key by David Benjamin · 1 year ago
- fea4c97 Remove some unnecessary dependencies on EVP_PKEY_set_type by David Benjamin · 1 year ago
- b85a0d1 Gate -Wframe-larger-than on Clang 13 by David Benjamin · 1 year ago
- c38abd0 Make ninja run_tests output less confusing by David Benjamin · 1 year ago
- ec45e10 X509_ALGOR_set_md is a mess, document it by David Benjamin · 1 year ago
- 440c513 Filter out DW.ref.__gxx_personality_v0 in read_symbols.go by David Benjamin · 1 year ago
- f57a11a Remove unused app_data from EVP_CIPHER by Theo Buehler · 1 year ago
- fae0964 Re-remove unnecesary stat calls from by_dir.c by Bob Beck · 1 year ago
- 356d378 Add a regression test for error handling and hash_dir by David Benjamin · 1 year ago
- 3ac0939 Fix spelling of Identifier by Bob Beck · 1 year ago
- 3bdf9af Revert "Remove unnecessary stat calls from by_dir.c" by David Benjamin · 1 year ago
- 4fa4804 Don't dereference hs->credential on TLS 1.2 PSK ciphers by David Benjamin · 1 year ago
- dbad745 Add ERR_lib_symbol_name and ERR_reason_symbol_name by David Benjamin · 1 year, 1 month ago
- 5ee4e95 Add BIO_FP_TEXT by David Benjamin · 1 year ago
- a792f88 Fix a number of cases overwriting certificates, keys, etc. with SSL_CREDENTIAL by David Benjamin · 1 year ago
- ddb002f Set -Wframe-larger-than=25344 for a typical cmake clang compile. by Bob Beck · 1 year ago
- 29bb1a7 Make crypto_test build with -Wframe-larger-than=25344 by David Benjamin · 1 year ago
- a56407d Revert "Add a Dilithium implementation." by Bob Beck · 1 year ago
- cf4f615 Fix sha1 dynamic dispatch issues. by Ilya Tokar · 1 year ago
- 5a3faaa Remove an unused runner/shim flag in SSL tests by David Benjamin · 1 year ago
- 05c285d Only negotiate ECDHE curves and sigalgs once by David Benjamin · 1 year ago
- 91a3f26 Add an SSL_CREDENTIAL API for ECDSA/RSA and delegated credentials by David Benjamin · 1 year, 1 month ago
- 1a118bb Rename CRYPTO_get_ex_new_index to CRYPTO_get_ex_new_index_ex by David Benjamin · 1 year ago
- 860db9e Remove unused group_id parameter in TLS 1.3 cipher suite selection by David Benjamin · 1 year, 1 month ago
- 9280f15 Check ECDSA curves in TLS 1.2 servers by David Benjamin · 1 year, 1 month ago
- e202e51 Inline CBS_init, CBS_data, and CBS_len by David Benjamin · 1 year, 1 month ago
- 60c2867 Check client certificate types in TLS <= 1.2 by David Benjamin · 1 year, 1 month ago
- 69eec38 runner: Add a test for hint mismatch due to public key by David Benjamin · 1 year, 1 month ago
- 9b34a32 Add a Dilithium implementation. by Guillaume Endignoux · 1 year, 5 months ago
- 4e8a847 Tidy up Rust HPKE binding. by Adam Langley · 1 year, 1 month ago
- 2fb5cdb Move spx from internal to include/openssl/experimental by Bob Beck · 1 year, 1 month ago
- 6651948 runner: Configure all relevant fields from the Credential type by David Benjamin · 1 year, 1 month ago
- f191838 runner: Rename CertificateChain to Credential by David Benjamin · 1 year, 1 month ago
- fc1f521 Align CRYPTO_get_ex_new_index with the public API's calling convention by David Benjamin · 1 year, 1 month ago
- f4ac688 Make bssl_shim's setup logic infallible by David Benjamin · 1 year, 1 month ago
- ad91495 Slightly simplify ssl_x509.cc by David Benjamin · 1 year, 1 month ago
- c9a9d8d Forbid RSA delegated credentials by David Benjamin · 1 year, 1 month ago
- efad2bf Fix delegated credential signature algorithm handling by David Benjamin · 1 year, 1 month ago
- 9f376b0 Make DelegatedCredentials-KeyMismatch test less confusing by David Benjamin · 1 year, 1 month ago
- 8037383 Use slices.Contains in ssl/test/runner by David Benjamin · 1 year, 1 month ago
- 88a537f Fold ssl_add_cert_chain into its caller by David Benjamin · 1 year, 1 month ago
- e3af771 runner: Remove the ability to configure multiple certificates by David Benjamin · 1 year, 1 month ago
- 1e8461c runner: Use go:embed by David Benjamin · 1 year, 1 month ago
- df3b58e Generate certs on the fly in runner, pass trusted cert to shim by Roland Shoemaker · 1 year, 7 months ago
- a9a3ca4 Make pki_sources available to Soong by Chidera Olibie · 1 year, 1 month ago
- 5bed5b9 Finish documenting x509.h by David Benjamin · 1 year, 1 month ago
- 5733ada Add safety coments to bssl-sys by David Benjamin · 1 year, 1 month ago
- 89134da Test X509_verify_cert with CAs that share a name by David Benjamin · 1 year, 1 month ago
- db614a5 Document the remaining struct types in x509.h by David Benjamin · 1 year, 1 month ago
- 4066ebc Expand and document the remaining DECLARE_ASN1_* macros by David Benjamin · 1 year, 1 month ago
- 7f151ca Unexport i2d, d2i, and ASN1_ITEM for X.509 interior types by David Benjamin · 1 year, 1 month ago
- ae1c1a4 Document filesystem-based X509_STORE APIs by David Benjamin · 1 year, 3 months ago
- 9d7535f Document APIs relating to built-in and custom extensions by David Benjamin · 1 year, 3 months ago
- a6e2be4 Add tests for what happens when no certificate is configured by David Benjamin · 1 year, 1 month ago
- ec2a08d Introduce a test helper for asserting on the error by David Benjamin · 1 year, 1 month ago
- 85c5d96 Make an include/openssl/experimental. Move kyber to it for now. by Bob Beck · 1 year, 1 month ago
- 5d88014 Deprecate and simplify SSL_CTX_check_private_key by David Benjamin · 1 year, 1 month ago
- bca5875 Use a more fine-grained lock in by_dir.c by David Benjamin · 1 year, 1 month ago
- d4faa8d Remove unnecessary stat calls from by_dir.c by David Benjamin · 1 year, 1 month ago
- 6db6604 Use std::copy instead of OPENSSL_memcpy for the internal bssl::Array::CopyFrom by David Benjamin · 1 year, 1 month ago
- cadebfd Consistently open files in binary mode on Windows by David Benjamin · 1 year, 1 month ago
- ab4037e Add some tests for X509_LOOKUP_hash_dir by David Benjamin · 1 year, 1 month ago
- 0ff377a Add some utilities for testing temporary files by David Benjamin · 1 year, 1 month ago
- c06c4d5 Remove redundant piece of DC state by David Benjamin · 1 year, 1 month ago
- 4fe29eb Test an unusual split between context and connection configuration by David Benjamin · 1 year, 1 month ago
- 9a4e109 Remove redundant bssl_sys import by Zequan Wu · 1 year, 1 month ago
- 281053e Remove some impossible null checks by David Benjamin · 1 year, 1 month ago
- 1bd6e92 Remove some indirection in SSL_certs_clear by David Benjamin · 1 year, 1 month ago
- fbf10f0 Make an internal RefCounted base class for libssl by David Benjamin · 1 year, 1 month ago
- e447127 Const-correct the 'kstr' parameter of PEM functions by David Benjamin · 1 year, 3 months ago
- 3250cf2 Implement Hybrid Public Key Encryption in Rust. by Cindy Lin · 1 year, 1 month ago
- 7101b14 Use BIO_TYPE_* constants for flags by David Benjamin · 1 year, 1 month ago
- 469118c Move capability checks in sha256-586.pl to C by David Benjamin · 1 year, 2 months ago
- 90f0f05 Integrate TLS 1.2 sigalg and cipher suite selection by David Benjamin · 1 year, 1 month ago
- 3f119b7 Remove old "check for P4" in sha256-586.pl by David Benjamin · 1 year, 2 months ago
- e273d1d Document some miscellaneous x509.h functions by David Benjamin · 1 year, 2 months ago
- 1168884 Move capability checks in sha1-586.pl to C by David Benjamin · 1 year, 2 months ago
- 70054a3 Write down the bounds for the sha*_block_data_order functions by David Benjamin · 1 year, 2 months ago
- 6d0caa1 Move capability checks in chacha-x86.pl to C by David Benjamin · 1 year, 2 months ago
- 20c93ab Remove OPENSSL_IA32_SSE2 checks in x86 perlasm by David Benjamin · 1 year, 2 months ago
- 48b0edf Update delegated credentials to the final RFC by David Benjamin · 1 year, 1 month ago
- da3b372 Don't report libpki headers as part of libcrypto by David Benjamin · 1 year, 1 month ago
- 99e8c6e Add a no-op OPENSSL_INIT_NO_ATEXIT by David Benjamin · 1 year, 1 month ago
- 23824fa bssl-crypto: remove unused code. by Adam Langley · 1 year, 1 month ago
- ea003bd Add x509.h to doc.config by David Benjamin · 1 year, 2 months ago
- 46ff4f7 Unexport DIST_POINT_set_dpname by David Benjamin · 1 year, 3 months ago
- c528061 Allow a C++ runtime dependency in libssl by David Benjamin · 1 year, 1 month ago
- 0568c2c Rewrite the warning about X509_AUX by David Benjamin · 1 year, 3 months ago
- 2a5db68 Remove pki/tag.h by David Benjamin · 1 year, 1 month ago
- d7f5e18 Work around bindgen bug around constants by David Benjamin · 1 year, 1 month ago
- 9c20a89 Guard C++ headers. by Adam Langley · 1 year, 1 month ago
- 22c5477 Include verify_unittest files in PKI_TEST_DATA by Adam Langley · 1 year, 1 month ago
- cb47fdc Switch to bindgen's static inline support by David Benjamin · 1 year, 1 month ago
- a028a23 Document X509_V_FLAG_* by David Benjamin · 1 year, 3 months ago
- 8e6a26d Merge X509_PURPOSE/X509_TRUST IDs and indices by David Benjamin · 1 year, 3 months ago
- 1b08502 Unexport most of X509_TRUST and X509_PURPOSE and simplify by David Benjamin · 1 year, 3 months ago
- 5a1a5fb Remove X509_TRUST_DEFAULT by David Benjamin · 1 year, 3 months ago