Cryptographic configuration.
More...
#include <config/named.h>
#include <NAMED_CONFIG(crypto.h)>
#include <config/local/crypto.h>
#include <LOCAL_NAMED_CONFIG(crypto.h)>
Go to the source code of this file.
Cryptographic configuration.
Definition in file crypto.h.
◆ TLS_VERSION_MIN
Minimum TLS version.
Definition at line 13 of file crypto.h.
◆ CRYPTO_EXCHANGE_PUBKEY
| #define CRYPTO_EXCHANGE_PUBKEY |
Public-key exchange algorithm.
Definition at line 16 of file crypto.h.
◆ CRYPTO_EXCHANGE_DHE
| #define CRYPTO_EXCHANGE_DHE |
DHE key exchange algorithm.
Definition at line 19 of file crypto.h.
◆ CRYPTO_EXCHANGE_ECDHE
| #define CRYPTO_EXCHANGE_ECDHE |
ECDHE key exchange algorithm.
Definition at line 22 of file crypto.h.
◆ CRYPTO_PUBKEY_RSA
| #define CRYPTO_PUBKEY_RSA |
RSA public-key algorithm.
Definition at line 25 of file crypto.h.
◆ CRYPTO_CIPHER_AES_CBC
| #define CRYPTO_CIPHER_AES_CBC |
AES-CBC block cipher.
Definition at line 28 of file crypto.h.
◆ CRYPTO_CIPHER_AES_GCM
| #define CRYPTO_CIPHER_AES_GCM |
AES-GCM block cipher.
Definition at line 31 of file crypto.h.
◆ CRYPTO_DIGEST_SHA1
| #define CRYPTO_DIGEST_SHA1 |
MD4 digest algorithm.
MD5 digest algorithm SHA-1 digest algorithm
Definition at line 40 of file crypto.h.
◆ CRYPTO_DIGEST_SHA224
| #define CRYPTO_DIGEST_SHA224 |
SHA-224 digest algorithm.
Definition at line 43 of file crypto.h.
◆ CRYPTO_DIGEST_SHA256
| #define CRYPTO_DIGEST_SHA256 |
SHA-256 digest algorithm.
Definition at line 46 of file crypto.h.
◆ CRYPTO_DIGEST_SHA384
| #define CRYPTO_DIGEST_SHA384 |
SHA-384 digest algorithm.
Definition at line 49 of file crypto.h.
◆ CRYPTO_DIGEST_SHA512
| #define CRYPTO_DIGEST_SHA512 |
SHA-512 digest algorithm.
Definition at line 52 of file crypto.h.
◆ CRYPTO_CURVE_X25519
| #define CRYPTO_CURVE_X25519 |
SHA-512/224 digest algorithm.
SHA-512/256 digest algorithm X25519 elliptic curve
Definition at line 61 of file crypto.h.
◆ TIMESTAMP_ERROR_MARGIN
| #define TIMESTAMP_ERROR_MARGIN ( ( 12 * 60 + 30 ) * 60 ) |
Margin of error (in seconds) allowed in signed timestamps.
We default to allowing a reasonable margin of error: 12 hours to allow for the local time zone being non-GMT, plus 30 minutes to allow for general clock drift.
Definition at line 69 of file crypto.h.
◆ CROSSCERT
| #define CROSSCERT "http://ca.ipxe.org/auto" |
Default cross-signed certificate source.
This is the default location from which iPXE will attempt to download cross-signed certificates in order to complete a certificate chain.
Definition at line 77 of file crypto.h.
◆ OCSP_CHECK
Perform OCSP checks when applicable.
Some CAs provide non-functional OCSP servers, and some clients are forced to operate on networks without access to the OCSP servers. Allow the user to explicitly disable the use of OCSP checks.
Definition at line 85 of file crypto.h.
◆ FILE_LICENCE()
| FILE_LICENCE |
( |
GPL2_OR_LATER_OR_UBDL |
| ) |
|
