boringssl

History

David Benjamin 0fc37ef082 Fix a number of sigalg scope issues. peer_sigalgs should live on SSL_HANDSHAKE. This both releases a little bit of memory after the handshake is over and also avoids the bug where the sigalgs get dropped if SSL_set_SSL_CTX is called at a bad time. See also upstream's 14e14bf6964965d02ce89805d9de867f000095aa. This only affects consumers using the old SNI callback and not select_certificate_cb. Add a test that the SNI callback works as expected. In doing so, add an SSL_CTX version of the signing preferences API. This is a property of the cert/key pair (really just the key) and should be tied to that. This makes it a bit easier to have the regression test work with TLS 1.2 too. I thought we'd fixed this already, but apparently not... :-/ BUG=95 Change-Id: I75b02fad4059e6aa46c3b05183a07d72880711b3 Reviewed-on: https://boringssl-review.googlesource.com/10445 Reviewed-by: David Benjamin <davidben@google.com> Commit-Queue: David Benjamin <davidben@google.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>		2016-08-24 00:24:34 +00:00
..
test	Fill in the curve ID for TLS 1.3.	2016-08-22 18:05:01 +00:00
CMakeLists.txt	Add TLS 1.3 1-RTT.	2016-07-18 09:54:46 +00:00
custom_extensions.c	Send unsupported_extension on unexpected ServerHello extensions.	2016-08-01 18:56:31 +00:00
d1_both.c	Switch finish_handshake to release_current_message.	2016-07-28 22:59:18 +00:00
d1_lib.c	Test that servers enforce session timeouts.	2016-08-03 21:27:07 +00:00
d1_pkt.c	Move post-handshake message handling out of read_app_data.	2016-07-29 21:05:49 +00:00
d1_srtp.c	Make kSRTPProfiles static.	2016-05-13 14:12:22 +00:00
dtls_method.c	Switch finish_handshake to release_current_message.	2016-07-28 22:59:18 +00:00
dtls_record.c	Fix the alias checks in dtls_record.c.	2016-06-09 21:11:22 +00:00
handshake_client.c	Remove ssl->verify_result.	2016-08-19 18:29:43 +00:00
handshake_server.c	Fix a number of sigalg scope issues.	2016-08-24 00:24:34 +00:00
internal.h	Fix a number of sigalg scope issues.	2016-08-24 00:24:34 +00:00
s3_both.c	Fix a number of sigalg scope issues.	2016-08-24 00:24:34 +00:00
s3_enc.c	Splitting SSL session state.	2016-07-29 21:22:46 +00:00
s3_lib.c	Pass a ClientHello into ssl3_choose_cipher.	2016-08-11 05:11:39 +00:00
s3_pkt.c	Stop pretending to ssl_clear_bad_session.	2016-08-03 21:07:36 +00:00
ssl_aead_ctx.c	Fixing iv_length for TLS 1.3.	2016-06-16 17:04:14 +00:00
ssl_asn1.c	Undo rename of tlsext_tick_lifetime_hint.	2016-08-09 17:50:28 +00:00
ssl_buffer.c	Add SSL_is_dtls.	2016-08-02 20:43:58 +00:00
ssl_cert.c	Fix a number of sigalg scope issues.	2016-08-24 00:24:34 +00:00
ssl_cipher.c	Adding ARRAY_SIZE macro for getting the size of constant arrays.	2016-08-19 19:30:39 +00:00
ssl_ecdh.c	Adding ARRAY_SIZE macro for getting the size of constant arrays.	2016-08-19 19:30:39 +00:00
ssl_file.c	Banish SSL_add_dir_cert_subjects_to_stack and OPENSSL_DIR_CTX to decrepit.	2016-04-27 18:40:25 +00:00
ssl_lib.c	Adding ARRAY_SIZE macro for getting the size of constant arrays.	2016-08-19 19:30:39 +00:00
ssl_rsa.c	Fix a number of sigalg scope issues.	2016-08-24 00:24:34 +00:00
ssl_session.c	Remove SSL_SESSION_get_key_exchange_info.	2016-08-19 20:05:06 +00:00
ssl_stat.c	Factor out the client_cert_cb code.	2016-07-20 09:25:52 +00:00
ssl_test.cc	Fix a number of sigalg scope issues.	2016-08-24 00:24:34 +00:00
t1_enc.c	Splitting SSL session state.	2016-07-29 21:22:46 +00:00
t1_lib.c	Fix a number of sigalg scope issues.	2016-08-24 00:24:34 +00:00
tls13_both.c	Implement BORINGSSL_UNSAFE_FUZZER_MODE for TLS 1.3.	2016-08-19 19:11:34 +00:00
tls13_client.c	Request contexts are now illegal during the handshake.	2016-08-18 15:40:40 +00:00
tls13_enc.c	Adding code to send session as PSK Identity.	2016-08-16 20:35:32 +00:00
tls13_server.c	Fix a number of sigalg scope issues.	2016-08-24 00:24:34 +00:00
tls_method.c	Add TLS_{client,server}_method.	2016-08-05 18:59:32 +00:00
tls_record.c	Stop pretending to ssl_clear_bad_session.	2016-08-03 21:07:36 +00:00