kris/boringssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
68e7124ddf
boringssl/ssl
History
Adam Langley 68e7124ddf Hold certificates in an SSL_SESSION as CRYPTO_BUFFERSs as well. 
This change adds a STACK_OF(CRYPTO_BUFFER) to an SSL_SESSION which
contains the raw form of the received certificates. The X509-based
members still exist, but their |enc| buffer will alias the
CRYPTO_BUFFERs.

(This is a second attempt at
https://boringssl-review.googlesource.com/#/c/12163/.)

BUG=chromium:671420

Change-Id: I508a8a46cab89a5a3fcc0c1224185d63e3d59cb8
Reviewed-on: https://boringssl-review.googlesource.com/12705
Reviewed-by: Adam Langley <agl@google.com>
Commit-Queue: Adam Langley <agl@google.com>
CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>
2016-12-13 17:28:25 +00:00
..
test Emulate the client_cert_cb with cert_cb. 2016-12-12 21:58:24 +00:00
CMakeLists.txt
custom_extensions.c Pass explicit hs parameters into custom_extensions.c. 2016-12-06 19:49:36 +00:00
d1_both.c Replace hash_current_message with get_current_message. 2016-11-15 06:52:10 +00:00
d1_lib.c Move a few more functions into *_method.c. 2016-12-08 16:29:19 +00:00
d1_pkt.c Expose SSL_max_seal_overhead. 2016-11-09 16:51:46 +00:00
d1_srtp.c Fix ssl_ctx_make_profiles error handling. 2016-09-27 13:27:06 +00:00
dtls_method.c Move a few more functions into *_method.c. 2016-12-08 16:29:19 +00:00
dtls_record.c Take the version parameter out of ssl_do_msg_callback. 2016-09-21 18:55:27 +00:00
handshake_client.c Hold certificates in an SSL_SESSION as CRYPTO_BUFFERSs as well. 2016-12-13 17:28:25 +00:00
handshake_server.c Hold certificates in an SSL_SESSION as CRYPTO_BUFFERSs as well. 2016-12-13 17:28:25 +00:00
internal.h Hold certificates in an SSL_SESSION as CRYPTO_BUFFERSs as well. 2016-12-13 17:28:25 +00:00
s3_both.c Move state and next_state to SSL_HANDSHAKE. 2016-12-12 22:09:01 +00:00
s3_enc.c Move key_block into SSL_HANDSHAKE. 2016-11-09 17:02:33 +00:00
s3_lib.c Set up the SSL_HANDSHAKE object earlier. 2016-12-12 21:59:06 +00:00
s3_pkt.c Expose SSL_max_seal_overhead. 2016-11-09 16:51:46 +00:00
ssl_aead_ctx.c Validate input iv/mac sizes in SSL_AEAD_CTX_new. 2016-10-28 21:25:35 +00:00
ssl_asn1.c Hold certificates in an SSL_SESSION as CRYPTO_BUFFERSs as well. 2016-12-13 17:28:25 +00:00
ssl_buffer.c Add SSL_is_dtls. 2016-08-02 20:43:58 +00:00
ssl_cert.c Hold certificates in an SSL_SESSION as CRYPTO_BUFFERSs as well. 2016-12-13 17:28:25 +00:00
ssl_cipher.c Remove CECPQ1 (experimental post-quantum key agreement). 2016-12-09 19:16:56 +00:00
ssl_ecdh.c Remove New Hope key agreement. 2016-12-10 01:06:31 +00:00
ssl_file.c Check for sk_X509_NAME_push failures. 2016-09-27 13:18:37 +00:00
ssl_lib.c Push the difference in chain semantics to the edge. 2016-12-13 17:18:53 +00:00
ssl_rsa.c Rename X.509 members in |SSL_SESSION| and |CERT|. 2016-11-09 20:07:57 +00:00
ssl_session.c Hold certificates in an SSL_SESSION as CRYPTO_BUFFERSs as well. 2016-12-13 17:28:25 +00:00
ssl_stat.c Move state and next_state to SSL_HANDSHAKE. 2016-12-12 22:09:01 +00:00
ssl_test.cc Push the difference in chain semantics to the edge. 2016-12-13 17:18:53 +00:00
t1_enc.c Pass explicit hs parameters into t1_enc.c. 2016-12-06 19:49:46 +00:00
t1_lib.c Support setting per-connection OCSP staple 2016-12-08 20:29:43 +00:00
tls13_both.c Hold certificates in an SSL_SESSION as CRYPTO_BUFFERSs as well. 2016-12-13 17:28:25 +00:00
tls13_client.c Emulate the client_cert_cb with cert_cb. 2016-12-12 21:58:24 +00:00
tls13_enc.c Pass explicit hs parameters to tls13_*.c. 2016-12-06 19:49:24 +00:00
tls13_server.c Push the difference in chain semantics to the edge. 2016-12-13 17:18:53 +00:00
tls_method.c Move a few more functions into *_method.c. 2016-12-08 16:29:19 +00:00
tls_record.c Skipping early data on 0RTT rejection. 2016-12-01 20:16:08 +00:00