1. 4fe18f3 Merge pull request #437 from h2o/kazuho/ech by Kazuho Oku · 2 days ago main
  2. 444b745 update expected behavior following the change in the previous commit by Kazuho Oku · 2 days ago
  3. 8755654 send ECH_REQUIRED alert after Finished, as the draft suggests by Kazuho Oku · 2 days ago
  4. 8641129 immedaetly send alert and exit when ECH_REQUIRED is generated by Kazuho Oku · 2 days ago
  5. 113fb5d length of public_name field is 1-byte by Kazuho Oku · 2 days ago
  6. e6d9bd0 turn `-E` into a read-write file so that it can be used for storing retry_configs by Kazuho Oku · 2 days ago
  7. 347a32e add API for encoding ECHConfig by Kazuho Oku · 3 days ago
  8. 04dfe46 reflect the fact that the supported set of HPKE cipher-suites can be different between ECHConfigs by Kazuho Oku · 3 days ago
  9. 62c4bca Merge branch 'master' into kazuho/ech by Kazuho Oku · 4 days ago
  10. 27fff01 Merge pull request #451 from h2o/kazuho/openssl-async-default-off by Kazuho Oku · 4 days ago
  11. d1905bd follow the convention of libssl setting the feature off by default by Kazuho Oku · 4 days ago
  12. 8758ee3 Merge branch 'kazuho/ech-msvc' into kazuho/ech (reorganize & merge #449) by Kazuho Oku · 5 days ago
  13. bf81477 use bogus blob rather than adding one byte to only one of the variables, as the latter could be confusing by Kazuho Oku · 5 days ago
  14. ae30a2c use sprintf instead by Kazuho Oku · 5 days ago
  15. 5bbd77b fix stuff that MSVC does not like by Christian Huitema · 5 days ago
  16. 398d39c explicit cast to suppress warning by Christian Huitema · 5 days ago
  17. 7470a50 [msvc] remove picotls-esni by Christian Huitema · 5 days ago
  18. e8fe79e Merge branch 'master' into kazuho/ech by Kazuho Oku · 5 days ago
  19. a4c3e53 Merge pull request #422 from h2o/kazuho/async-sign by Kazuho Oku · 5 days ago
  20. c6d52f3 Merge branch 'master' into kazuho/ech by Kazuho Oku · 7 days ago
  21. 6656a3a Merge branch 'master' into kazuho/async-sign by Kazuho Oku · 8 days ago
  22. 7e97d3e Merge pull request #445 from h2o/kazuho/ptlslog-u32-warning by Kazuho Oku · 9 days ago
  23. df35659 encrypted_client_hello extension cannot be referred to by ech_outer_extensions by Kazuho Oku · 10 days ago
  24. a3cfa2f rebuild error is ILLEGAL_PARAMETER by Kazuho Oku · 10 days ago
  25. f0360b4 add test for rebuilding inner CH by Kazuho Oku · 10 days ago
  26. 48c7a92 no need to write after duplicate by Kazuho Oku · 10 days ago
  27. 21cf7c2 when ECH exchange is complete reduce the number of hashes too by Kazuho Oku · 10 days ago
  28. 80e1c4f clear remaining ECH state even when HRR is used by Kazuho Oku · 10 days ago
  29. 89cfbe2 Merge branch 'master' into kazuho/ech by Kazuho Oku · 10 days ago
  30. 67fa009 Merge pull request #444 from h2o/kazuho/newextmap-compressedcert by Kazuho Oku · 10 days ago
  31. 4666ab2 suppress warning on Xcode by Kazuho Oku · 10 days ago
  32. 16e46d5 we support one more extension by Kazuho Oku · 10 days ago
  33. e3666d4 track known extensions rather than the smallest 64 (otherwise we cannot track the draft codepoints of ECH extensions) by Kazuho Oku · 10 days ago
  34. 5aa73f3 use the existing function to discard ECH state after Hello exchange by Kazuho Oku · 10 days ago
  35. 6648158 dispose of ECH AEAD context during handshake, decryption failure of inner CH in 2nd CH is fatal by Kazuho Oku · 10 days ago
  36. cab1a37 add new extensions to the table, rely on that by Kazuho Oku · 10 days ago
  37. 7208a7e Merge branch 'master' into kazuho/ech by Kazuho Oku · 10 days ago
  38. 6c829ef Merge pull request #443 from h2o/kazuho/newextmap by Kazuho Oku · 10 days ago
  39. dbdee07 split SH and HRR of the table, so as to align with that of RFC 8446 by Kazuho Oku · 10 days ago
  40. 3d0efeb switch to a table by Kazuho Oku · 10 days ago
  41. cd4aaa4 use constant, state check in `decode_server_hello` by Kazuho Oku · 11 days ago
  42. a374e42 rely on the decode function by Kazuho Oku · 11 days ago
  43. 449bbec reorder and clarify the logic by Kazuho Oku · 11 days ago
  44. 901be76 payload is at least one byte by Kazuho Oku · 11 days ago
  45. 65f4c7a oops by Kazuho Oku · 11 days ago
  46. 3ad9194 ignore ECHConfig that have IP address as public name by Kazuho Oku · 11 days ago
  47. 486e6f6 use `ptls_decode8` by Kazuho Oku · 11 days ago
  48. 4e01405 Merge branch 'master' into kazuho/ech by Kazuho Oku · 11 days ago
  49. efb310f Merge pull request #442 from h2o/kazuho/decode8 by Kazuho Oku · 11 days ago
  50. 3836d8d here also by Kazuho Oku · 11 days ago
  51. 1e791df `ptls_decode8` for consistency by Kazuho Oku · 11 days ago
  52. 9a95d7f enc is at least one byte by Kazuho Oku · 11 days ago
  53. 89779c4 create helper by Kazuho Oku · 11 days ago
  54. 04b67ad report error code by Kazuho Oku · 11 days ago
  55. a6672c0 public_name is at least one byte by Kazuho Oku · 11 days ago
  56. 054db85 pass server-name as argument as it can be ECH.public_name by Kazuho Oku · 11 days ago
  57. 92479ba merge the struct by Kazuho Oku · 11 days ago
  58. c58adc7 do not use ECH even when config is provided, unless server name is a DNS name by Kazuho Oku · 11 days ago
  59. 761cc03 add note that we are not following the spec by Kazuho Oku · 11 days ago
  60. 1c7b115 clang-format by Kazuho Oku · 11 days ago
  61. 37d4c33 in PSK mode, CertificateRequest is rejected by the state machine (and when ECH is rejected, we send ECH_REQUIRED alert right above) by Kazuho Oku · 11 days ago
  62. a91ae5f send retry_config only when we are capable of accepting ECH by Kazuho Oku · 14 days ago
  63. 1672380 [ECH] add I/F to obtain kem/cipher being used by Kazuho Oku · 14 days ago
  64. 909d974 retain innerCH.random separately by Kazuho Oku · 14 days ago
  65. 6ff7ee6 outer- and inner-random have to be identical unless ECH is used by Kazuho Oku · 14 days ago
  66. 697e7b4 unless the client offered ECH, reject EE.ECH by Kazuho Oku · 14 days ago
  67. 3f07e64 move the condition out, add comment by Kazuho Oku · 14 days ago
  68. 5038530 better to rename "select_one" now that we have `select_outer` that selects "one" of the CH by Kazuho Oku · 14 days ago
  69. 7f59712 add comment by Kazuho Oku · 14 days ago
  70. 54d10fa consistent naming convention by Kazuho Oku · 14 days ago
  71. 50c428c make it simple by Kazuho Oku · 14 days ago
  72. 2ea2080 clarify the contract by Kazuho Oku · 14 days ago
  73. 35992d7 Merge pull request #439 from DavidKorczynski/cifuzz-int by Kazuho Oku · 14 days ago
  74. 9669e49 dispose state when AEAD decryption fails, otherwise `ptls_is_ech_handshake` returns true by Kazuho Oku · 14 days ago
  75. e2e6dc2 p256 might be the only algorithm that we support by Kazuho Oku · 14 days ago
  76. 9edab68 it's a MISmatch by Kazuho Oku · 14 days ago
  77. c461703 send ECH_REQUIRED alert if rejected, saving retry_configs correctly by Kazuho Oku · 14 days ago
  78. 5875465 split ECH config applicability testing (ignore upon failure) vs. ECH instatiation error (reported) by Kazuho Oku · 2 weeks ago
  79. 6d193a0 upon ech config mismatch, report retry_config to the application iff it is applicable by Kazuho Oku · 2 weeks ago
  80. 4cfcc64 replay entire ECH extension when ECH is rejected via HRR by Kazuho Oku · 2 weeks ago
  81. 36a6c79 remove ESNI stuff by Kazuho Oku · 2 weeks ago
  82. 6068d6f [ECH] do not touch key_schedule when determining acceptance by Kazuho Oku · 2 weeks ago
  83. bddb83a oops by Kazuho Oku · 2 weeks ago
  84. ba1baf3 add FIXME by Kazuho Oku · 2 weeks ago
  85. c385e1f send / receive retry_configs by Kazuho Oku · 2 weeks ago
  86. f63838e test configuration mismatch by Kazuho Oku · 2 weeks ago
  87. 23fcb39 [xcode] suppress build warning by Kazuho Oku · 2 weeks ago
  88. c0f58ca ciphers given significance, as it is the only attribute used on both sides by Kazuho Oku · 2 weeks ago
  89. 205e194 we can say that ECH is used whenever ECH AEAD context is available by Kazuho Oku · 2 weeks ago
  90. 71479e4 use wrapper function so as to not miss setting fields by Kazuho Oku · 2 weeks ago
  91. d7d4c46 [ECH] test variations, e.g., retry by Kazuho Oku · 2 weeks ago
  92. df0891d CHinner MUST NOT offer tls 1.2 or below by Kazuho Oku · 2 weeks ago
  93. a9ac007 Merge branch 'master' into kazuho/ech by Kazuho Oku · 2 weeks ago
  94. 828eefc key-schedule uses the transcript with confirmation hash by Kazuho Oku · 2 weeks ago
  95. 8310c09 use const-time op by Kazuho Oku · 2 weeks ago
  96. d6cdb2c HKDF-Expand-Label being used is that of RFC 8446, hence uses the "tls13 " prefix by Kazuho Oku · 2 weeks ago
  97. 6705508 fix the encoded order by Kazuho Oku · 2 weeks ago
  98. 459e998 add I/F to obtain the type of the handshake by Kazuho Oku · 2 weeks ago
  99. c9b6b9b ServerHello.ECH can exist unless when the server responds to inner CH by Kazuho Oku · 3 weeks ago
  100. c417915 check ECH.type always (as well as concentrating the logic) by Kazuho Oku · 3 weeks ago