aboutsummaryrefslogtreecommitdiff
path: root/src/crypto/tls/handshake_client.go
AgeCommit message (Expand)Author
2026-01-28crypto/tls: check verifiedChains roots when resuming sessionsRoland Shoemaker
2026-01-28crypto/tls: add verifiedChains expiration checking during resumptionRoland Shoemaker
2025-11-26crypto/tls: support crypto.MessageSigner private keysFilippo Valsorda
2025-11-25crypto/tls: add SecP256r1/SecP384r1MLKEM1024 hybrid post-quantum key exchangesFilippo Valsorda
2025-11-25crypto/hpke: expose crypto/internal/hpkeFilippo Valsorda
2025-11-21crypto/tls: use inner hello for earlyData when using QUIC and ECHRoland Shoemaker
2025-11-21crypto/internal/hpke: modularize API and support more ciphersuitesFilippo Valsorda
2025-05-27crypto/tls: enable signature algorithm BoGo tests (and fix two bugs)Filippo Valsorda
2025-05-21crypto/tls: disable SHA-1 signature algorithms in TLS 1.2Filippo Valsorda
2025-05-21crypto/tls: don't advertise TLS 1.2-only sigAlgs in TLS 1.3Filippo Valsorda
2025-05-21crypto/tls: replace custom intern cache with weak cacheRoland Shoemaker
2025-05-09crypto/tls: err for unsupported point format configsDaniel McCarney
2025-05-09crypto/tls: use illegal param alert for bad compressionDaniel McCarney
2025-03-13crypto/tls: clean up supported/default/allowed parametersFilippo Valsorda
2025-03-13crypto/tls: add ConnectionState.CurveIDFilippo Valsorda
2025-03-10crypto/tls: reject TLS 1.3 compat session ID in TLS 1.2Daniel McCarney
2025-03-10crypto/tls: align cert decode alert w/ BSSLDaniel McCarney
2025-02-25crypto/tls: require EMS in FIPS 140-3 modeFilippo Valsorda
2025-01-02crypto/tls: properly return ECH retry configsRoland Shoemaker
2024-12-18crypto/tls: normalize spelling of "ClientHello" in commentsFilippo Valsorda
2024-11-22crypto/tls: implement X25519MLKEM768Filippo Valsorda
2024-11-21crypto/tls: add server-side ECHRoland Shoemaker
2024-11-21crypto/tls: FIPS 140-3 modeDaniel McCarney
2024-11-20internal/byteorder: use canonical Go casing in namesRuss Cox
2024-11-20all: rename crypto/internal/fips to crypto/internal/fips140Russ Cox
2024-11-19crypto/internal/mlkem768: move to crypto/internal/fips/mlkemFilippo Valsorda
2024-11-19crypto/internal/mlkem768: add -768 suffix to all exported identifiersFilippo Valsorda
2024-11-19crypto/internal/mlkem768: add EncapsulationKey typeFilippo Valsorda
2024-11-19crypto/internal/fips/tls13: implement TLS 1.3 KDFFilippo Valsorda
2024-08-10crypto/tls: align FIPS-only mode with BoringSSL policyFilippo Valsorda
2024-06-25crypto/tls: apply QUIC session event flag to QUICResumeSession eventsDamien Neil
2024-05-23crypto/tls: add ech client supportRoland Shoemaker
2024-05-22crypto/tls: disable 3-DES by defaultFilippo Valsorda
2024-05-22crypto/tls: improved 0-RTT QUIC APIDamien Neil
2024-05-22crypto/tls: implement X25519Kyber768Draft00Filippo Valsorda
2024-05-22crypto/tls: ensure GODEBUGs are initializedFilippo Valsorda
2024-05-16crypto/tls: don't call tlsrsakex.IncNonDefault with FIPSMike Beaumont
2024-03-29crypto/tls,regexp: remove always-nil error resultsDaniel Martí
2024-01-26Revert "crypto/internal/boring: upgrade module to fips-20220613" +1Filippo Valsorda
2023-12-18crypto/tls: align FIPS-only mode with BoringSSL policyFilippo Valsorda
2023-11-21crypto/tls: check and record godebugs more granularlyFilippo Valsorda
2023-08-10crypto/tls: add GODEBUG to control max RSA key sizeRoland Shoemaker
2023-08-02crypto/tls: restrict RSA keys in certificates to <= 8192 bitsRoland Shoemaker
2023-05-30crypto/tls: fix cipher suite check when doing 0-RTT resumptionMarten Seemann
2023-05-25crypto/tls: advertise correct ciphers in TLS 1.3 only modeMonis Khan
2023-05-25crypto/tls: don't reverify but check certificate expiration on resumptionFilippo Valsorda
2023-05-25crypto/tls: implement Extended Master SecretFilippo Valsorda
2023-05-25crypto/tls: add QUIC 0-RTT APIsFilippo Valsorda
2023-05-24crypto/tls: use SessionState on the client sideFilippo Valsorda
2023-05-24crypto/tls: support QUIC as a transportDamien Neil