iPXE
Defines | Functions
crypto.h File Reference

Cryptographic configuration. More...

#include <config/named.h>
#include <NAMED_CONFIG(crypto.h)>
#include <config/local/crypto.h>
#include <LOCAL_NAMED_CONFIG(crypto.h)>

Go to the source code of this file.

Defines

#define CRYPTO_PUBKEY_RSA
 RSA public-key algorithm.
#define CRYPTO_CIPHER_AES_CBC
 AES-CBC block cipher.
#define CRYPTO_DIGEST_MD5
 MD5 digest algorithm.
#define CRYPTO_DIGEST_SHA1
 SHA-1 digest algorithm.
#define CRYPTO_DIGEST_SHA224
 SHA-224 digest algorithm.
#define CRYPTO_DIGEST_SHA256
 SHA-256 digest algorithm.
#define CRYPTO_DIGEST_SHA384
 SHA-384 digest algorithm.
#define CRYPTO_DIGEST_SHA512
 SHA-512 digest algorithm.
#define TIMESTAMP_ERROR_MARGIN   ( ( 12 * 60 + 30 ) * 60 )
 Margin of error (in seconds) allowed in signed timestamps.
#define CROSSCERT   "http://ca.ipxe.org/auto"
 Default cross-signed certificate source.

Functions

 FILE_LICENCE (GPL2_OR_LATER_OR_UBDL)

Detailed Description

Cryptographic configuration.

Definition in file crypto.h.


Define Documentation

RSA public-key algorithm.

Definition at line 13 of file crypto.h.

AES-CBC block cipher.

Definition at line 16 of file crypto.h.

MD5 digest algorithm.

Note that use of MD5 is implicit when using TLSv1.1 or earlier.

Definition at line 22 of file crypto.h.

SHA-1 digest algorithm.

Note that use of SHA-1 is implicit when using TLSv1.1 or earlier.

Definition at line 28 of file crypto.h.

SHA-224 digest algorithm.

Definition at line 31 of file crypto.h.

SHA-256 digest algorithm.

Note that use of SHA-256 is implicit when using TLSv1.2.

Definition at line 37 of file crypto.h.

SHA-384 digest algorithm.

Definition at line 40 of file crypto.h.

SHA-512 digest algorithm.

Definition at line 43 of file crypto.h.

#define TIMESTAMP_ERROR_MARGIN   ( ( 12 * 60 + 30 ) * 60 )

Margin of error (in seconds) allowed in signed timestamps.

We default to allowing a reasonable margin of error: 12 hours to allow for the local time zone being non-GMT, plus 30 minutes to allow for general clock drift.

Definition at line 51 of file crypto.h.

Referenced by ocsp_validate(), and x509_check_time().

#define CROSSCERT   "http://ca.ipxe.org/auto"

Default cross-signed certificate source.

This is the default location from which iPXE will attempt to download cross-signed certificates in order to complete a certificate chain.

Definition at line 59 of file crypto.h.


Function Documentation

FILE_LICENCE ( GPL2_OR_LATER_OR_UBDL  )