boringssl

Mirror of BoringSSL (grpc依赖) https://boringssl.googlesource.com/boringssl

David Benjamin c890ae5195 Make ECH server APIs take EVP_HPKE_KEY. Previously we would extract the KEM ID from the ECHConfig and then parse the private key using the corresponding KEM type. This CL makes it take a pre-pared EVP_HPKE_KEY and checks it matches. This does require the caller pass the key type through externally, which is probably prudent? (On the other hand we are still inferring config from the rest of the ECHConfig... maybe we can add an API to extract the EVP_HPKE_KEM from a serialized ECHConfig if it becomes a problem. I could see runner or tool wanting that out of convenience.) The immediate motivation is to add APIs to programmatically construct ECHConfigs. I'm thinking we can pass a const EVP_HPKE_KEY * to specify the key, at which point it's weird for SSL_ECH_KEYS_add to look different. Bug: 275 Change-Id: I2d424323885103d3fe0a99a9012c160baa8653bd Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/48002 Commit-Queue: David Benjamin <davidben@google.com> Reviewed-by: Adam Langley <agl@google.com>		3 years ago
..
arm_cpuinfo_corpus	acvp: add CMAC-AES support.	4 years ago
bn_div_corpus	acvp: add CMAC-AES support.	4 years ago
bn_mod_exp_corpus	acvp: add CMAC-AES support.	4 years ago
cert_corpus	acvp: add CMAC-AES support.	4 years ago
client_corpus	Refresh SSL corpora after adding ECH fuzzer mode.	4 years ago
client_corpus_no_fuzzer_mode	Refresh SSL corpora after adding ECH fuzzer mode.	4 years ago
decode_client_hello_inner_corpus	Refresh SSL corpora after adding ECH fuzzer mode.	4 years ago
dtls_client_corpus	Refresh SSL corpora after adding ECH fuzzer mode.	4 years ago
dtls_server_corpus	Refresh SSL corpora after adding ECH fuzzer mode.	4 years ago
pkcs8_corpus	acvp: add CMAC-AES support.	4 years ago
pkcs12_corpus	acvp: add CMAC-AES support.	4 years ago
privkey_corpus	acvp: add CMAC-AES support.	4 years ago
read_pem_corpus	acvp: add CMAC-AES support.	4 years ago
server_corpus	Refresh SSL corpora after adding ECH fuzzer mode.	4 years ago
server_corpus_no_fuzzer_mode	Refresh SSL corpora after adding ECH fuzzer mode.	4 years ago
session_corpus	acvp: add CMAC-AES support.	4 years ago
spki_corpus	acvp: add CMAC-AES support.	4 years ago
ssl_ctx_api_corpus	acvp: add CMAC-AES support.	4 years ago
CMakeLists.txt	Add ECH server (draft-ietf-tls-esni-09).	4 years ago
arm_cpuinfo.cc	acvp: add CMAC-AES support.	4 years ago
bn_div.cc	acvp: add CMAC-AES support.	4 years ago
bn_mod_exp.cc	acvp: add CMAC-AES support.	4 years ago
cert.cc	acvp: add CMAC-AES support.	4 years ago
client.cc	acvp: add CMAC-AES support.	4 years ago
decode_client_hello_inner.cc	Add ECH server (draft-ietf-tls-esni-09).	4 years ago
dtls_client.cc	acvp: add CMAC-AES support.	4 years ago
dtls_server.cc	acvp: add CMAC-AES support.	4 years ago
minimise_corpora.sh	fuzz/minimise_corpora.sh: Add shebang and chmod +x	4 years ago
pkcs8.cc	acvp: add CMAC-AES support.	4 years ago
pkcs12.cc	acvp: add CMAC-AES support.	4 years ago
privkey.cc	acvp: add CMAC-AES support.	4 years ago
read_pem.cc	acvp: add CMAC-AES support.	4 years ago
refresh_ssl_corpora.sh	Record a fuzzing corpus for the ClientHelloInner decoder.	4 years ago
server.cc	acvp: add CMAC-AES support.	4 years ago
session.cc	acvp: add CMAC-AES support.	4 years ago
spki.cc	acvp: add CMAC-AES support.	4 years ago
ssl_ctx_api.cc	Make ECH server APIs take EVP_HPKE_KEY.	3 years ago