1. 46a1c7e Add EVP_HPKE_KEM_public_key_len and EVP_HPKE_KEM_private_key_len. by David Benjamin · 33 hours ago master
  2. 80eb814 Remove the experimental in-place record APIs. by David Benjamin · 7 days ago
  3. 32013e8 Maintain the sequence number as a uint64_t. by David Benjamin · 8 days ago
  4. cab31f6 Add int64 ASN1_INTEGER setters too. by David Benjamin · 7 days ago
  5. a61e747 Also check for V_ASN1_NEG_INTEGER when checking types. by David Benjamin · 7 days ago
  6. 0498978 Write a test for CONF_parse_list. by David Benjamin · 2 weeks ago
  7. 11f93cd Make CONF_parse_list size_t-clean. by David Benjamin · 4 weeks ago
  8. 2397276 Unexport CONF_parse_list. by David Benjamin · 4 weeks ago
  9. 46af243 Use Array<uint8_t> in DTLS1_OUTGOING_MESSAGE. by David Benjamin · 4 weeks ago
  10. 361e3e0 Move the DTLS cookie to SSL_HANDSHAKE. by David Benjamin · 3 weeks ago
  11. 91e0b11 Use the new macOS sysctl names when available by David Benjamin · 3 weeks ago
  12. 1b2b7b2 Various -Wshorten-64-to-32 fixes. by David Benjamin · 3 months ago
  13. bbd9f18 Document and tidy up X509_find_by_*. by David Benjamin · 3 weeks ago
  14. d0a0750 Remove unused X509_LOOKUP_by_* functions. by David Benjamin · 3 weeks ago
  15. fd52296 Check some ASN1_STRING types in crypto/x509 by Emily Stark · 3 weeks ago
  16. 7b2795a Replace even more ad-hoc bytes/integer conversions. by David Benjamin · 3 weeks ago
  17. 9f426b6 Specify all library install destinations by Don · 5 weeks ago
  18. 1510e46 Add a poisoned field to EVP_CIPHER_CTX. by Bob Beck · 5 weeks ago
  19. 2e295b9 Stub out DSA paramgen functions. by David Benjamin · 3 weeks ago
  20. 8a1542f Stub out the OpenSSL secure heap. by David Benjamin · 4 weeks ago
  21. c990cf1 Define OPENSSL_NO_SSL_TRACE. by David Benjamin · 4 weeks ago
  22. ea2ad5a Add ASN1_INTEGER_get_int64 and ASN1_ENUMERATED_get_int64. by David Benjamin · 4 weeks ago
  23. e8e6cac Add the "groups" variants of SSL_CTX_set1_curves_list. by David Benjamin · 4 weeks ago
  24. 1106836 Provide the other primes from RFC 3526. by David Benjamin · 4 weeks ago
  25. 8462a36 Silence a GCC 12 -Warray-bounds false positive warning. by David Benjamin · 4 weeks ago
  26. 2749466 Rework truncated SHA-2 to silence GCC 12 false positive warning. by David Benjamin · 4 weeks ago
  27. 19009c5 Require getrandom in all FIPS builds. by David Benjamin · 5 weeks ago
  28. aca1930 Incorporate OS entropy on FIPS CTR-DRBG reseed, not just init. by David Benjamin · 5 weeks ago
  29. 5f627e5 Add RAND_get_system_entropy_for_custom_prng by Bob Beck · 4 weeks ago
  30. b8e784e Rewrite RSA_verify_PKCS1_PSS_mgf1 with size_t. by David Benjamin · 4 weeks ago
  31. 34e474f Check set_encrypt_key return value in AESTest.ABI. by David Benjamin · 4 weeks ago
  32. 10fef97 Prefer established session properties mid renegotiation. by David Benjamin · 5 weeks ago
  33. ee477d4 Add EVP_HPKE_KDF_hkdf_md. by David Benjamin · 5 weeks ago
  34. 8a3b269 Find threading library by Don · 5 weeks ago
  35. 4ff604e Use O_CLOEXEC instead of fcntl(FD_CLOEXEC) by David Benjamin · 5 weeks ago
  36. 779f7d0 Add an EVP_HPKE_KEM_enc_len API. by David Benjamin · 5 weeks ago
  37. ebd8b89 Track SSL_ERROR_ZERO_RETURN explicitly. by David Benjamin · 9 weeks ago
  38. b2d3c10 Clean up header to reuse __riscv definition by Rebecca Chang Swee Fun · 5 weeks ago
  39. a6d321b Tighten up supported PSS combinations in X.509. by David Benjamin · 8 weeks ago
  40. d45d893 Add HMAC_CTX_get_md. by David Benjamin · 7 weeks ago
  41. 401137f Add a test for SSL_CTX_set_quiet_shutdown. by David Benjamin · 9 weeks ago
  42. 2135ac6 Add X509_STORE_CTX_set0_trusted_stack. by David Benjamin · 7 weeks ago
  43. eccd103 Add X509_V_FLAG_NO_CHECK_TIME. by David Benjamin · 7 weeks ago
  44. ce65c1d Add DSA_bits and DH_bits. by David Benjamin · 8 weeks ago
  45. adaa322 Add handshake hints for TLS 1.2 session tickets. by David Benjamin · 8 weeks ago
  46. 7f857ea Rework STACK_OF(T) documentation. by David Benjamin · 4 months ago
  47. f3374b1 Fix some typos in comments. by David Benjamin · 8 weeks ago
  48. db54a42 Remove stale comment. by David Benjamin · 8 weeks ago
  49. 4da5a94 Fix SSL_load_client_CA_file when given an empty file. by David Benjamin · 8 weeks ago
  50. 45aadce Define NR_getrandom for riscv64 by Mao Han · 9 weeks ago
  51. e666d0a Adapt break-tests.sh to run on an attached Android device. by Pete Bentley · 10 weeks ago
  52. 15596ef Include hopefully all ARM instructions with condition codes. by Adam Langley · 9 weeks ago
  53. b7d6320 Replace OPENSSL_STATIC_ASSERT with static_assert. by David Benjamin · 9 weeks ago
  54. ccd665d Make time_t conversions. Give up on the OS provided ones. by Bob Beck · 9 weeks ago
  55. 5cb597e Test that close_notify state does not impair SSL_ERROR_SYSCALL. by David Benjamin · 9 weeks ago
  56. 4bd32a8 Convert more of the SSL write path to size_t and Spans. by David Benjamin · 1 year, 5 months ago
  57. 8ce0e1c Revert "Fetch entropy from a system daemon in FIPS mode on Android." by Adam Langley · 9 weeks ago
  58. 4259ae8 Fetch entropy from a system daemon in FIPS mode on Android. by Adam Langley · 5 months ago
  59. fc9a8c8 Merge entropy read in FIPS mode. by Adam Langley · 5 months ago
  60. 33f3ee8 Rename |from_cpu| to |want_additional_input|. by Adam Langley · 5 months ago
  61. 4a6c8fd Support handshake hints for TLS 1.2 full handshakes. by David Benjamin · 2 months ago
  62. 24c0186 Expose the CTR_DRBG API. by Adam Langley · 5 months ago
  63. f4cdf91 Don't try and test 3DES with ACVP. by Adam Langley · 10 weeks ago
  64. 5c2ef10 Fix possible ODR violations for ecp_nistz256_from_mont by Adam Langley · 10 weeks ago
  65. 2cc2aa9 Don't try to specify SHA-256 for Aarch64 FIPS. by Adam Langley · 10 weeks ago
  66. b95c7e5 Fix up book-keeping between the write buffer and pending writes. by David Benjamin · 2 months ago
  67. 64bf8c5 Fix an edge case in SSL_write's retry mechanism. by David Benjamin · 2 months ago
  68. 28883d4 Fix unused variable warning on macOS + ASan by David Benjamin · 2 months ago
  69. 4d7b383 Remove PEM_X509_INFO_write_bio. by David Benjamin · 3 months ago
  70. 5697a92 Add SSL_CTX_get_num_tickets. by David Benjamin · 2 months ago
  71. b951243 Mostly Revert 52426 - Drop AVCP support for 3DES by Bob Beck · 2 months ago
  72. 1ced57a Add script to run FIPS break tests. by Adam Langley · 3 months ago
  73. a6981a3 More alignment with OpenSSL on TLS 1.3 cipher suite constants. by Bob Beck · 2 months ago
  74. dfddbc4 Align with OpenSSL on TLS 1.3 cipher suite constants. by David Benjamin · 2 months ago
  75. 557b80f Document and organize some of the basic extensions functions. by David Benjamin · 3 months ago
  76. 09b8fd4 Const-correct X509_EXTENSION functions, as best we can. by David Benjamin · 3 months ago
  77. b859642 Document all the dup functions. by David Benjamin · 3 months ago
  78. 84311ce Const-correct X509_REVOKED as well. by David Benjamin · 3 months ago
  79. 892b9bc Const-correct and document EVP_PKCS82PKEY and EVP_PKEY2PKCS8. by David Benjamin · 3 months ago
  80. 4f4ae71 Remove PKCS8_pkey_get0 and PKCS8_pkey_set0. by David Benjamin · 3 months ago
  81. 918b8bc Move all the miscelleneous convenience functions into a section. by David Benjamin · 3 months ago
  82. 1b58995 Fix the documentation of X509_pubkey_digest. by David Benjamin · 3 months ago
  83. 81587d3 Remove the last of the Suite B code. by David Benjamin · 3 months ago
  84. 6bf1292 Remove X509_ocspid_print. by David Benjamin · 3 months ago
  85. 0bfc9b3 Unexport all low-level policy machinery. by David Benjamin · 3 months ago
  86. b6f47e8 Document most X509_NAME functions. by David Benjamin · 3 months ago
  87. 3be30a5 Add some tests for X509_NAME_ENTRY management. by David Benjamin · 3 months ago
  88. 884ae3a Clarify thisUpdate vs. lastUpdate in docs. by David Benjamin · 3 months ago
  89. 4363bdd Start grouping x509.h into sections. by David Benjamin · 6 months ago
  90. 2812793 Start expanding DECLARE_ASN1_* macros in x509.h. by David Benjamin · 3 months ago
  91. c8d3137 Bump CMake requirement to 3.8. by David Benjamin · 3 months ago
  92. 534970f Remove X509_ALGORS. by David Benjamin · 3 months ago
  93. f022e84 Remove X509_REQ's refcount. by David Benjamin · 3 months ago
  94. dc112e7 Const-correct the i2d/dup functions we can. by David Benjamin · 3 months ago
  95. 5c1d5d8 Use GTest's built-in sharding feature by David Benjamin · 8 months ago
  96. 7528f03 Fix memory leak with X509V3_ADD_DELETE. by David Benjamin · 3 months ago
  97. f202989 Tidy up ASN1_GENERALIZEDTIME_adj and ASN1_UTCTIME_adj. by David Benjamin · 3 months ago
  98. 695b2e1 Check for invalid UCS-2 and UTF-32 in ASN1_STRING_print_ex. by David Benjamin · 3 months ago
  99. 507daf3 Check Unicode string encodings in crypto/asn1. by David Benjamin · 3 months ago
  100. e7681d1 Rewrite scalar operations in spake25519.c with BN_ULONG by David Benjamin · 3 months ago