kris/boringssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
1,483 Commits 12 Branches 0 Tags 38 MiB
C 43.1%
C++ 23.5%
Go 13.6%
Raku 10.8%
Perl 4%
Other 4.9%
436bf82ee8
Go to file
David Benjamin 436bf82ee8 Prune ssl3_check_cert_and_algorithm. 
Most of the logic was redundant with checks already made in
ssl3_get_server_certificate. The DHE check was missing an ECDHE half
(and was impossible). The ECDSA check allowed an ECDSA certificate for
RSA. The only non-redundant check was a key usage check which,
strangely, is only done for ECDSA ciphers.

(Although this function called X509_certificate_type and checked sign
bits, those bits in X509_certificate_type are purely a function of the
key type and don't do anything.)

Change-Id: I8df7eccc0ffff49e4cfd778bd91058eb253b13cb
Reviewed-on: https://boringssl-review.googlesource.com/5047
Reviewed-by: Adam Langley <agl@google.com>
2015-06-08 22:27:12 +00:00
crypto Limit the number of warning alerts silently consumed. 2015-06-08 22:16:14 +00:00
decrepit Eliminate unnecessary includes from low-level crypto modules. 2015-04-13 20:49:18 +00:00
doc Inital import. 2014-06-20 13:17:32 -07:00
include/openssl Limit the number of warning alerts silently consumed. 2015-06-08 22:16:14 +00:00
ssl Prune ssl3_check_cert_and_algorithm. 2015-06-08 22:27:12 +00:00
tool Include base.h in tool/internal.h. 2015-06-08 14:52:13 -07:00
util Sync vs_toolschain.py up with Chromium. 2015-06-02 21:04:30 +00:00
.clang-format Inital import. 2014-06-20 13:17:32 -07:00
.gitignore Add generated documentation to .gitignore 2015-01-26 18:37:55 +00:00
BUILDING Add support for building with the Android NDK. 2015-05-05 00:31:46 +00:00
CMakeLists.txt Allow compilation for armv6 2015-06-02 18:16:13 +00:00
codereview.settings Add a codereview.settings file. 2014-11-18 22:21:33 +00:00
LICENSE Add LICENSE file. 2015-05-20 17:44:57 +00:00
STYLE Require that FOO_free functions do nothing on NULL. 2015-05-04 22:58:13 +00:00