1. 285228f Remove ocsp_revocation_status.h and ocsp_verify_result.h by Bob Beck · 5 days ago main
  2. b50b2e5 Fix up ClientHello parser errors by David Benjamin · 34 hours ago
  3. 9439870 Add SSL_parse_client_hello by David Benjamin · 2 days ago
  4. ce25d4b use public header instead of internal for ocsp by Bob Beck · 5 days ago
  5. c14369e Make CheckOCSP public api by Bob Beck · 5 days ago
  6. bef0b8b Remove SSL_set_check_client_certificate_type and SSL_set_check_ecdsa_curve by David Benjamin · 2 days ago
  7. 0147d7f HPKE DHKEM-P256 BoringSSL Rust by Fernando Lobato Meeser · 5 days ago
  8. 6b1c6f3 FIPS.md: update wording to align with FRR7. by Adam Langley · 5 days ago
  9. f628072 FIPS.md: add build instructions for the update stream. by Adam Langley · 5 days ago
  10. 0bb19f6 util/fipstools: KDA OneStepNoCounter mode support by Daniel McCarney · 8 days ago
  11. ba80c5e util/fipstools: generalize hkdf KDA subprocess by Daniel McCarney · 9 days ago
  12. 91eb075 Add a missing word to documentation on the upstream stream by David Benjamin · 7 days ago
  13. 84cb6c7 Add a section on the latest FedRAMP policy to FIPS.md. by Adam Langley · 7 days ago
  14. 0cb7370 Add CBS APIs for fetching an implicitly tagged int64/uint64 fields. by Dustin Nguyen · 9 days ago
  15. 8ec37a1 Delete some unnecessary implicit conversions in pkcs12_test.cc by David Benjamin · 8 days ago
  16. 7700335 Remove now unnecessary ia32cap_P customizations by David Benjamin · 9 days ago
  17. 9a8c72d Restore the __SHA__ compile-time check for Intel SHA Extensions by David Benjamin · 9 days ago
  18. ea42fe2 Clean up license-related scripts by David Benjamin · 9 days ago
  19. 33d1049 Switch the license to Apache 2.0, matching OpenSSL upstream by David Benjamin · 9 days ago
  20. bc5a527 Add a tool to switch the license to Apache 2.0, matching OpenSSL by David Benjamin · 5 weeks ago
  21. bf381fd Move copyright lines to the top of the file by David Benjamin · 5 weeks ago
  22. d15c019 Remove other references to additional licenses by David Benjamin · 5 weeks ago
  23. 40c2135 License: change any non-boilerplate comment referring to "OpenSSL license" by David Benjamin · 5 weeks ago
  24. b025670 Rename chacha20_poly1305_*_nohw to chacha20_poly1305_*_sse41 by David Benjamin · 9 days ago
  25. 2b19cd3 Implement SPAKE2+ and its integration in TLS 1.3 by Chris Wood · 4 months ago
  26. 817ab07 Collapse the modes directory into aes by Bob Beck · 2 weeks ago
  27. 343c55c util/fipstools: cSHAKE ACVP algorithm support by Daniel McCarney · 3 weeks ago
  28. 8523f0f Fix link to Mozilla wiki in comment by David Benjamin · 2 weeks ago
  29. f44677c Add missing error with credential/issuer matching by David Benjamin · 2 weeks ago
  30. 723b508 runner: Only require a curve match in TLS 1.3 when doing key shares by David Benjamin · 2 weeks ago
  31. afa405f Test that we reject Certificate or CertificateRequest in resumption by David Benjamin · 3 weeks ago
  32. f0a4948 runner: implement SecondHelloRetryRequest more straightforwardly by David Benjamin · 3 weeks ago
  33. 5823b5e runner: Make -expect-selected-credential's default more convenient by David Benjamin · 3 weeks ago
  34. f7febd2 Use std::vector<uint8_t> to store base64-decode byte arrays by David Benjamin · 3 weeks ago
  35. 03e6d7e Document EVP_BytesToKey a bit better by David Benjamin · 3 weeks ago
  36. 15bab61 Bump API version to 34 by Bob Beck · 3 weeks ago
  37. 7d07002 infra: Use main branch exclusively by Josip Sokcevic · 3 weeks ago
  38. ba24bde util/fipstools: basic support for KTS-IFC by Daniel McCarney · 3 weeks ago
  39. 485c725 Reword the SSL_export_keying_material docs slightly by David Benjamin · 3 weeks ago
  40. 46364fb Update references in the repo to use the main branch by David Benjamin · 3 weeks ago
  41. e056f59 infra: Support both master and main branches by Josip Sokcevic · 4 weeks ago master
  42. fb1e769 Sync presubmit.yml with what landed in BCR by David Benjamin · 3 weeks ago
  43. 1c40397 Include the extension in the error in ssl_parse_extensions by David Benjamin · 3 weeks ago
  44. 6e8adf5 Remove ASN1_UTCTIME_cmp_time_t by David Benjamin · 3 weeks ago
  45. 36c0f05 util/fipstools: update RSA sigGen cmd args docs by Daniel McCarney · 5 weeks ago
  46. 23768dc util/fipstools: support feedback KDF w/ empty IVs by Daniel McCarney · 6 weeks ago
  47. d3f26f8 Add a function for Conscrypt to use by Bob Beck · 5 weeks ago
  48. d4b6eb5 Fix unwrap comment for CBB_init_fixed by David Benjamin · 5 weeks ago
  49. 6612078 Document and test PEM_X509_INFO_read_bio's odd decryption behavior by David Benjamin · 6 weeks ago
  50. bca2d72 Test some obscure modes of EVP sign/verify with RSA keys by David Benjamin · 4 weeks ago
  51. 16c79a2 Remove some dead code in bssl_shim by David Benjamin · 4 weeks ago
  52. 06ec1ed clang-format bssl_shim.cc by David Benjamin · 4 weeks ago
  53. a85ef9a Rename foo_extra to foo by David Benjamin · 5 weeks ago
  54. 13840dd Add explicit prefetching to the new AES-GCM code by Eric Biggers · 4 weeks ago
  55. 21f54b2 Add SPAKE2+. by Adam Langley · 5 weeks ago
  56. a8a4fce Add ability to upload a directory of vector test results. by Joe Gardner · 5 weeks ago
  57. 571a743 Bump MODULE.bazel for another snapshot by David Benjamin · 4 weeks ago 0.20250114.0
  58. 305e5c5 Unfork Chromium's Clang update script by David Benjamin · 5 weeks ago
  59. 06410ba Remove embed_test_data.go by David Benjamin · 5 weeks ago
  60. acab24e Mark fallible container operations as `nodiscard` by Adam Langley · 5 weeks ago
  61. bf4cf69 Start using bssl::UniquePtr in libcrypto by David Benjamin · 8 weeks ago
  62. e822de3 Move RSA_blinding_on out of BCM by David Benjamin · 4 weeks ago
  63. 7db3433 Switch some tests to std::string_view by David Benjamin · 5 weeks ago
  64. 4bc7c0f Initialize iqmp during keygen directly by David Benjamin · 5 weeks ago
  65. 628b161 Remove a redundant call to freeze_private_key by David Benjamin · 5 weeks ago
  66. 477691c Add tests for TIME functions that accept offsets by Bob Beck · 5 weeks ago
  67. 435e87b Use more span patterns for strings vs bytes by David Benjamin · 5 weeks ago
  68. f609950 Remove calls to now unnecessary MakeSpan/MakeConstSpan by David Benjamin · 5 weeks ago
  69. 8fa5d07 Remove now unused size hooks from ECDSA_METHOD and RSA_METHOD by David Benjamin · 5 weeks ago
  70. 4972fd6 Remove some RSA_is_opaque and EC_KEY_is_opaque special cases by David Benjamin · 5 weeks ago
  71. 574fd72 Use std::string_view for label strings by David Benjamin · 5 weeks ago
  72. e4b6d4f Update CMAKE_CXX_STANDARD in generate_build_files.py by David Benjamin · 5 weeks ago
  73. 626749c Revert "Stop playing with time strings with strlcat" by David Benjamin · 5 weeks ago
  74. 803062a util/fipstools: document AES-gcm-randnonce cmds by Daniel McCarney · 8 weeks ago
  75. af821e7 util/fipstools: add SSH KDF ACVP support by Daniel McCarney · 8 weeks ago
  76. a9bdeed Add something to the error queue when Proc-Type version is wrong by David Benjamin · 6 weeks ago
  77. d3f61ee Gate Rust support for ML-{KEM,DSA} on a crate feature. by Adam Langley · 5 weeks ago
  78. f2394d1 Stop playing with time strings with strlcat by Bob Beck · 5 weeks ago
  79. a66e808 Revert "Always try and enable the new_uninit feature." by Adam Langley · 5 weeks ago
  80. 0093ff3 replace some more allocate + strlcat with asprintf by Bob Beck · 5 weeks ago
  81. 950b165 Remove out directories in pki test data by David Benjamin · 5 weeks ago
  82. 508d5b3 replace manual alloction math and srlcats with asprintf by Bob Beck · 5 weeks ago
  83. 8739f1d use asprintf instead of magic manual allocation by Bob Beck · 5 weeks ago
  84. d678fbf Always try and enable the new_uninit feature. by Pete Bentley · 5 weeks ago
  85. d777ea2 Add another missing file header by David Benjamin · 5 weeks ago
  86. 138b5a2 Add some missing file headers by David Benjamin · 5 weeks ago
  87. 029914c Align a few license headers with OpenSSL's "copyright consolidation" by David Benjamin · 5 weeks ago
  88. dc59036 Remove uses of `strcpy`, `strcat`, and `sprintf`, and handle NULL in some functions. by Adam Langley · 5 weeks ago
  89. 3cdbf04 Import "Remove some code for a contributor that we cannot find" from upstream OpenSSL by David Benjamin · 6 weeks ago
  90. b9e84d0 Import "Undo commit d420ac2" from upstream OpenSSL by David Benjamin · 6 weeks ago
  91. 0fd8791 Disable the "AVX10/256" AES-GCM functions for now by Eric Biggers · 8 weeks ago
  92. 3b6e1be Add VAES + AVX2 optimized AES-GCM by Eric Biggers · 8 weeks ago
  93. e869bfb util/fipstools: adjust KDF-counter command docs by Daniel McCarney · 6 weeks ago
  94. 66c41ca util/fipstools: support more digests w/ hmacDRBG by Daniel McCarney · 6 weeks ago
  95. 5a2194f Don't mutate the buffer in PEM_get_EVP_CIPHER_INFO by David Benjamin · 6 weeks ago
  96. 7ed1635 Import "Remove some code" from upstream OpenSSL by David Benjamin · 6 weeks ago
  97. 3fe5e2a Unexport a couple internal PEM functions from pem.h by David Benjamin · 6 weeks ago
  98. 1d3c560 Move implicit OPENSSL_STATIC_ARMCAP definition to target.h by David Benjamin · 6 weeks ago
  99. 8e25501 Clean up "copyright consolidation" tools by David Benjamin · 6 weeks ago
  100. 281352b Import "Cleanup some copyright stuff" from upstream OpenSSL by David Benjamin · 6 weeks ago