Google Git
Sign in
boringssl / boringssl / HEAD
  1. 10bfb89 Fix 20-year-old typo in BN_mask_bits. by David Benjamin · 6 years ago
  2. 47d8841 Document that BN_bn2bin is not constant-time. by David Benjamin · 6 years ago
  3. 3d2c6b0 Document EC_POINT_get_affine_coordinates_GFp allowing NULL x and y. by David Benjamin · 6 years ago
  4. a6bfc45 Store EC_KEY's private key as an EC_SCALAR. by David Benjamin · 6 years ago
  5. d62fe6f Fold EC_KEY_copy into EC_KEY_dup. by David Benjamin · 6 years ago
  6. 40cdb3b Don't test |initial_handshake_complete| for dummy PQ padding status. by Adam Langley · 6 years ago
  7. ec55dc1 Update tools. by David Benjamin · 6 years ago
  8. 929a9d7 Don't bother retrying in bn_blinding_create_param. by David Benjamin · 6 years ago
  9. f8058d4 Add M=8 L=2 AES-128-CCM as well. by David Benjamin · 6 years ago
  10. 8df8e64 Record whether dummy PQ padding was used. by Adam Langley · 6 years ago
  11. 8d4f7e5 Remove redundant assertion in fe_mul_121666_impl. by Daniel Hirche · 6 years ago
  12. 4702db6 Update dummy PQ extension for round two. by Adam Langley · 6 years ago
  13. 8041d8c third_party: re-format METATADA files by Martin Kreichgauer · 6 years ago
  14. c017864 Update link to CMVP certificate. by Adam Langley · 6 years ago
  15. e745b25 Remove trailing whitespace from ssl/. by Adam Langley · 6 years ago
  16. 672f6fc Always use adr with __thumb2__. by David Benjamin · 6 years ago
  17. 36714fc Remove redundant length-check in |ec_wNAF_mul|. by Daniel Hirche · 6 years ago
  18. 02d696f Delete |pthread_key_t| on dlclose. by Fred Gylys-Colwell · 6 years ago
  19. ed626ec Merge NIAP and FIPS test suites. by Adam Langley · 6 years ago
  20. 085955c Actually use the u64 cast. by David Benjamin · 6 years ago
  21. f16cd42 Add AES_128_CCM AEAD. by Steven Valdez · 6 years ago
  22. 78a832d Document RSAZ slightly better. by David Benjamin · 6 years ago
  23. c03ecb9 Remove SSLv3_method and friends. by David Benjamin · 6 years ago
  24. 1bf2337 Reject compressed ECDH coordinates in TLS. by David Benjamin · 6 years ago
  25. 6796889 Remove unused strings.h #include from crypto/mem.c by Aaron Green · 6 years ago
  26. 02cca19 clang-format RSAZ C code. by David Benjamin · 6 years ago
  27. 10443f5 Adjust comment on potential R^3 optimization. by David Benjamin · 6 years ago
  28. 862e0d2 Add cpu-aarch64-fuchsia.c by Aaron Green · 6 years ago
  29. 638a408 Add a tuned variable-time P-256 multiplication function. by David Benjamin · 6 years ago
  30. 6e4ff11 Merge Intel copyright notice into standard by David Benjamin · 6 years ago
  31. f6cf8bb Sync up AES assembly. by David Benjamin · 6 years ago
  32. 6dc9942 Sync up some perlasm license headers and easy fixes. by David Benjamin · 6 years ago
  33. 0f4f6c2 p256-x86_64.pl: add CFI directives. by David Benjamin · 6 years ago
  34. 02808dd p256-x86_64-asm.pl: Win64 SEH face-lift. by David Benjamin · 6 years ago
  35. 05640fd p256-x86_64-asm.pl: Add OpenSSL copyright by David Benjamin · 6 years ago
  36. 8ae929f p256-x86_64.pl: update commentary with before-after performance data. by David Benjamin · 6 years ago
  37. d25e62e Return NULL instead of zero in |bn_resized_from_ctx|. by Daniel Hirche · 6 years ago
  38. 38c20fe Fix threading issues with RSA freeze_private_key. by David Benjamin · 6 years ago
  39. 61dedd6 Don't crash when failing to set affine coordinates when the generator is missing. by Adam Langley · 6 years ago
  40. 376f3f1 Add BN_count_low_zero_bits. by David Benjamin · 6 years ago
  41. d24cb22 Make BN_cmp constant-time. by David Benjamin · 6 years ago
  42. ac38370 Simplify bn_mul_part_recursive. by David Benjamin · 6 years ago
  43. 6488f4e Fix over-allocated bounds on bn_mul_part_recursive. by David Benjamin · 6 years ago
  44. 2bf8297 Make bn_mul_part_recursive constant-time. by David Benjamin · 6 years ago
  45. 6541308 Don't allocate oversized arrays for bn_mul_recursive. by David Benjamin · 6 years ago
  46. 34a2c5e Make bn_mul_recursive constant-time. by David Benjamin · 6 years ago
  47. b01dd1c Make bn_sqr_recursive constant-time. by David Benjamin · 6 years ago
  48. 3b3e12d Simplify BN_bn2bin_padded. by David Benjamin · 6 years ago
  49. be83740 Make the rest of RSA CRT constant-time. by David Benjamin · 6 years ago
  50. 150ad30 Split BN_uadd into a bn_uadd_fixed. by David Benjamin · 6 years ago
  51. 5b10def Compute mont->RR in constant-time. by David Benjamin · 6 years ago
  52. 6f564af Make BN_mod_*_quick constant-time. by David Benjamin · 6 years ago
  53. eaa80b7 Remove DSA k+q kludge. by David Benjamin · 6 years ago
  54. 08805fe Normalize RSA private component widths. by David Benjamin · 6 years ago
  55. c7b6e0a Don't leak widths in bn_mod_mul_montgomery_fallback. by David Benjamin · 6 years ago
  56. 08d774a Remove some easy bn_set_minimal_width calls. by David Benjamin · 6 years ago
  57. 09633cc Rename bn->top to bn->width. by David Benjamin · 6 years ago
  58. 23223eb Tidy BN_bn2hex and BN_print with non-minimal inputs. by David Benjamin · 6 years ago
  59. cb4e300 Store EC field and orders in minimal form. by David Benjamin · 6 years ago
  60. 226b4b5 Make the rest of BIGNUM accept non-minimal values. by David Benjamin · 6 years ago
  61. 45210dd Tidy up |ec_GFp_simple_point2oct| and friend. by Adam Langley · 6 years ago
  62. 2044181 Set output point to the generator when not on the curve. by Adam Langley · 6 years ago
  63. a312391 cavp_tlskdf_test.cc: include errno.h since errno is referenced. by Adam Langley · 6 years ago
  64. 091b455 Support running CAVP tests on an Android device. by Adam Langley · 6 years ago
  65. 472ba2c Require that Ed25519 |s| values be < order. by Adam Langley · 6 years ago
  66. f4b708c Add a function which folds BN_MONT_CTX_{new,set} together. by David Benjamin · 6 years ago
  67. feffb87 Make BN_bn2bin_padded work with non-minimal BIGNUMs. by David Benjamin · 6 years ago
  68. 385e4e9 Handle directive arguments with * in them. by David Benjamin · 6 years ago
  69. 6c41465 Remove redundant bn->top computation. by David Benjamin · 6 years ago
  70. 7979dbe Use bn_resize_words in BN_from_montgomery_word. by David Benjamin · 6 years ago
  71. 76ce04b Fix up BN_MONT_CTX_set with non-minimal values. by David Benjamin · 6 years ago
  72. 0758b68 Reject negative numbers in BN_{mod_mul,to,from}_montgomery. by David Benjamin · 6 years ago
  73. 9a5bfc0 Tidy up BN_mod_mul_montgomery. by David Benjamin · 6 years ago
  74. 2ccdf58 Factor out BN_to_montgomery(1) optimization. by David Benjamin · 6 years ago
  75. dc8b1ab Do RSA sqrt(2) business in BIGNUM. by David Benjamin · 6 years ago
  76. 43cf27e Add bn_copy_words. by David Benjamin · 6 years ago
  77. ad5cfdf Add initial support for non-minimal BIGNUMs. by David Benjamin · 6 years ago
  78. 884086e Remove x86_64 x25519 assembly. by David Benjamin · 6 years ago
  79. fa65113 Push an error if custom private keys fail. by David Benjamin · 6 years ago
  80. 4866920 Fix fuzzer mode suppressions. by David Benjamin · 6 years ago
  81. ddb57cf Add tests for split handshakes. by Adam Langley · 6 years ago
  82. 3fe8fa7 Add initial, experimental support for split handshakes. by Adam Langley · 6 years ago
  83. 7e5dd25 Remove draft22 and experiment2. by Steven Valdez · 6 years ago
  84. 3c034b2 Add support for QUIC transport params. by Nick Harper · 6 years ago
  85. a62dbf8 Move OPENSSL_FALLTHROUGH to internal headers. by David Benjamin · 6 years ago
  86. 5301c10 ssl_verify_peer_cert: implement |SSL_VERIFY_NONE| as advertised. by Matthew Braithwaite · 6 years ago
  87. e8d2439 Expose ssl_session_serialize to libssl. by Adam Langley · 6 years ago
  88. 0ab3f0c Notice earlier if a server echoes the TLS 1.3 compatibility session ID. by David Benjamin · 6 years ago
  89. 0ab86cf Require only that the nonce be strictly monotonic in TLS's AES-GCM by Adam Langley · 6 years ago
  90. 449a9e6 Make the gdb window larger. by Adam Langley · 6 years ago
  91. ab5a947 Reslice TLS AEAD setup. by Adam Langley · 6 years ago
  92. c61b577 Add some more utility functions to bytestring. by Adam Langley · 6 years ago
  93. 5a869aa Documentation typo. by David Benjamin · 6 years ago
  94. 610cdbb Switch some ints to bools and Spans. by David Benjamin · 6 years ago
  95. 32b59402 Don't leak the exponent bit width in BN_mod_exp_mont_consttime. by David Benjamin · 6 years ago
  96. cb1ad20 Use 51-bit limbs from fiat-crypto in 64-bit. by David Benjamin · 6 years ago
  97. a1bc1ba Fix up CTR_DRBG_update comment. by David Benjamin · 6 years ago
  98. 8017cdd Make BN_num_bits_word constant-time. by David Benjamin · 6 years ago
  99. b9f30bb Unwind total_num from wNAF_mul. by David Benjamin · 6 years ago
  100. d86c0d2 Pull the malloc out of compute_wNAF. by David Benjamin · 6 years ago