aboutsummaryrefslogtreecommitdiff
path: root/ssl
AgeCommit message (Expand)AuthorFilesLines
4 daysMake BoringSSL initialization-lessDavid Benjamin2-7/+1
7 daysImplement rsa_pkcs1_sha256_legacy.David Benjamin9-120/+230
7 daysSend a consistent alert when the peer sends a bad signature algorithmDavid Benjamin6-15/+20
2024-06-10[bogo] Compute length in record header before encrypting.Nick Harper1-25/+33
2024-06-05Make SSL_select_next_proto more robust to invalid calls.David Benjamin4-30/+88
2024-06-04Test various empty string cases with NPN callbacksDavid Benjamin7-13/+91
2024-06-04Mark kyber as experimentalBob Beck1-0/+1
2024-05-24Set the minumum TLS version to (D)TLS 1.2 by defaultDavid Benjamin3-5/+15
2024-05-23More ECH certificatesRoland Shoemaker1-1/+16
2024-05-23Add error string to JSON test result outputRoland Shoemaker1-3/+3
2024-05-21Enable -expect-curve-id in NotJustKyberKeyShareFilippo Valsorda1-2/+1
2024-05-09Add certificates to the remaining ECH client testsRoland Shoemaker1-2/+13
2024-04-26Remove remnants of C++ runtime workaroundsDavid Benjamin1-10/+4
2024-04-26Reset DTLS1_BITMAP without resorting to memsetDavid Benjamin1-1/+1
2024-04-23Add certificates to a couple of testsRoland Shoemaker1-0/+56
2024-04-22Change unsupported KEM identifierRoland Shoemaker1-3/+2
2024-04-22Make SSL_CTX_set_keylog_callback constant timeDavid Benjamin1-8/+14
2024-04-17Add some tests for SSL_CTX_set_keylog_callbackDavid Benjamin1-0/+108
2024-04-17Switch some pointer arithmetic to spansDavid Benjamin1-4/+2
2024-04-04Increase DTLS window size from 64 to 256Nick Harper3-11/+16
2024-03-20Move ssl and decrepit sources to sources.cmakeDavid Benjamin1-48/+0
2024-03-12Fix spelling of IdentifierBob Beck3-4/+4
2024-03-12Don't dereference hs->credential on TLS 1.2 PSK ciphersDavid Benjamin2-15/+23
2024-03-11Fix a number of cases overwriting certificates, keys, etc. with SSL_CREDENTIALDavid Benjamin5-31/+200
2024-03-07Remove an unused runner/shim flag in SSL testsDavid Benjamin2-2/+0
2024-03-07Only negotiate ECDHE curves and sigalgs onceDavid Benjamin6-129/+121
2024-03-07Add an SSL_CREDENTIAL API for ECDSA/RSA and delegated credentialsDavid Benjamin27-1421/+2465
2024-03-07Rename CRYPTO_get_ex_new_index to CRYPTO_get_ex_new_index_exDavid Benjamin2-3/+4
2024-03-06Remove unused group_id parameter in TLS 1.3 cipher suite selectionDavid Benjamin3-23/+13
2024-03-06Check ECDSA curves in TLS 1.2 serversDavid Benjamin6-20/+132
2024-03-06Check client certificate types in TLS <= 1.2David Benjamin6-6/+70
2024-03-06runner: Add a test for hint mismatch due to public keyDavid Benjamin1-0/+39
2024-03-05runner: Configure all relevant fields from the Credential typeDavid Benjamin6-250/+220
2024-03-05runner: Rename CertificateChain to CredentialDavid Benjamin7-151/+153
2024-03-05Align CRYPTO_get_ex_new_index with the public API's calling conventionDavid Benjamin2-18/+4
2024-03-05Make bssl_shim's setup logic infallibleDavid Benjamin1-23/+24
2024-03-05Slightly simplify ssl_x509.ccDavid Benjamin1-61/+37
2024-03-05Forbid RSA delegated credentialsDavid Benjamin2-1/+30
2024-03-05Fix delegated credential signature algorithm handlingDavid Benjamin8-50/+119
2024-03-05Make DelegatedCredentials-KeyMismatch test less confusingDavid Benjamin1-30/+5
2024-03-05Use slices.Contains in ssl/test/runnerDavid Benjamin2-11/+3
2024-03-05Fold ssl_add_cert_chain into its callerDavid Benjamin5-41/+25
2024-03-04runner: Remove the ability to configure multiple certificatesDavid Benjamin5-203/+106
2024-03-04runner: Use go:embedDavid Benjamin1-49/+52
2024-02-28Generate certs on the fly in runner, pass trusted cert to shimRoland Shoemaker20-879/+611
2024-02-23Add tests for what happens when no certificate is configuredDavid Benjamin1-0/+85
2024-02-23Introduce a test helper for asserting on the errorDavid Benjamin1-18/+12
2024-02-23Make an include/openssl/experimental. Move kyber to it for now.Bob Beck1-1/+1
2024-02-23Deprecate and simplify SSL_CTX_check_private_keyDavid Benjamin5-34/+114
2024-02-23Use std::copy instead of OPENSSL_memcpy for the internal bssl::Array::CopyFromDavid Benjamin1-1/+2
generated by cgit v1.1 at 2024-06-25 01:29:44 +0000