Mirror of BoringSSL (grpc依赖) https://boringssl.googlesource.com/boringssl

You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

Tag: Branch: Tree: ccd665d2aa

2214

2272

2311

2357

2490

2564

2623

2661

2704

2785

2883

2924

2987

3029

3071

3112

3202

3239

3282

3359

3538

3945

chromium-2214

chromium-2272

chromium-2311

chromium-2357

chromium-2490

chromium-2564

chromium-2623

chromium-2661

chromium-2704

chromium-2883

chromium-2924

chromium-2987

chromium-3029

chromium-3071

chromium-3112

chromium-3202

chromium-3239

chromium-3282

chromium-3359

chromium-3538

chromium-3945

chromium-5359

chromium-5414

chromium-stable

chromium-stable-with-bazel

esni

fips-20180730

fips-20220613

fips-20230428

fips-20240407

fips-20240805

fips-20250107

fips-android-20191008

grpc-202302

infra/config

main

main-with-bazel

master

master-with-bazel

0.20240913.0

0.20240930.0

0.20241024.0

0.20241203.0

0.20241209.0

0.20250114.0

0.20250212.0

fips-20170615

fips-20180730

fips-20190808

fips-20210429

fips-20220613

fips-android-20191020

version_for_cocoapods_1.0

version_for_cocoapods_10.0

version_for_cocoapods_2.0

version_for_cocoapods_3.0

version_for_cocoapods_4.0

version_for_cocoapods_5.0

version_for_cocoapods_6.0

version_for_cocoapods_7.0

version_for_cocoapods_8.0

version_for_cocoapods_9.0

Branches Tags

${ item.name }

Create tag ${ searchTerm }

Create branch ${ searchTerm }

from 'ccd665d2aa'

${ noResults }

boringssl/include/openssl

History

Bob Beck ccd665d2aa Make time_t conversions. Give up on the OS provided ones. ... We only care about dates within years 0000 to 9999 for RFC5280. timegm() is only semi-standard. Some things require the setting awkward defines to get libc to give it to you. Other things let you have it but make it stop working at year 3000. Still other things have 32 bit time_t..... Let's just make our own that actually works. all the time, does everything with an int64_t, and fails if you want to send something out that would overflow a 32 bit time_t. In the process of doing this, we get rid of the old Julian date stuff from OpenSSL, which while functional was a bit awkward dealing only with days, and using the Julian calendar as the reference point instead of potentially something more useful. Julian seconds since Jan 1 1970 00:00:00 UCT are much more useful to us than Julian days since a Julian epoch. The OS implementations of timegm() and gmtime() also can be pretty complex, due to the nature of needing multiple timezone, daylight saving, day of week, and other stuff we simply do not need for doing things with certificate times. A small microbenchmark of 10000000 of each operation comparing this implementation to the system version on my M1 mac gives: bbe-macbookpro:tmp bbe$ time ./openssl_gmtime real 0m0.152s user 0m0.127s sys 0m0.018s bbe-macbookpro:tmp bbe$ time ./gmtime real 0m0.422s user 0m0.403s sys 0m0.014s bbe-macbookpro:tmp bbe$ time ./openssl_timegm real 0m0.041s user 0m0.015s sys 0m0.019s bbe-macbookpro:tmp bbe$ time ./timegm real 0m30.432s user 0m30.383s sys 0m0.040s Similarly On a glinux machine: bbe@bbe-glinux1:~$ time ./openssl_gmtime real 0m0.157s user 0m0.152s sys 0m0.008s bbe@bbe-glinux1:~$ time ./gmtime real 0m0.336s user 0m0.336s sys 0m0.002s bbe@bbe-glinux1:~$ time ./openssl_timegm real 0m0.018s user 0m0.019s sys 0m0.002s bbe@bbe-glinux1:~$ time ./timegm real 0m0.680s user 0m0.671s sys 0m0.011s bbe@bbe-glinux1:~$ Bug: 501 Change-Id: If445272d365f2c9673b5f3264d082af1a342e0a1 Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/53245 Commit-Queue: Bob Beck <bbe@google.com> Reviewed-by: David Benjamin <davidben@google.com>		3 years ago
..
aead.h	Add a CCM AEAD for Matter, the IoT standard.	3 years ago
aes.h	Clarify in-place rules for low-level AES mode functions.	5 years ago
arm_arch.h	Simplify __ARM_ARCH__ definition.	3 years ago
asn1.h	Make time_t conversions. Give up on the OS provided ones.	3 years ago
asn1_mac.h	acvp: add CMAC-AES support.	5 years ago
asn1t.h	Const-correct the i2d/dup functions we can.	3 years ago
base.h	Expose the CTR_DRBG API.	3 years ago
base64.h	Add various OpenSSL compatibility functions.	3 years ago
bio.h	Add BIO_tell and BIO_seek wrappers.	3 years ago
blake2.h	Add basic BLAKE2b-256 support.	4 years ago
blowfish.h	acvp: add CMAC-AES support.	5 years ago
bn.h	Add BN_GENCB_get_arg.	3 years ago
buf.h	acvp: add CMAC-AES support.	5 years ago
buffer.h	acvp: add CMAC-AES support.	5 years ago
bytestring.h	Reimplement ASN1_TIME_print with the new parser.	3 years ago
cast.h	acvp: add CMAC-AES support.	5 years ago
chacha.h	Reference the newer ChaCha20-Poly1305 RFC.	4 years ago
cipher.h	Fix docs for EVP_Cipher given an AEAD.	3 years ago
cmac.h	acvp: add CMAC-AES support.	5 years ago
conf.h	conf: don't crash when parsing.	4 years ago
cpu.h	Move CPU detection symbols to crypto/internal.h.	3 years ago
crypto.h	Add function to return the name of the FIPS module.	3 years ago
ctrdrbg.h	Expose the CTR_DRBG API.	3 years ago
curve25519.h	acvp: add CMAC-AES support.	5 years ago
des.h	Add a warning to des.h.	5 years ago
dh.h	Deduplicate d2i and i2d documentation.	3 years ago
digest.h	Zero out the values from the integrity check.	3 years ago
dsa.h	Add various OpenSSL compatibility functions.	3 years ago
dtls1.h	acvp: add CMAC-AES support.	5 years ago
e_os2.h	acvp: add CMAC-AES support.	5 years ago
ec.h	Don't loop forever in BN_mod_sqrt on invalid inputs.	3 years ago
ec_key.h	Document that |EC_KEY_generate_fips| works for both cases.	3 years ago
ecdh.h	acvp: add CMAC-AES support.	5 years ago
ecdsa.h	Deduplicate d2i and i2d documentation.	3 years ago
engine.h	acvp: add CMAC-AES support.	5 years ago
err.h	Add ERR_set_error_data for compatibility.	3 years ago
evp.h	Add EVP_PKEY_HKDF for OpenSSL compatibility.	3 years ago
evp_errors.h	Refactor HPKE API to include explicit length parameters.	4 years ago
ex_data.h	acvp: add CMAC-AES support.	5 years ago
hkdf.h	Fix calculation of draft-13 ECH confirmation signal.	4 years ago
hmac.h	Zero out the values from the integrity check.	3 years ago
hpke.h	HPKE is now RFC 9180.	3 years ago
hrss.h	hrss: use less stack space.	4 years ago
is_boringssl.h	acvp: add CMAC-AES support.	5 years ago
kdf.h	Add EVP_PKEY_HKDF for OpenSSL compatibility.	3 years ago
lhash.h	Unexport almost all of LHASH.	4 years ago
md4.h	acvp: add CMAC-AES support.	5 years ago
md5.h	acvp: add CMAC-AES support.	5 years ago
mem.h	Fix CRYPTO_malloc, etc., definitions.	3 years ago
nid.h	Add EVP_PKEY_HKDF for OpenSSL compatibility.	3 years ago
obj.h	Make ASN1_OBJECT opaque.	4 years ago
obj_mac.h	acvp: add CMAC-AES support.	5 years ago
objects.h	acvp: add CMAC-AES support.	5 years ago
opensslconf.h	Add a few more OPENSSL_NO_* constants.	5 years ago
opensslv.h	acvp: add CMAC-AES support.	5 years ago
ossl_typ.h	acvp: add CMAC-AES support.	5 years ago
pem.h	Remove PEM_X509_INFO_write_bio.	3 years ago
pkcs7.h	Add PKCS7_bundle_raw_certificates function which takes CRYPTO_BUFFERs	3 years ago
pkcs8.h	Use X509 certificate alias as friendlyName in PKCS12	3 years ago
pkcs12.h	acvp: add CMAC-AES support.	5 years ago
poly1305.h	acvp: add CMAC-AES support.	5 years ago
pool.h	Add CRYPTO_BUFFER_new_from_static_data_unsafe.	3 years ago
rand.h	RAND_set_rand_method returns int.	4 years ago
rc4.h	acvp: add CMAC-AES support.	5 years ago
ripemd.h	acvp: add CMAC-AES support.	5 years ago
rsa.h	Add BN_GENCB_new, BN_GENCB_free, and RSA_test_flags.	3 years ago
safestack.h	acvp: add CMAC-AES support.	5 years ago
service_indicator.h	Add a service indicator for FIPS 140-3.	3 years ago
sha.h	acvp: add CMAC-AES support.	5 years ago
siphash.h	acvp: add CMAC-AES support.	5 years ago
span.h	Try to require C++14.	3 years ago
srtp.h	acvp: add CMAC-AES support.	5 years ago
ssl.h	Support handshake hints for TLS 1.2 full handshakes.	3 years ago
ssl3.h	Record ClientHelloInner values in msg_callback.	3 years ago
stack.h	Define STACK_OF(OPENSSL_STRING) more straight-forwardly.	3 years ago
thread.h	Limit the pthread_rwlock workaround to glibc.	3 years ago
tls1.h	More alignment with OpenSSL on TLS 1.3 cipher suite constants.	3 years ago
trust_token.h	Add fixed key generation for Trust Token.	3 years ago
type_check.h	Try to require C11 (in non-MSVC compilers).	3 years ago
x509.h	Document and organize some of the basic extensions functions.	3 years ago
x509_vfy.h	Fold x509_vfy.h into x509.h.	3 years ago
x509v3.h	Const-correct X509_EXTENSION functions, as best we can.	3 years ago