Google Git
Sign in
boringssl / boringssl.git / de0d05a0a8dc052900e525e4ddba78895e27f0fa / ssl / tls13_server.cc
  1. 2f6409e Support WPA 3.1 "enterprise" mode. by Adam Langley · 2 years ago
  2. 8cacbd9 Add functions to allow the mocking of AES hw support for testing. by Bob Beck · 2 years ago
  3. 08b1f38 Use KEM terminology in TLS ECDHE and key_share abstractions by David Benjamin · 2 years, 1 month ago
  4. 4a6c8fd Support handshake hints for TLS 1.2 full handshakes. by David Benjamin · 2 years, 8 months ago
  5. 451ea3c Add SSL_[CTX_]_set_compliance_policy. by Adam Langley · 2 years, 10 months ago
  6. 3f180b8 Implement SSL_CTX_set_num_tickets. by David Benjamin · 2 years, 11 months ago
  7. 44425dd Fold ssl_decode_client_hello_inner into ssl_client_hello_decrypt. by David Benjamin · 3 years, 2 months ago
  8. 18b6836 Update to draft-ietf-tls-esni-13. by David Benjamin · 3 years, 9 months ago
  9. d55f450 Avoid re-hashing the transcript multiple times. by David Benjamin · 3 years, 8 months ago
  10. a75027b Make ssl_parse_extensions a little easier to use. by David Benjamin · 3 years, 8 months ago
  11. 8648c53 Refer to RFCs consistently. by David Benjamin · 3 years, 7 months ago
  12. 006f20a Add Span::first() and Span::last(). by David Benjamin · 3 years, 9 months ago
  13. ba423c9 Implement ClientHelloOuter handshakes. by David Benjamin · 3 years, 10 months ago
  14. 83a4993 Add most of an ECH client implementation. by David Benjamin · 3 years, 10 months ago
  15. 3a036c7 Add SSL_ech_accepted API and ech_is_required alerts. by David Benjamin · 3 years, 10 months ago
  16. 8acec00 Manage Channel ID handshake state better. by David Benjamin · 3 years, 10 months ago
  17. a1d3bfb Cite an RFC over 9000 (draft-ietf-quic-tls is now RFC 9001). by David Benjamin · 3 years, 10 months ago
  18. 3675eb3 GREASE is now RFC 8701. by David Benjamin · 3 years, 10 months ago
  19. d89ec68 Remove draft tokbind implementation. by David Benjamin · 3 years, 10 months ago
  20. 962b375 Move session ID assignment out of ssl_get_new_session. by David Benjamin · 3 years, 11 months ago
  21. 070a6c3 Export the HPKE implementation. by David Benjamin · 3 years, 11 months ago
  22. 9b2cdb7 Add SSL_can_release_private_key. by David Benjamin · 4 years ago
  23. f39c81d Introduce EVP_HPKE_{AEAD,KDF} types. by David Benjamin · 3 years, 11 months ago
  24. 94a63a5 Implement ECH draft 10 and update HPKE to draft 08. by Steven Valdez · 4 years ago
  25. b571e77 Add experimental handshake hints API. by David Benjamin · 4 years ago
  26. e4c1917 Don't duplicate ServerHello construction code. by David Benjamin · 4 years ago
  27. 3b8c5ec Rearrange key share and early data logic. by David Benjamin · 4 years ago
  28. e2b7bb7 Only skip early data with HRR when offered. by David Benjamin · 4 years ago
  29. 00e434d Add ECH server (draft-ietf-tls-esni-09). by Daniel McArdle · 4 years, 1 month ago
  30. 3af6226 Enforce that pre_shared_key must come with psk_key_exchange_modes. by David Benjamin · 4 years ago
  31. 71ed9d7 Fix ALPS state machine in QUIC servers. by David Benjamin · 4 years, 3 months ago
  32. c295935 Send ECH acceptance signal from backend server. by Dan McArdle · 4 years, 5 months ago
  33. 5351c8b Rename the master_key field in SSL_SESSION to secret. by David Benjamin · 4 years, 4 months ago
  34. 51607f1 Implement draft-vvv-tls-alps-01. by Steven Valdez · 4 years, 8 months ago
  35. 5e08695 Fix handling of quic_early_data_context. by Nick Harper · 4 years, 6 months ago
  36. 3743aaf Add SSL_CIPHER_get_protocol_id. by David Benjamin · 4 years, 6 months ago
  37. cac9392 Disallow TLS 1.3 compatibility mode in QUIC. by Nick Harper · 5 years ago
  38. 8519432 Modify how QUIC 0-RTT go/no-go decision is made. by Nick Harper · 4 years, 10 months ago
  39. 7c52299 Restrict when 0-RTT will be accepted in QUIC. by Nick Harper · 5 years ago
  40. 1e85905 Revise QUIC encryption secret APIs. by David Benjamin · 5 years ago
  41. 754d4c9 Fix client handling of 0-RTT rejects with cipher mismatch. by David Benjamin · 5 years ago
  42. 0c30649 Clean up TLS 1.3 handback logic. by David Benjamin · 5 years ago
  43. f9cc26f Require handshake flights end at record boundaries. by David Benjamin · 5 years ago
  44. ebad508 Switch verify sigalg pref functions to SSL_HANDSHAKE. by David Benjamin · 5 years ago
  45. f3c98ce Make TLS 1.3 split handshakes work with early data. by Matthew Braithwaite · 5 years ago
  46. 093a823 Split half-RTT tickets out into a separate TLS 1.3 state. by Matthew Braithwaite · 5 years ago
  47. f249840 Remove SSL_CTX_set_rsa_pss_rsae_certs_enabled. by David Benjamin · 5 years ago
  48. cc0c286 TLS 1.3 split handshake initial support. by Matthew Braithwaite · 5 years ago
  49. 08e1fe0 Move TLS 1.3 state machine constants to internal.h. by Matthew Braithwaite · 5 years ago
  50. fd32089 Defer releasing early secrets to QUIC servers. by David Benjamin · 5 years ago
  51. b11902a HelloRetryRequest getter by Kris Kwiatkowski · 6 years ago
  52. a93beba Rename the last remnants of the early_data_info extension. by David Benjamin · 5 years ago
  53. 49de1fc Fixed quic_method lookup in TLS 1.3 server side handshake. by Goutam Tamvada · 5 years ago
  54. d634357 Add initial support for 0-RTT with QUIC. by David Benjamin · 6 years ago
  55. f350351 Align 0-RTT and resumption state machines slightly by David Benjamin · 6 years ago
  56. e530ea3 Use spans for the various TLS 1.3 secrets. by David Benjamin · 6 years ago
  57. 79b8b3a Switch tls13_enc.cc to spans. by David Benjamin · 6 years ago
  58. 9806ae0 Check the second ClientHello's PSK binder on resumption. by David Benjamin · 6 years ago
  59. 8c98bac Remove stale TODO. by David Benjamin · 6 years ago
  60. d6f9c35 Factor out TLS cipher selection to ssl_choose_tls_cipher. by Steven Valdez · 6 years ago
  61. 78c88c9 Integrate SIKE with TLS key exchange. by Kris Kwiatkowski · 6 years ago
  62. 6433a91 Enforce the ticket_age parameter for 0-RTT. by David Benjamin · 6 years ago
  63. 6477012 Add SSL_get_early_data_reason. by David Benjamin · 6 years ago
  64. 777a239 Hold off flushing NewSessionTicket until write. by Steven Valdez · 6 years ago
  65. 4bfab5d Make 256-bit ciphers a preference for CECPQ2, not a requirement. by Adam Langley · 6 years ago
  66. 9cde848 Use handshake parameters to decide if cert/key are available by Christopher Patton · 7 years ago
  67. 2cc6f44 Use same HKDF label as TLS 1.3 for QUIC as per draft-ietf-quic-tls-17 by Alessandro Ghedini · 6 years ago
  68. 43cc9c6 Do not allow AES_128_GCM_SHA256 with CECPQ2. by David Benjamin · 6 years ago
  69. ce45588 Speculatively remove __STDC_*_MACROS. by David Benjamin · 6 years ago
  70. c8e0f90 Add an interface for QUIC integration. by Steven Valdez · 7 years ago
  71. 8525ff3 Another batch of bools. by David Benjamin · 7 years ago
  72. 8c7c635 Support symbol prefixes by Joshua Liebow-Feeser · 7 years ago
  73. 12f5878 Some more bools. by David Benjamin · 7 years ago
  74. a130ce0 Update TLS 1.3 citations for the final RFC. by David Benjamin · 7 years ago
  75. 2865567 Use Span/Array for ticket decryption. by David Benjamin · 7 years ago
  76. 0cbb1af Don't mint TLS 1.3 tickets if SSL_OP_NO_TICKETS is set. by David Benjamin · 7 years ago
  77. 0a3e07a Remove custom extensions support. by David Benjamin · 7 years ago
  78. 4685376 Remove other unnecessary tlsext_ prefixes. by David Benjamin · 7 years ago
  79. bfdd1a9 Give SSL_SESSION a destructor. by David Benjamin · 7 years ago
  80. a3a71e9 Flip SSL_SESSION fields to bool. by David Benjamin · 7 years ago
  81. 98472cb Consistently use session_ctx for session caching. by David Benjamin · 7 years ago
  82. b7bc80a SSL_CONFIG: new struct for sheddable handshake configuration. by Matthew Braithwaite · 7 years ago
  83. e28552d Add an API to disable RSA-PSS for certificates. by David Benjamin · 7 years ago
  84. 9f0e7cb Move TB state to ssl->s3. by David Benjamin · 7 years ago
  85. 7e5dd25 Remove draft22 and experiment2. by Steven Valdez · 7 years ago
  86. a7bc944 Don't use the client_random entropy for GREASE. by David Benjamin · 7 years ago
  87. 36fcc4c Implement Token Binding by Nick Harper · 8 years ago
  88. 74666da Update key share extension number for draft23. by Steven Valdez · 7 years ago
  89. 02e6256 Move early_data_accepted to ssl->s3. by David Benjamin · 7 years ago
  90. 64cc121 Remove deprecated TLS 1.3 variants. by Steven Valdez · 7 years ago
  91. 964b237 Implement PR 1091 (TLS 1.3 draft '22'). by Steven Valdez · 7 years ago
  92. cd8470f Adding support for draft 21 as a TLS 1.3 variant. by Steven Valdez · 7 years ago
  93. 8e7bbba Use more scopers. by David Benjamin · 7 years ago
  94. 75a1f23 Have a bit more fun with Span. by David Benjamin · 7 years ago
  95. d1e3ce1 Rename ssl3_send_alert and ssl3_protocol_version. by David Benjamin · 7 years ago
  96. 666d16e Go through SSL_PROTOCOL_METHOD in the handshake. by David Benjamin · 7 years ago
  97. 7e58c5e Switch more things to bools. by David Benjamin · 7 years ago
  98. be165a2 Fix missing TicketMaxEarlyDataInfo in first session ticket. by Steven Valdez · 7 years ago
  99. 499742c Introduce bssl::Array<T> and use it in SSLKeyShare. by David Benjamin · 8 years ago
  100. c7d4d21 Add experiment without client CCS and fix session ID bug. by Steven Valdez · 8 years ago