min
/
boring2
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
boring2/boring/src
History
0x676e67 5da88184f1
RTG-3333 Support X25519MLKEM768 by default, but don't sent it as client (#35) 
X25519MLKEM768 is the standardised successor of the preliminary
X25519Kyber768Draft00. Latest browsers have switched to X25519MLKEM768.
Cloudflare supports both on the edge.

We've had support for X25519MLKEM768 in this crate for a while, but
didn't enable by default. We're now enabling serverside support by
default. We also let clients advertise support when set
to kx-client-pq-supported.

We don't enable support by default yet for clients set to
kx-client-pq-preferred, as that would cause an extra round-trip due to
HelloRetryRequest if the server doesn't support X25519MLKEM768 yet.

BoringSSL against which we build must support X25519MLKEM768, otherwise
this will fail.

Co-authored-by: Bas Westerbaan <bas@cloudflare.com>
 		2025-01-14 22:17:57 +08:00
..
ssl RTG-3333 Support X25519MLKEM768 by default, but don't sent it as client (#35) 2025-01-14 22:17:57 +08:00
x509 Fix bug with accessing memzero'd X509StoreContext in tests 2025-01-06 16:08:33 +00:00
aes.rs Sync X509StoreBuilder with openssl 2024-11-28 11:48:09 -08:00
asn1.rs More corresponds from openssl 2024-11-28 11:48:09 -08:00
base64.rs More corresponds from openssl 2024-11-28 11:48:09 -08:00
bio.rs Clippy 2024-11-28 11:21:39 -08:00
bn.rs More corresponds from openssl 2024-11-28 11:48:09 -08:00
conf.rs Remove unused `*Ref` parameters to macro 2021-08-17 10:44:50 -05:00
derive.rs Clippy 2024-11-28 11:21:39 -08:00
dh.rs Run `cargo fix --edition 2021-08-13 15:22:56 -05:00
dsa.rs Use ForeignType::into_ptr wherever applicable 2024-09-04 04:04:30 -07:00
ec.rs Fix typos 2023-12-14 02:28:11 +01:00
ecdsa.rs clippy: *::max_value() -> *::MAX 2024-06-26 16:13:58 +01:00
error.rs Fix lints 2023-03-27 13:15:12 +02:00
ex_data.rs Rename stuff 2020-11-11 17:47:30 +00:00
fips.rs Remove boring::fips::enable (fixes #150) 2023-10-10 15:34:56 +01:00
hash.rs Expose hmac_sha1 function 2024-06-28 10:51:46 +01:00
lib.rs Add post-quantum key agreement X25519MLKEM768 2024-09-18 12:00:27 +02:00
macros.rs clippy: *::max_value() -> *::MAX 2024-06-26 16:13:58 +01:00
memcmp.rs Fix typos 2023-12-14 02:28:11 +01:00
nid.rs Add NIDs for cipher authentication types 2024-06-26 16:13:58 +01:00
pkcs5.rs clippy: *::max_value() -> *::MAX 2024-06-26 16:13:58 +01:00
pkcs12.rs Remove unused `*Ref` parameters to macro 2021-08-17 10:44:50 -05:00
pkey.rs Expose RSAPSS public key Id type 2024-08-19 15:54:22 -07:00
rand.rs clippy: *::max_value() -> *::MAX 2024-06-26 16:13:58 +01:00
rsa.rs clippy: *::max_value() -> *::MAX 2024-06-26 16:13:58 +01:00
sha.rs Expose SHA512-256 2023-10-11 09:53:30 +02:00
sign.rs Clippy 2024-11-28 11:21:39 -08:00
srtp.rs Remove unused `*Ref` parameters to macro 2021-08-17 10:44:50 -05:00
stack.rs Clippy 2024-11-28 11:21:39 -08:00
string.rs Fix clippy warnings 2022-09-16 12:13:55 -05:00
symm.rs clippy: *::max_value() -> *::MAX 2024-06-26 16:13:58 +01:00
util.rs Introduce ForeignTypeExt and ForeignTypeRefExt 2024-08-15 15:09:02 -07:00
version.rs Run `cargo fix --edition 2021-08-13 15:22:56 -05:00