1. 12a3e7e Check for invalid ALPN inputs in SSL_(CTX_)set_alpn_protos. by David Benjamin · 17 hours ago master
  2. e4c1917 Don't duplicate ServerHello construction code. by David Benjamin · 17 hours ago
  3. 3b8c5ec Rearrange key share and early data logic. by David Benjamin · 17 hours ago
  4. e2b7bb7 Only skip early data with HRR when offered. by David Benjamin · 17 hours ago
  5. 2de33c6 Add ECH server config API to ssl_ctx_api fuzzer by Dan McArdle · 36 hours ago
  6. 3af8854 Fix ppc64le build. by Adam Langley · 2 days ago
  7. 669ffe6 Simplify the Lucky13 mitigation. by David Benjamin · 6 days ago
  8. 00e434d Add ECH server (draft-ietf-tls-esni-09). by Daniel McArdle · 6 days ago
  9. 61d5aab runner: Remove unused field by David Benjamin · 6 days ago
  10. ca65bff runner: Construct finishedHash earlier. by David Benjamin · 6 days ago
  11. c31fb79 Simplify tls_cbc.c slightly. by David Benjamin · 6 days ago
  12. 7a0834b Remove remnants of CBC SHA2 cipher suites. by David Benjamin · 6 days ago
  13. bff8834 runner: Test different V2ClientHello challenge lengths. by David Benjamin · 6 days ago
  14. 6810f0e runner: Ensure helloBytes is always the same as hello.marshal(). by David Benjamin · 6 days ago
  15. fa2d3d5 runner: Fix ECH confirmation calculation with PSKs in tests. by David Benjamin · 8 days ago
  16. 7d2ddd2 runner: Fix HPKE parameter order. by David Benjamin · 8 days ago
  17. d791fbd runner: UpdateForHelloRetryRequest cannot fail. by David Benjamin · 8 days ago
  18. 4151b9f runner: Don't use the buffer in TLS 1.3. by David Benjamin · 8 days ago
  19. 4b854a6 runner: Don't maintain two copies of the same transcript hash. by David Benjamin · 8 days ago
  20. 99f6d4b runner: Remove remnants of SSL 3.0. by David Benjamin · 8 days ago
  21. 5f757bc runner: Fix writeClientHash and writeRecord ordering. by David Benjamin · 8 days ago
  22. 7a15a70 runner: Remove CheckTLS13DowngradeRandom. by David Benjamin · 8 days ago
  23. f225516 runner: Remove remnants of the separate HelloRetryRequest message. by David Benjamin · 8 days ago
  24. 0508271 runner: Store a cipherSuite in ClientSessionState. by David Benjamin · 8 days ago
  25. 26a589e runner: Move writeHash to the finishedHash struct. by David Benjamin · 8 days ago
  26. fd73985 Fix the spelling of HPKE AEAD constants. by David Benjamin · 8 days ago
  27. dfde04f Don't reset server callback expectations on new handshake. by David Benjamin · 12 days ago
  28. 8501579 Fix MockQuicTransport::Flush error handling. by David Benjamin · 12 days ago
  29. 15e0f67 Fold ripemd/internal.h into ripemd.c. by David Benjamin · 12 days ago
  30. ca45987 Move load/store helpers to crypto/internal.h. by David Benjamin · 12 days ago
  31. 8d4c8fc Make words in crypto/fipsmodule/modes actually words. by David Benjamin · 12 days ago
  32. 6b9c012 Handle EINTR more in handshaker.cc. by David Benjamin · 12 days ago
  33. 084064b Add a few missing SSL_R_BIO_NOT_SET cases. by David Benjamin · 12 days ago
  34. 9bcf307 Fix some unreachable code in the QUIC handshaker driver. by David Benjamin · 12 days ago
  35. 0a6c3fc Rearrange SSLKeyShare::Serialize. by David Benjamin · 13 days ago
  36. 08b1729 Fix ssl/internal.h sectioning. by David Benjamin · 13 days ago
  37. b62a48f Remove some now unnecessary test exclusions from split handshakes. by David Benjamin · 13 days ago
  38. 60a78dc Remove tls13-split-handshakes flag. by David Benjamin · 13 days ago
  39. 953650c Define HANDSHAKER_SUPPORTED in once place. by David Benjamin · 13 days ago
  40. b9b0363 Tidy up handshaker tester. by David Benjamin · 13 days ago
  41. 1a93f4f modulewrapper: add option to print build information. by Adam Langley · 14 days ago
  42. 0da75f3 FIPS counters for AES-CTR. by Adam Langley · 2 weeks ago
  43. 3af6226 Enforce that pre_shared_key must come with psk_key_exchange_modes. by David Benjamin · 2 weeks ago
  44. 4aef687 Zero out FIPS counters. by Adam Langley · 2 weeks ago
  45. da890de Remove is_resume field on TestState. by David Benjamin · 2 weeks ago
  46. 04c44d9 Remove OPENSSL_DANGEROUS_RELEASE_PTHREAD_KEY build flag. by David Benjamin · 2 weeks ago
  47. 20f7bba Add some warnings on how to use OPENSSL_memory_* functions. by David Benjamin · 2 weeks ago
  48. a24ab54 Use an unsized helper for truncated SHA-512 variants. by David Benjamin · 2 weeks ago
  49. 139adff Fix mismatch between header and implementation of bn_sqr_comba8. by David Benjamin · 2 weeks ago
  50. 49f0329 Remove GCC 4.8.99 check. by David Benjamin · 3 weeks ago
  51. d0b66c7 Bump minimum CMake version. by David Benjamin · 3 weeks ago
  52. edfe413 Automatically enable C11 atomics when available. by David Benjamin · 3 weeks ago
  53. 5650816 Make generate_build_files.py python3 compatible. by Yoshisato Yanagisawa · 3 weeks ago
  54. 9be3252 Remove X509_REQ_set_extension_nids and document related functions. by David Benjamin · 3 weeks ago
  55. a99d3a8 Document a few more functions in x509.h. by David Benjamin · 3 weeks ago
  56. ac85c03 Do not access value.ptr with V_ASN1_BOOLEAN. by David Benjamin · 3 weeks ago
  57. 477b309 Add X509_PUBKEY_get0_public_key. by David Benjamin · 3 weeks ago
  58. 502fcee Test empty EVP_CIPHER inputs and fix exact memcpy overlap. by David Benjamin · 3 weeks ago
  59. e5fe31c Revert "Implement rsa_pkcs1_sha256_legacy." by David Benjamin · 3 weeks ago
  60. 8c31179 Fix unnecessarily direction-specific tests in cipher_tests.txt by David Benjamin · 3 weeks ago
  61. d9ee55a Refactor HPKE API to include explicit length parameters. by Dan McArdle · 4 weeks ago
  62. c9d3265 Generalize make_errors.go to allow EVP covering multiple directories. by David Benjamin · 4 weeks ago
  63. b09f283 Add a Windows no-op impl of BORINGSSL_self_test by Bradley Hess · 4 weeks ago
  64. b214741 Only pass -handshaker-path in split handshakes tests. by David Benjamin · 4 weeks ago
  65. c953ee4 Add RNG support for FreeBSD. by Bradley Hess · 4 weeks ago
  66. fb855a2 Move fips.c into a subdirectory. by David Benjamin · 4 weeks ago
  67. a3437c0 Implement rsa_pkcs1_sha256_legacy. by David Benjamin · 4 weeks ago
  68. 2c1c9fa Better document nullable X.509 getters. by David Benjamin · 4 weeks ago
  69. 1eae297 runner: Remove redundant -enable-all-curves shim flag. by David Benjamin · 4 weeks ago
  70. 87aafb6 Initialize nonce in PerAEADTest.ABI. by David Benjamin · 4 weeks ago
  71. 3d15a94 Document ASN1_TYPE and related functions. by David Benjamin · 4 weeks ago
  72. f7b87c8 fips: add counters. by Adam Langley · 4 weeks ago
  73. acf6149 Align with OpenSSL on constness of static ASN1_OBJECTs. by David Benjamin · 4 weeks ago
  74. 6b48efa Add -rr-record flag to runner.go. by Dan McArdle · 5 weeks ago
  75. 04b3213 Register NAME_CONSTRAINTS with bssl::UniquePtr. by David Benjamin · 6 weeks ago
  76. 215f4a0 Register POLICY_MAPPING with bssl::UniquePtr. by David Benjamin · 6 weeks ago
  77. dfe0b01 Stub out some more of PKCS7. by David Benjamin · 6 weeks ago
  78. 24df734 Remove TODO to reverse the output of PKCS12_parse. by David Benjamin · 6 weeks ago
  79. d4fdb7b Make the X509_VAL structure opaque. by David Benjamin · 6 weeks ago
  80. abd6c05 Support creating unencrypted PKCS#12 files. by David Benjamin · 6 weeks ago
  81. 84c0c90 Move PKCS#12 samples to embed_test_data. by David Benjamin · 6 weeks ago
  82. a1d1a67 Remove some remnants of TLS 1.3 downgrade carveouts. by David Benjamin · 6 weeks ago
  83. e9315d5 Remove X509_REQ_to_X509. by David Benjamin · 6 weeks ago
  84. e7bb89b Fix OPENSSL_EC_* constants and add EC_GROUP_get_asn1_flag by David Benjamin · 6 weeks ago
  85. 0a86cbf RAND_set_rand_method returns int. by David Benjamin · 7 weeks ago
  86. eb5640b Check the inner and outer CRL signature algorithms match. by David Benjamin · 7 weeks ago
  87. a3aeea7 Remove block_mask from EVP_CIPHER_CTX. by David Benjamin · 7 weeks ago
  88. f69624a Document a couple more functions in x509.h. by David Benjamin · 7 weeks ago
  89. 89d1241 Define X509V*_VERSION constants. by David Benjamin · 7 weeks ago
  90. d707bc0 Handle the default X.509 version explicitly. by David Benjamin · 7 weeks ago
  91. 5652262 Compile for RISC-V. by Adam Langley · 7 weeks ago
  92. 409ea28 Add ECDSA nonce-testing functions. by David Benjamin · 7 weeks ago
  93. fd68d75 Rearrange ECDSA implementation. by David Benjamin · 7 weeks ago
  94. e7b5675 Split the FIPS mode PRNG lock in two. by David Benjamin · 7 weeks ago
  95. 94634a7 Remove legacy vs_toolchain.py environment variable. by David Benjamin · 7 weeks ago
  96. 0653147 runner: Rename 'masterSecret' on session objects to plain 'secret'. by David Benjamin · 7 weeks ago
  97. 8640b41 Test ECDSA signing is non-deterministic. by David Benjamin · 7 weeks ago
  98. bc0a4f1 acvp: split ACVP modulewrapper for reuse by Trusty by Stephen Crane · 7 weeks ago
  99. 1a7456a No-op CL to trigger some builds. by David Benjamin · 8 weeks ago
  100. 48d80bb Use CIPD Go packages. by David Benjamin · 8 weeks ago