Tag: Branch: Tree: 747229ec7e

2214

2272

2311

2357

2490

2564

2623

2661

2704

2785

2883

2924

2987

3029

3071

3112

3202

3239

3282

3359

3538

3945

chromium-2214

chromium-2272

chromium-2311

chromium-2357

chromium-2490

chromium-2564

chromium-2623

chromium-2661

chromium-2704

chromium-2883

chromium-2924

chromium-2987

chromium-3029

chromium-3071

chromium-3112

chromium-3202

chromium-3239

chromium-3282

chromium-3359

chromium-3538

chromium-3945

chromium-5359

chromium-5414

chromium-stable

chromium-stable-with-bazel

esni

fips-20180730

fips-20220613

fips-20230428

fips-20240407

fips-20240805

fips-20250107

fips-android-20191008

grpc-202302

infra/config

main

main-with-bazel

master

master-with-bazel

0.20240913.0

0.20240930.0

0.20241024.0

0.20241203.0

0.20241209.0

0.20250114.0

0.20250212.0

fips-20170615

fips-20180730

fips-20190808

fips-20210429

fips-20220613

fips-android-20191020

version_for_cocoapods_1.0

version_for_cocoapods_10.0

version_for_cocoapods_2.0

version_for_cocoapods_3.0

version_for_cocoapods_4.0

version_for_cocoapods_5.0

version_for_cocoapods_6.0

version_for_cocoapods_7.0

version_for_cocoapods_8.0

version_for_cocoapods_9.0

Branches Tags

${ item.name }

Create tag ${ searchTerm }

Create branch ${ searchTerm }

from '747229ec7e'

${ noResults }

Commit Graph

14 Commits (747229ec7e0871a253dbbe79f78da9c2cf6c777a)

Author	SHA1	Message	Date
David Benjamin	070a6c3e02	Export the HPKE implementation. ... Bug: 410 Change-Id: I633eab7f2d148c9158a5bb29d73e07f1f18b7105 Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/47331 Commit-Queue: David Benjamin <davidben@google.com> Reviewed-by: Adam Langley <agl@google.com>	4 years ago
David Benjamin	1d58cd1fd3	Shift the KEM dependency in HPKE up a step. ... This introduces an EVP_HPKE_KEM, to capture the KEM choice, and EVP_HPKE_KEY, to capture the key import (and thus avoids asking receivers to pass in the full keypair). It is a bit more wordy now, but we'll be in a better place when some non-TLS user inevitably asks for a P-256 version. Bug: 410 Change-Id: Icb9cc8b028e6d1f86e6d8adb31ebf1f975181675 Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/47329 Commit-Queue: David Benjamin <davidben@google.com> Reviewed-by: Adam Langley <agl@google.com>	4 years ago
David Benjamin	2b2cb7d93c	Switch HPKE to a three-parameter output buffer. ... This is a little tedious but aligns with some of our other variable-length parameters. This is in preparation for making the HPKE APIs KEM-agnostic, so we don't need to make so many variations on the HPKE functions for each KEM. (Especially if we ever need to implement SetupPSK*, SetupAuth*, or SetupAuthPSK*.) Bug: 410 Change-Id: I0625580b15358ab1f02b7835122256e8f058a779 Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/47328 Commit-Queue: David Benjamin <davidben@google.com> Reviewed-by: Adam Langley <agl@google.com>	4 years ago
David Benjamin	f39c81d524	Introduce EVP_HPKE_{AEAD,KDF} types. ... This replaces the ID-based API with one that is more static linker friendly. For ECH, it doesn't make a difference because we currently pull in all the options we've implemented. But this means other HPKE uses need not pull in everything ECH needs and vice versa. Along the way, fix an inconsistency: we prefixed all the AEAD constants with "AEAD", but not the others. Since the rest of the name already determines everything, go with the shorter version. Bug: 410 Change-Id: I56e46c13b43c97e15eeb45204cde7019dd21e250 Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/47327 Commit-Queue: David Benjamin <davidben@google.com> Reviewed-by: Adam Langley <agl@google.com>	4 years ago
David Benjamin	da4390f4ef	Revise the deterministic for_test variant of HPKE's SetupBaseS. ... Although we only support X25519 right now, we may need to support other KEMs in the future. In the general case, a public/private keypair is less meaningful. (If something like NTRU-HRSS even goes here, I guess it'd be the entropy passed to HRSS_encap.) Instead of taking an entire keypair, just take the private key. Perhaps we call it the "seed"? Bug: 410 Change-Id: Ifd6b6ea8ea36e6eca60d303706d6d2620f8c42d4 Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/47326 Commit-Queue: David Benjamin <davidben@google.com> Reviewed-by: Adam Langley <agl@google.com>	4 years ago
David Benjamin	e4d6556483	Remove HPKE PSK mode. ... We can always add it back later, but nothing's using it right now. Looking at all references to draft-irtf-cfrg-hpke in the IETF tracker, there are zero uses of any of the modes beyond SetupBase. Bug: 410 Change-Id: I23deb27554d36152776417d86e7759cb2c22e4eb Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/47325 Commit-Queue: David Benjamin <davidben@google.com> Reviewed-by: Adam Langley <agl@google.com>	4 years ago
David Benjamin	9f70097eff	Remove HKDF-SHA384 and HKDF-SHA512 from HPKE. ... We can add them if we need them, but we're only using HKDF-SHA256 in ECH. Keep the set small to encourage a common set of parameters. Bug: 410 Change-Id: I5b9ddf3daa1d0c7f35df473470998369e9882553 Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/47324 Reviewed-by: Adam Langley <agl@google.com> Commit-Queue: David Benjamin <davidben@google.com>	4 years ago
David Benjamin	fd739853a8	Fix the spelling of HPKE AEAD constants. ... AES_128_GCM is more common than AES_GCM_128 and matches the specification. Bug: 275 Change-Id: If3446a38f7bfbe0250d9646e363db29b93e4d231 Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/46666 Reviewed-by: David Benjamin <davidben@google.com> Reviewed-by: Dan McArdle <dmcardle@google.com> Commit-Queue: David Benjamin <davidben@google.com>	4 years ago
Dan McArdle	d9ee55a89f	Refactor HPKE API to include explicit length parameters. ... Bug: 275 Change-Id: I724e9315b860e230e8fed92de34d89a875ef043c Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/46184 Reviewed-by: David Benjamin <davidben@google.com> Commit-Queue: David Benjamin <davidben@google.com>	4 years ago
Dan McArdle	7dfb4721d0	Update HPKE to draft-irtf-cfrg-hpke-07. ... Bug: 275 Change-Id: Ifef2b94f701ab75755893c2806335b626b655446 Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/44904 Commit-Queue: Dan McArdle <dmcardle@google.com> Commit-Queue: David Benjamin <davidben@google.com> Reviewed-by: David Benjamin <davidben@google.com>	4 years ago
David Benjamin	b13e7b5fdc	Silence some clang warnings on macOS and iOS CQ bots. ... Looks like some toolchain updated recently and the bots are complaining about copy vs reference. While I'm here, this is a test and just declaring a pair of vectors is much less typing than an external array and a pair of spans. Change-Id: Iffc0beed99f5ef492d78bc58b5bb02d7c595a072 Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/43044 Reviewed-by: Adam Langley <agl@google.com>	5 years ago
Daniel McArdle	bc24805109	Implement PSK variants of HPKE setup functions. ... Change-Id: Ic190ac1efbb079e42bb22b39083ccb96e0a61e57 Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/42664 Reviewed-by: David Benjamin <davidben@google.com> Commit-Queue: David Benjamin <davidben@google.com>	5 years ago
Daniel McArdle	430ccd6163	Update HPKE implementation and test vectors to draft-irtf-cfrg-hpke-05. ... Bug: 275 Change-Id: I8af401f84b235e6249fb13161d26dc489f3415bd Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/42444 Commit-Queue: David Benjamin <davidben@google.com> Reviewed-by: David Benjamin <davidben@google.com>	5 years ago
Daniel McArdle	8b601c88fb	Implement HPKE. ... draft-ietf-tls-esni-07 uses HPKE for encryption. Bug: 275 Change-Id: I4af39be4df534f8c1c991c4df82d38c6adcf2574 Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/41304 Commit-Queue: David Benjamin <davidben@google.com> Reviewed-by: David Benjamin <davidben@google.com>	5 years ago