1. 05c285d Only negotiate ECDHE curves and sigalgs once by David Benjamin · 12 months ago
  2. 91a3f26 Add an SSL_CREDENTIAL API for ECDSA/RSA and delegated credentials by David Benjamin · 1 year, 1 month ago
  3. 60c2867 Check client certificate types in TLS <= 1.2 by David Benjamin · 1 year ago
  4. 88a537f Fold ssl_add_cert_chain into its caller by David Benjamin · 1 year ago
  5. 2f6409e Support WPA 3.1 "enterprise" mode. by Adam Langley · 1 year, 11 months ago
  6. 8cacbd9 Add functions to allow the mocking of AES hw support for testing. by Bob Beck · 1 year, 11 months ago
  7. 44a389a Tidy up some lengths in SSL_SESSION by David Benjamin · 2 years, 3 months ago
  8. 08b1f38 Use KEM terminology in TLS ECDHE and key_share abstractions by David Benjamin · 2 years ago
  9. 7fa0910 Create the SSLKeyShare object in TLS 1.2 client ECDHE slightly later by David Benjamin · 2 years, 1 month ago
  10. dcabfe2 Make OPENSSL_malloc push ERR_R_MALLOC_FAILURE on failure. by Bob Beck · 2 years, 1 month ago
  11. a614d46 Add SSL_was_key_usage_invalid. by David Benjamin · 2 years, 3 months ago
  12. 361e3e0 Move the DTLS cookie to SSL_HANDSHAKE. by David Benjamin · 2 years, 6 months ago
  13. dfddbc4 Align with OpenSSL on TLS 1.3 cipher suite constants. by David Benjamin · 2 years, 8 months ago
  14. 451ea3c Add SSL_[CTX_]_set_compliance_policy. by Adam Langley · 2 years, 10 months ago
  15. 123eaae Record ClientHelloInner values in msg_callback. by David Benjamin · 3 years, 1 month ago
  16. 18b6836 Update to draft-ietf-tls-esni-13. by David Benjamin · 3 years, 9 months ago
  17. a75027b Make ssl_parse_extensions a little easier to use. by David Benjamin · 3 years, 8 months ago
  18. e2cb423 Deduplicate our three ServerHello parsers. by David Benjamin · 3 years, 8 months ago
  19. ba423c9 Implement ClientHelloOuter handshakes. by David Benjamin · 3 years, 9 months ago
  20. a10017c Reduce bouncing on the cache lock in ssl_update_cache. by David Benjamin · 3 years, 9 months ago
  21. 10a76ac Only clear not_resumable after the handshake. by David Benjamin · 3 years, 9 months ago
  22. 9734e44 More reliably report handshake errors through SSL_write. by David Benjamin · 3 years, 9 months ago
  23. e9c5d72 Add an option to permute ClientHello extension order. by David Benjamin · 3 years, 9 months ago
  24. 83a4993 Add most of an ECH client implementation. by David Benjamin · 3 years, 10 months ago
  25. c89ce97 Move the TLS vs DTLS header length adjustment into ssl_add_clienthello_tlsext. by David Benjamin · 3 years, 9 months ago
  26. 5acf9f4 Replace hs->needs_psk_binder with an output parameter. by David Benjamin · 3 years, 9 months ago
  27. 246c556 Compute the ECH GREASE payload outside of the callbacks. by David Benjamin · 3 years, 10 months ago
  28. 97ede40 Move key_share computation out of ClientHello callbacks. by David Benjamin · 3 years, 10 months ago
  29. 6c9758f Release some temporaries outside of ClientHello callbacks. by David Benjamin · 3 years, 10 months ago
  30. 4e93cd4 Move the early_data_{offered,reason} logic out of extension callbacks. by David Benjamin · 3 years, 10 months ago
  31. b587911 Remove the Channel ID callback. by David Benjamin · 3 years, 10 months ago
  32. 8acec00 Manage Channel ID handshake state better. by David Benjamin · 3 years, 10 months ago
  33. 3675eb3 GREASE is now RFC 8701. by David Benjamin · 3 years, 10 months ago
  34. d89ec68 Remove draft tokbind implementation. by David Benjamin · 3 years, 10 months ago
  35. 71a3b82 Check for resumption identifiers in SSL_SESSION_is_resumable. by David Benjamin · 3 years, 10 months ago
  36. 6ff9429 Don't use SHA256(ticket) as the signaling session ID for tickets. by David Benjamin · 3 years, 10 months ago
  37. 1f6c3dc Simplify renego + resumption handling. by David Benjamin · 3 years, 10 months ago
  38. 962b375 Move session ID assignment out of ssl_get_new_session. by David Benjamin · 3 years, 10 months ago
  39. 9b2cdb7 Add SSL_can_release_private_key. by David Benjamin · 4 years ago
  40. 5351c8b Rename the master_key field in SSL_SESSION to secret. by David Benjamin · 4 years, 4 months ago
  41. 0a6bfa3 Always check the TLS 1.3 downgrade signal. by David Benjamin · 4 years, 4 months ago
  42. c4ec14c Switch ssl_parse_extensions to bool and Span. by David Benjamin · 4 years, 5 months ago
  43. 3743aaf Add SSL_CIPHER_get_protocol_id. by David Benjamin · 4 years, 5 months ago
  44. cd8f3d3 Enforce the keyUsage extension in TLS 1.2 client certs. by David Benjamin · 4 years, 9 months ago
  45. e32549e Disable TLS 1.3 compatibility mode for QUIC. by Nick Harper · 4 years, 10 months ago
  46. 6bfd25c Add is_quic bit to SSL_SESSION by Nick Harper · 5 years ago
  47. 1e85905 Revise QUIC encryption secret APIs. by David Benjamin · 5 years ago
  48. 754d4c9 Fix client handling of 0-RTT rejects with cipher mismatch. by David Benjamin · 5 years ago
  49. f9cc26f Require handshake flights end at record boundaries. by David Benjamin · 5 years ago
  50. ebad508 Switch verify sigalg pref functions to SSL_HANDSHAKE. by David Benjamin · 5 years ago
  51. ee0716f Defer early keys to QUIC clients to after certificate reverification. by David Benjamin · 5 years ago
  52. 3ba9586 Rename a number of BUF_* functions to OPENSSL_*. by David Benjamin · 5 years ago
  53. d634357 Add initial support for 0-RTT with QUIC. by David Benjamin · 6 years ago
  54. e530ea3 Use spans for the various TLS 1.3 secrets. by David Benjamin · 6 years ago
  55. 79b8b3a Switch tls13_enc.cc to spans. by David Benjamin · 6 years ago
  56. 9806ae0 Check the second ClientHello's PSK binder on resumption. by David Benjamin · 6 years ago
  57. 4dfd5af Only bypass the signature verification itself in fuzzer mode. by David Benjamin · 6 years ago
  58. d7266ec Enforce key usage for RSA keys in TLS 1.2. by Jesse Selover · 6 years ago
  59. b84674b Delete the variants/draft code. by Steven Valdez · 7 years ago
  60. 9cde848 Use handshake parameters to decide if cert/key are available by Christopher Patton · 7 years ago
  61. 7b93593 Add initial HRSS support. by Adam Langley · 6 years ago
  62. 6965d25 Work around a JDK 11 TLS 1.3 bug. by David Benjamin · 6 years ago
  63. f241a59 In 0RTT mode, reverify the server certificate before sending early data. by Jesse Selover · 6 years ago
  64. c8e0f90 Add an interface for QUIC integration. by Steven Valdez · 7 years ago
  65. 2d98d49 Add a per-SSL TLS 1.3 downgrade enforcement option and improve tests. by David Benjamin · 6 years ago
  66. 8c7c635 Support symbol prefixes by Joshua Liebow-Feeser · 7 years ago
  67. 492c9aa Fill in a fake session ID for TLS 1.3. by David Benjamin · 7 years ago
  68. 12f5878 Some more bools. by David Benjamin · 7 years ago
  69. a130ce0 Update TLS 1.3 citations for the final RFC. by David Benjamin · 7 years ago
  70. f1af129 Implement TLS 1.3 anti-downgrade signal. by Steven Valdez · 7 years ago
  71. 1c337e5 Option to reverify certs on resumption. by Jesse Selover · 7 years ago
  72. e0afc85 Send an alert if we fail to pick a signature algorithm. by Adam Langley · 7 years ago
  73. 4685376 Remove other unnecessary tlsext_ prefixes. by David Benjamin · 7 years ago
  74. 50596f8 Switch some easy SSL fields to UniquePtr. by David Benjamin · 7 years ago
  75. bfdd1a9 Give SSL_SESSION a destructor. by David Benjamin · 7 years ago
  76. 2908dd1 Add bssl::UpRef. by David Benjamin · 7 years ago
  77. a3a71e9 Flip SSL_SESSION fields to bool. by David Benjamin · 7 years ago
  78. 9bb15f5 Remove SSL 3.0 implementation. by David Benjamin · 7 years ago
  79. b7bc80a SSL_CONFIG: new struct for sheddable handshake configuration. by Matthew Braithwaite · 7 years ago
  80. e325c3f Give CERT a destructor. by David Benjamin · 7 years ago
  81. 9f0e7cb Move TB state to ssl->s3. by David Benjamin · 7 years ago
  82. a0bc29a Remove remnants of the HRR message. by David Benjamin · 7 years ago
  83. 7e5dd25 Remove draft22 and experiment2. by Steven Valdez · 7 years ago
  84. 0ab3f0c Notice earlier if a server echoes the TLS 1.3 compatibility session ID. by David Benjamin · 7 years ago
  85. a7bc944 Don't use the client_random entropy for GREASE. by David Benjamin · 7 years ago
  86. 36fcc4c Implement Token Binding by Nick Harper · 7 years ago
  87. 6df6540 Add a draft TLS 1.3 anti-downgrade signal. by David Benjamin · 7 years ago
  88. 64cc121 Remove deprecated TLS 1.3 variants. by Steven Valdez · 7 years ago
  89. f98b582 Fix tls13_variant check to check max_version. by Steven Valdez · 7 years ago
  90. 494e4d0 Add an option for False Start without ALPN. by David Benjamin · 7 years ago
  91. 9986f6b Fix renegotiation with TLS 1.3 draft 22. by Steven Valdez · 7 years ago
  92. c5c31ab Enforce compression_method in TLS 1.3 draft 22. by Steven Valdez · 7 years ago
  93. 964b237 Implement PR 1091 (TLS 1.3 draft '22'). by Steven Valdez · 7 years ago
  94. cd8470f Adding support for draft 21 as a TLS 1.3 variant. by Steven Valdez · 7 years ago
  95. 2637f3c Even more fun with Span. by David Benjamin · 7 years ago
  96. 8e7bbba Use more scopers. by David Benjamin · 7 years ago
  97. 75a1f23 Have a bit more fun with Span. by David Benjamin · 7 years ago
  98. 00f48c8 Rename and move a few more ssl3_ functions around. by David Benjamin · 7 years ago
  99. d1e3ce1 Rename ssl3_send_alert and ssl3_protocol_version. by David Benjamin · 7 years ago
  100. 73d42e6 Inline ssl_clear_tls13_state. by David Benjamin · 7 years ago