boringssl

History

Adam Langley 3a2b47ab5b Don't use \|X509\| objects in \|CERT\|, by default. This change converts the \|CERT\| struct to holding certificates as binary blobs, rather than in parsed form. The members for holding the parsed form are still there, however, but are only used as a cache for the event that someone asks us for a non-owning pointer to the parsed leaf or chain. Next steps: * Move more functions in to ssl_x509.c * Create an X509_OPS struct of function pointers that will hang off the \|SSL_METHOD\| to abstract out the current calls to crypto/x509 operations. BUG=chromium:671420 Change-Id: Ifa05d88c49a987fd561b349705c9c48f106ec868 Reviewed-on: https://boringssl-review.googlesource.com/13280 Reviewed-by: Adam Langley <agl@google.com>		7 years ago
..
test	Ignore 0-RTT-capable tickets unless enabled.	7 years ago
CMakeLists.txt	Move a number of X.509 functions from ssl_lib.c to ssl_x509.c	7 years ago
custom_extensions.c	Pass explicit hs parameters into custom_extensions.c.	7 years ago
d1_both.c	Remove the rest of write_message.	7 years ago
d1_lib.c	Add a helper function for resetting SSL_get_error state.	7 years ago
d1_pkt.c	Work around language and compiler bug in memcpy, etc.	7 years ago
d1_srtp.c	Fix ssl_ctx_make_profiles error handling.	8 years ago
dtls_method.c	Remove the rest of write_message.	7 years ago
dtls_record.c	Don't use the buffer BIO in DTLS.	7 years ago
handshake_client.c	Remove mask_a and mask_k from CERT.	7 years ago
handshake_server.c	Don't use \|X509\| objects in \|CERT\|, by default.	7 years ago
internal.h	Don't use \|X509\| objects in \|CERT\|, by default.	7 years ago
s3_both.c	Adding V2ClientHello counter.	7 years ago
s3_enc.c	Work around language and compiler bug in memcpy, etc.	7 years ago
s3_lib.c	Don't use the buffer BIO in TLS.	7 years ago
s3_pkt.c	Don't use the buffer BIO in TLS.	7 years ago
ssl_aead_ctx.c	Allow dtls_seal_record to work in-place.	7 years ago
ssl_asn1.c	Enabling 0-RTT on new Session Tickets.	7 years ago
ssl_buffer.c	Work around language and compiler bug in memcpy, etc.	7 years ago
ssl_cert.c	Don't use \|X509\| objects in \|CERT\|, by default.	7 years ago
ssl_cipher.c	Remove old ChaCha20-Poly1305 AEAD.	7 years ago
ssl_ecdh.c	Remove New Hope key agreement.	7 years ago
ssl_file.c	Check for sk_X509_NAME_push failures.	8 years ago
ssl_lib.c	Don't use \|X509\| objects in \|CERT\|, by default.	7 years ago
ssl_rsa.c	Don't use \|X509\| objects in \|CERT\|, by default.	7 years ago
ssl_rsa_cc.cc	Convert one libssl function to C++11.	7 years ago
ssl_session.c	Enabling 0-RTT on new Session Tickets.	7 years ago
ssl_stat.c	Remove the rest of write_message.	7 years ago
ssl_test.cc	Fix ssl_test with BORINGSSL_ANDROID_SYSTEM.	7 years ago
ssl_x509.c	Don't use \|X509\| objects in \|CERT\|, by default.	7 years ago
t1_enc.c	Work around language and compiler bug in memcpy, etc.	7 years ago
t1_lib.c	Remove mask_a and mask_k from CERT.	7 years ago
tls13_both.c	Don't use \|X509\| objects in \|CERT\|, by default.	7 years ago
tls13_client.c	Ignore 0-RTT-capable tickets unless enabled.	7 years ago
tls13_enc.c	Work around language and compiler bug in memcpy, etc.	7 years ago
tls13_server.c	Rename tls13_prepare_* to tls13_add_*.	7 years ago
tls_method.c	Remove the rest of write_message.	7 years ago
tls_record.c	Don't use the buffer BIO in DTLS.	7 years ago