kris/boringssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
3a2b47ab5b
boringssl/ssl
History
Adam Langley 3a2b47ab5b Don't use |X509| objects in |CERT|, by default. 
This change converts the |CERT| struct to holding certificates as binary
blobs, rather than in parsed form. The members for holding the parsed
form are still there, however, but are only used as a cache for the
event that someone asks us for a non-owning pointer to the parsed leaf
or chain.

Next steps:
  * Move more functions in to ssl_x509.c
  * Create an X509_OPS struct of function pointers that will hang off
    the |SSL_METHOD| to abstract out the current calls to crypto/x509
    operations.

BUG=chromium:671420

Change-Id: Ifa05d88c49a987fd561b349705c9c48f106ec868
Reviewed-on: https://boringssl-review.googlesource.com/13280
Reviewed-by: Adam Langley <agl@google.com>
2017-01-27 16:21:05 +00:00
..
test Ignore 0-RTT-capable tickets unless enabled. 2017-01-26 21:29:32 +00:00
CMakeLists.txt Move a number of X.509 functions from ssl_lib.c to ssl_x509.c 2017-01-24 17:53:07 +00:00
custom_extensions.c
d1_both.c Remove the rest of write_message. 2017-01-25 23:39:23 +00:00
d1_lib.c Add a helper function for resetting SSL_get_error state. 2017-01-04 04:48:44 +00:00
d1_pkt.c Work around language and compiler bug in memcpy, etc. 2016-12-21 20:34:47 +00:00
d1_srtp.c
dtls_method.c Remove the rest of write_message. 2017-01-25 23:39:23 +00:00
dtls_record.c Don't use the buffer BIO in DTLS. 2017-01-25 23:35:32 +00:00
handshake_client.c Remove mask_a and mask_k from CERT. 2017-01-27 15:44:17 +00:00
handshake_server.c Don't use |X509| objects in |CERT|, by default. 2017-01-27 16:21:05 +00:00
internal.h Don't use |X509| objects in |CERT|, by default. 2017-01-27 16:21:05 +00:00
s3_both.c Adding V2ClientHello counter. 2017-01-26 20:32:00 +00:00
s3_enc.c Work around language and compiler bug in memcpy, etc. 2016-12-21 20:34:47 +00:00
s3_lib.c Don't use the buffer BIO in TLS. 2017-01-25 23:35:47 +00:00
s3_pkt.c Don't use the buffer BIO in TLS. 2017-01-25 23:35:47 +00:00
ssl_aead_ctx.c Allow dtls_seal_record to work in-place. 2017-01-25 16:27:32 +00:00
ssl_asn1.c Enabling 0-RTT on new Session Tickets. 2017-01-06 16:24:43 +00:00
ssl_buffer.c Work around language and compiler bug in memcpy, etc. 2016-12-21 20:34:47 +00:00
ssl_cert.c Don't use |X509| objects in |CERT|, by default. 2017-01-27 16:21:05 +00:00
ssl_cipher.c Remove old ChaCha20-Poly1305 AEAD. 2017-01-19 23:27:54 +00:00
ssl_ecdh.c Remove New Hope key agreement. 2016-12-10 01:06:31 +00:00
ssl_file.c
ssl_lib.c Don't use |X509| objects in |CERT|, by default. 2017-01-27 16:21:05 +00:00
ssl_rsa_cc.cc Convert one libssl function to C++11. 2017-01-17 21:51:06 +00:00
ssl_rsa.c Don't use |X509| objects in |CERT|, by default. 2017-01-27 16:21:05 +00:00
ssl_session.c Enabling 0-RTT on new Session Tickets. 2017-01-06 16:24:43 +00:00
ssl_stat.c Remove the rest of write_message. 2017-01-25 23:39:23 +00:00
ssl_test.cc Fix ssl_test with BORINGSSL_ANDROID_SYSTEM. 2017-01-25 16:23:10 +00:00
ssl_x509.c Don't use |X509| objects in |CERT|, by default. 2017-01-27 16:21:05 +00:00
t1_enc.c Work around language and compiler bug in memcpy, etc. 2016-12-21 20:34:47 +00:00
t1_lib.c Remove mask_a and mask_k from CERT. 2017-01-27 15:44:17 +00:00
tls13_both.c Don't use |X509| objects in |CERT|, by default. 2017-01-27 16:21:05 +00:00
tls13_client.c Ignore 0-RTT-capable tickets unless enabled. 2017-01-26 21:29:32 +00:00
tls13_enc.c Work around language and compiler bug in memcpy, etc. 2016-12-21 20:34:47 +00:00
tls13_server.c Rename tls13_prepare_* to tls13_add_*. 2017-01-25 23:37:30 +00:00
tls_method.c Remove the rest of write_message. 2017-01-25 23:39:23 +00:00
tls_record.c Don't use the buffer BIO in DTLS. 2017-01-25 23:35:32 +00:00