iPXE
Macros | Functions
crypto.h File Reference

Cryptographic configuration. More...

#include <config/named.h>
#include <NAMED_CONFIG(crypto.h)>
#include <config/local/crypto.h>
#include <LOCAL_NAMED_CONFIG(crypto.h)>

Go to the source code of this file.

Macros

#define TLS_VERSION_MIN   TLS_VERSION_TLS_1_1
 Minimum TLS version. More...
 
#define CRYPTO_PUBKEY_RSA
 RSA public-key algorithm. More...
 
#define CRYPTO_CIPHER_AES_CBC
 AES-CBC block cipher. More...
 
#define CRYPTO_DIGEST_SHA1
 MD4 digest algorithm. More...
 
#define CRYPTO_DIGEST_SHA224
 SHA-224 digest algorithm. More...
 
#define CRYPTO_DIGEST_SHA256
 SHA-256 digest algorithm. More...
 
#define CRYPTO_DIGEST_SHA384
 SHA-384 digest algorithm. More...
 
#define CRYPTO_DIGEST_SHA512
 SHA-512 digest algorithm. More...
 
#define TIMESTAMP_ERROR_MARGIN   ( ( 12 * 60 + 30 ) * 60 )
 SHA-512/224 digest algorithm. More...
 
#define CROSSCERT   "http://ca.ipxe.org/auto"
 Default cross-signed certificate source. More...
 
#define OCSP_CHECK
 Perform OCSP checks when applicable. More...
 

Functions

 FILE_LICENCE (GPL2_OR_LATER_OR_UBDL)
 

Detailed Description

Cryptographic configuration.

Definition in file crypto.h.

Macro Definition Documentation

◆ TLS_VERSION_MIN

#define TLS_VERSION_MIN   TLS_VERSION_TLS_1_1

Minimum TLS version.

Definition at line 13 of file crypto.h.

◆ CRYPTO_PUBKEY_RSA

#define CRYPTO_PUBKEY_RSA

RSA public-key algorithm.

Definition at line 16 of file crypto.h.

◆ CRYPTO_CIPHER_AES_CBC

#define CRYPTO_CIPHER_AES_CBC

AES-CBC block cipher.

Definition at line 19 of file crypto.h.

◆ CRYPTO_DIGEST_SHA1

#define CRYPTO_DIGEST_SHA1

MD4 digest algorithm.

MD5 digest algorithm SHA-1 digest algorithm

Definition at line 28 of file crypto.h.

◆ CRYPTO_DIGEST_SHA224

#define CRYPTO_DIGEST_SHA224

SHA-224 digest algorithm.

Definition at line 31 of file crypto.h.

◆ CRYPTO_DIGEST_SHA256

#define CRYPTO_DIGEST_SHA256

SHA-256 digest algorithm.

Definition at line 34 of file crypto.h.

◆ CRYPTO_DIGEST_SHA384

#define CRYPTO_DIGEST_SHA384

SHA-384 digest algorithm.

Definition at line 37 of file crypto.h.

◆ CRYPTO_DIGEST_SHA512

#define CRYPTO_DIGEST_SHA512

SHA-512 digest algorithm.

Definition at line 40 of file crypto.h.

◆ TIMESTAMP_ERROR_MARGIN

#define TIMESTAMP_ERROR_MARGIN   ( ( 12 * 60 + 30 ) * 60 )

SHA-512/224 digest algorithm.

SHA-512/256 digest algorithm Margin of error (in seconds) allowed in signed timestamps

We default to allowing a reasonable margin of error: 12 hours to allow for the local time zone being non-GMT, plus 30 minutes to allow for general clock drift.

Definition at line 54 of file crypto.h.

◆ CROSSCERT

#define CROSSCERT   "http://ca.ipxe.org/auto"

Default cross-signed certificate source.

This is the default location from which iPXE will attempt to download cross-signed certificates in order to complete a certificate chain.

Definition at line 62 of file crypto.h.

◆ OCSP_CHECK

#define OCSP_CHECK

Perform OCSP checks when applicable.

Some CAs provide non-functional OCSP servers, and some clients are forced to operate on networks without access to the OCSP servers. Allow the user to explicitly disable the use of OCSP checks.

Definition at line 70 of file crypto.h.

Function Documentation

◆ FILE_LICENCE()

FILE_LICENCE ( GPL2_OR_LATER_OR_UBDL  )