Google Git
Sign in
boringssl / boringssl.git / dfef2081f39650e31e5efe60d5193387bfb3c1fe / ssl / ssl_lib.c
  1. 93731d9 Remove old SSL min/max version functions. by David Benjamin · 8 years ago
  2. 71c21b4 Add SSL_CTX_set_verify_algorithm_prefs. by David Benjamin · 8 years ago
  3. 7e06de5 Really remove DHE ciphersuites from TLS. by Matthew Braithwaite · 8 years ago
  4. 3cfeb95 Disable SSLv3 by default. by David Benjamin · 8 years ago
  5. c8ff30c Add an option to allow unknown ALPN protocols. by David Benjamin · 8 years ago chromium-3071
  6. 67bb45f Support enabling early data on SSL by Alessandro Ghedini · 8 years ago
  7. 681eb6a Adding support for receiving early data on the server. by Steven Valdez · 8 years ago
  8. 7d2dbc3 Add a comment around the set_{min,max}_version logic. by David Benjamin · 8 years ago
  9. 2d85062 Add Data-less Zero-RTT support. by Steven Valdez · 8 years ago
  10. 57e81e6 Name |select_certificate_cb| return values by Alessandro Ghedini · 8 years ago
  11. 4c341d0 Support asynchronous ticket decryption with TLS 1.0–1.2. by Adam Langley · 8 years ago
  12. be49706 Rename initial_ctx to session_ctx. by David Benjamin · 8 years ago
  13. 6ad20dc Move error-on-empty-cipherlist into ssl_create_cipher_list(). by Matthew Braithwaite · 8 years ago
  14. 35ac5b7 Export server-side ticket_age skew. by David Benjamin · 8 years ago
  15. fe36672 Allow users of the |CRYPTO_BUFFER|-based methods to verify certs after the handshake. by Adam Langley · 8 years ago
  16. 8ebeabf Add SSL_CTX_get_ciphers. by David Benjamin · 8 years ago
  17. 924a352 Remove experimental TLS 1.3 short record header extension. by Steven Valdez · 8 years ago
  18. ad8f5e1 Don't use long for timestamps. by David Benjamin · 8 years ago
  19. 2a3b343 Move X509-related verification code into ssl_x509.c. by Adam Langley · 8 years ago
  20. 34b4c82 Hold CA names as |CRYPTO_BUFFER|s. by Adam Langley · 8 years ago
  21. a57dcfb Add new cipherlist-setting APIs that reject nonsense. by Matthew Braithwaite · 8 years ago
  22. fc02b59 Move tmp.extended_master_secret to SSL_HANDSHAKE. by David Benjamin · 8 years ago
  23. 45738dd Move new_cipher and new_session to SSL_HANDSHAKE. by David Benjamin · 8 years ago
  24. 12709db Stop reporting SSL_R_SHUTDOWN_WHILE_IN_INIT. by David Benjamin · 8 years ago
  25. 5960a90 Move sid_ctx from SSL/SSL_CTX to CERT. by David Benjamin · 8 years ago
  26. 26e1ff3 Remove some unnecessary return values. by David Benjamin · 8 years ago
  27. 83a3212 Move SCT lists and OCSP responses to CERT. by David Benjamin · 8 years ago
  28. 9e766d7 Unexport the handshake's internal state. by David Benjamin · 8 years ago
  29. 908ac19 Moving transcript and PRF functions to SSL_TRANSCRIPT. by Steven Valdez · 8 years ago
  30. 3509dac Add |X509_METHOD| and, using it, move many functions to ssl_x509.c. by Adam Langley · 8 years ago
  31. 8df6766 Support setting per-connection SCT list by Alessandro Ghedini · 8 years ago
  32. 33fe4a0 Remove support for setting per-connection default session timeout by Alessandro Ghedini · 8 years ago
  33. 17b3083 Use a separate timeout scheme for TLS 1.3. by David Benjamin · 8 years ago
  34. 0b1bb12 Push the SSL_CTX session_timeout zero logic up. by David Benjamin · 8 years ago
  35. 3a2b47a Don't use |X509| objects in |CERT|, by default. by Adam Langley · 8 years ago
  36. daf207a Don't use the buffer BIO in TLS. by David Benjamin · 8 years ago
  37. 1a999cf Don't use the buffer BIO in DTLS. by David Benjamin · 8 years ago
  38. 6d50f47 Remove support for RSA premaster logging. by David Benjamin · 8 years ago
  39. d1515a3 Move a number of X.509 functions from ssl_lib.c to ssl_x509.c by Adam Langley · 8 years ago
  40. 07820b5 Add a getter for SSL_set_session_id_context. by David Benjamin · 8 years ago
  41. d261004 Report TLS 1.3 as supporting secure renegotiation. by David Benjamin · 8 years ago
  42. 08b65f4 Enabling 0-RTT on new Session Tickets. by Steven Valdez · 8 years ago
  43. 2be4aa7 Add a helper function for resetting SSL_get_error state. by David Benjamin · 8 years ago
  44. f650c71 Use SSL_CTX_up_ref to up-ref an SSL_CTX. by David Benjamin · 8 years ago
  45. 6f600d6 Add experimental TLS 1.3 short record header extension. by David Benjamin · 8 years ago
  46. 17cf2cb Work around language and compiler bug in memcpy, etc. by David Benjamin · 8 years ago
  47. 65fb425 Remove version-specific cipher lists. by David Benjamin · 8 years ago
  48. 629db8c Add |SSL_get_peer_full_cert_chain|. by Adam Langley · 8 years ago
  49. f1050fd Preserve the peer signature algorithm across resumes. by David Benjamin · 8 years ago
  50. 4882a6c Replace key_exchange_info with group_id. by David Benjamin · 8 years ago
  51. 5488122 Remove SSL_get_dhe_group_size. by David Benjamin · 8 years ago
  52. d519bf6 Add |SSL_CTX_set0_buffer_pool|. by Adam Langley · 8 years ago
  53. 364f7a6 Push the difference in chain semantics to the edge. by Adam Langley · 8 years ago
  54. cb0c29f Move state and next_state to SSL_HANDSHAKE. by David Benjamin · 8 years ago
  55. 2644a13 Set up the SSL_HANDSHAKE object earlier. by David Benjamin · 8 years ago
  56. 287fc4f Don't use SSL_want_* macros internally. by David Benjamin · 8 years ago
  57. c0fc7a1 Revert "Add |SSL_CTX_set0_buffer_pool|." and "Hold certificates in an SSL_SESSION as CRYPTO_BUFFERSs as well." by Adam Langley · 8 years ago
  58. 651aaef Remove CECPQ1 (experimental post-quantum key agreement). by Matthew Braithwaite · 8 years ago
  59. 5a6e616 Add |SSL_CTX_set0_buffer_pool|. by Adam Langley · 8 years ago
  60. 559f064 Support setting per-connection OCSP staple by Alessandro Ghedini · 8 years ago
  61. 7c57286 Remove SSL_set_reject_peer_renegotiations. by David Benjamin · 8 years ago
  62. b79cc84 Fix SSL_clear's interaction with session resumption. by David Benjamin · 8 years ago
  63. 30c4c30 Revise some integer sizes. by David Benjamin · 8 years ago
  64. 813fc01 Remove unreachable check. by David Benjamin · 8 years ago
  65. f04c2e9 Move client_version into SSL_HANDSHAKE. by David Benjamin · 8 years ago
  66. a2bda9f Make more functions static. by David Benjamin · 8 years ago
  67. eebd3c8 Add SSL_(CTX_)set_tls_channel_id_enabled. by David Benjamin · 8 years ago
  68. 2578b29 Make ssl3_choose_cipher and dependencies static. by David Benjamin · 8 years ago
  69. 731058e Typedef ssl_early_callback_ctx to SSL_CLIENT_HELLO. by David Benjamin · 8 years ago
  70. f3c8f8d Pass explicit parameters elsewhere. by David Benjamin · 8 years ago
  71. ce8c9d2 Maintain SSL_HANDSHAKE lifetime outside of handshake_func. by David Benjamin · 8 years ago
  72. bf48364 Support setting per-connection default session lifetime value by Alessandro Ghedini · 8 years ago
  73. 9b885c5 Don't allow invalid SCT lists to be set. by Adam Langley · 8 years ago
  74. bbaf367 Add |SSL_set_retain_only_sha256_of_client_certs|. by David Benjamin · 8 years ago
  75. 4eb95cc Parse ClientHello extensions before deciding on resumption. by David Benjamin · 8 years ago
  76. 78476f6 Move tlsext_ticket_expected to SSL_HANDSHAKE. by David Benjamin · 8 years ago
  77. c5ac2b6 Rename X.509 members in |SSL_SESSION| and |CERT|. by Adam Langley · 8 years ago
  78. a983b4c Set SSL_MODE_NO_AUTO_CHAIN by default. by David Benjamin · 8 years ago
  79. ec978dd Add corpora for fuzzers with fuzzer mode disabled. by David Benjamin · 8 years ago
  80. d2cb1c1 Remove cipher_list_by_id. by David Benjamin · 8 years ago
  81. af3b3d3 Only resolve which cipher list to use once. by David Benjamin · 8 years ago
  82. 34941c0 Forbid renego in SSL 3.0. by David Benjamin · 8 years ago
  83. 49ddf41 Remove redundant copies of the Finished messages. by David Benjamin · 8 years ago
  84. ced00b4 Turn off Finished-based APIs at TLS 1.3 and SSL 3.0. by David Benjamin · 8 years ago
  85. 34de91e Revise server-side ECDSA certificate checks. by David Benjamin · 8 years ago
  86. b74b081 Move next_proto_neg_seen into SSL_HANDSHAKE. by David Benjamin · 8 years ago
  87. a048678 Move some fields from tmp to hs. by David Benjamin · 8 years ago
  88. 803c77a Update crypto negotation to draft 15. by Steven Valdez · 9 years ago
  89. 5fd1807 Implement SSL_CTX_set1_curves_list() by Alessandro Ghedini · 8 years ago
  90. fdd1099 Moving TLS 1.3 version negotiation into extension. by Steven Valdez · 9 years ago
  91. 65ac997 Implement draft-davidben-tls-grease-01. by David Benjamin · 9 years ago
  92. 01a9057 Fix remaining non-determinism in fuzzer transcripts. by David Benjamin · 9 years ago
  93. e34bcc9 Support default versions with set_{min,max}_proto_version. by David Benjamin · 9 years ago
  94. e470690 Align SSL_set_{min,max}_version with upstream. by David Benjamin · 9 years ago
  95. 2dc0204 Don't return invalid versions in version_from_wire. by David Benjamin · 9 years ago
  96. c027999 Take the version parameter out of ssl_do_msg_callback. by David Benjamin · 9 years ago
  97. e0ff767 Remove SSL_set_fallback_version. by David Benjamin · 9 years ago
  98. 7867934 Do not distinguish NULL and empty PSK identity hints. by David Benjamin · 9 years ago
  99. 8aaa9e1 Remove RC4 from TLS for real. by Matthew Braithwaite · 9 years ago
  100. 6e3f5cc Add SSL_CTX_get_keylog_callback. by David Benjamin · 9 years ago