Sync to
81502beeddc5f116d44d0898c6c4a33057198db8
This includes the following changes:
https://boringssl.googlesource.com/boringssl/+log/
345c86b1cfcc478a71a9a71f0206893fd16ae912..
81502beeddc5f116d44d0898c6c4a33057198db8
* Linkify RFCs in more places in the docs.
* Make FFDH self tests lazy.
* Make ECC self tests lazy.
* HPKE is now RFC 9180.
* Include the policy document for the most recent FIPS validation.
* Check static CPU capabilities on x86.
Update-Note: This CL may break build environments that incorrectly mark
some instruction as statically available. This is unlikely to happen
with vector instructions like AVX, where the compiler could freely emit
them anyway. However, instructions like AES-NI might be set incorrectly.
* Align rsaz_avx2_preferred with x86_64-mont5.pl.
* Enable SHA-NI optimizations for SHA-256.
* Update Intel SDE.
* Include the EKU extension in bssl server's self-signed certs.
* Don't call a non-test file *test.h.
* Make RSA self-test lazy.
* Add link to new Android FIPS certificate.
* delocate: handle a new output form in Clang 13.
* Drop, now unused, KAT value.
* Drop CAVP code.
* Break FIPS tests differently.
* Don't forget hmac.h in self_check.h.
* Perform SHA-$x and HMAC KAT before integrity check.
* Add a couple of spaces to `check_test`.
* Split FIPS KATs into fast and slow groups.
* Move DES out of the FIPS module.
* acvp: don't send the Authorization header when renewing tokens
* Support Bazel's test-sharding protocol.
* Simply CMake assembly source selection.
* Rename generated assembly from 'mac' or 'ios' to 'apple'
Update-Note: References to 'mac' or 'ios' source lists in downstream
builds should be renamed to 'apple'.
* Build aarch64 assembly for macOS in the bazel build.
* Fix OPENSSL_NO_ASM definition in bazel.
* Use @platforms in Bazel rules.
* Record ClientHelloInner values in msg_callback.
* Fold ssl_decode_client_hello_inner into ssl_client_hello_decrypt.
* Explicitly reject self-referential ech_outer_extensions.
* Simpler square-root computation for
Ed25519
* Condition split handshake tests on Linux in CMake.
* Implement PEM_read_bio_DHparams with the macro.
* Limit _XOPEN_SOURCE to Linux.
Update-Note: It's possible this will break yet another obscure UNIX.
Hopefully we can eventually find a combination that works?
* Fix Unicode strings for C++20
Test: atest CtsLibcoreTestCases CtsLibcoreOkHttpTestCases
Change-Id: I177c2a06d3d85ea4912e4f657caa370363966c33
Gbp-Pq: Name Sync-to-
81502beeddc5f116d44d0898c.patch
projects / android-platform-external-boringssl.git / commit