52 Révisions (84d406ccf48c8808b0bb30d526b758e4b58cacc8)

Auteur SHA1 Message Date
  Michael Brown 1e277ab062 [crypto] Add certstat() to display basic certificate information il y a 8 ans
  Michael Brown ff28b22568 [crypto] Generalise X.509 "valid" field to a "flags" field il y a 8 ans
  Michael Brown e564a4e7d6 [crypto] Add image_x509() to extract X.509 certificates from image il y a 8 ans
  Michael Brown b1caa48e4b [crypto] Support SHA-{224,384,512} in X.509 certificates il y a 9 ans
  Michael Brown 9aa8090d06 [base16] Add buffer size parameter to base16_encode() and base16_decode() il y a 9 ans
  Michael Brown fbc4ba4b4e [build] Fix the REQUIRE_SYMBOL mechanism il y a 9 ans
  Michael Brown b6ee89ffb5 [legal] Relicense files under GPL2_OR_LATER_OR_UBDL il y a 9 ans
  Michael Brown 50e48d5b19 [crypto] Fix debug message il y a 10 ans
  Michael Brown 8484e97f7c [crypto] Add support for iPAddress subject alternative names il y a 10 ans
  Michael Brown 93acb5d8d0 [crypto] Allow wildcard matches on commonName as well as subjectAltName il y a 10 ans
  Michael Brown f10726c8bb [crypto] Add support for subjectAltName and wildcard certificates il y a 10 ans
  Michael Brown 7c7c957094 [crypto] Allow signed timestamp error margin to be configured at build time il y a 10 ans
  Michael Brown d90490578d [crypto] Use fingerprint when no common name is available for debug messages il y a 10 ans
  Michael Brown bc8ca6b8ce [crypto] Generalise X.509 cache to a full certificate store il y a 10 ans
  Michael Brown e1ebc50f81 [crypto] Remove dynamically-allocated storage for certificate OCSP URI il y a 10 ans
  Michael Brown 01fa7efa38 [crypto] Remove dynamically-allocated storage for certificate name il y a 10 ans
  Michael Brown cb29cd4298 [crypto] Report meaningful error when certificate chain validation fails il y a 11 ans
  Michael Brown c3b4860ce3 [legal] Update FSF mailing address in GPL licence texts il y a 12 ans
  Michael Brown 024247317d [arp] Try to avoid discarding ARP cache entries il y a 12 ans
  Michael Brown 4010890a39 [crypto] Allow an error margin on X.509 certificate validity periods il y a 12 ans
  Michael Brown 7fa1f41f7d [crypto] Require OCSP check if certificate provides an OCSP URI il y a 12 ans
  Michael Brown c923d57663 [crypto] Return a NULL X.509 certificate if construction fails il y a 12 ans
  Michael Brown 39ac285a8a [crypto] Add framework for OCSP il y a 12 ans
  Michael Brown e01af7367d [crypto] Parse OCSPSigning key purpose, if present il y a 12 ans
  Michael Brown 4aad46ac70 [crypto] Generalise x509_parse_bit_string() to asn1_bit_string() il y a 12 ans
  Michael Brown 7deb610881 [crypto] Generalise asn1_{digest,pubkey,signature}_algorithm() il y a 12 ans
  Michael Brown 88c09b36cf [crypto] Generalise x509_parse_time() to asn1_generalized_time() il y a 12 ans
  Michael Brown e5858c1938 [crypto] Parse X.509 raw public key bit string il y a 12 ans
  Michael Brown 0e4ee60a75 [crypto] Reduce standard debugging output il y a 12 ans
  Michael Brown 1a5f025ad8 [crypto] Add x509_auto_append() il y a 12 ans
  Michael Brown 99c798d87a [crypto] Add x509_append_raw() il y a 12 ans
  Michael Brown 6c8fcd4bb3 [crypto] Check that common name contains no NUL characters il y a 12 ans
  Michael Brown 0ad8b601dd [crypto] Allow for X.509 certificates with no common name il y a 12 ans
  Michael Brown 557f467bab [crypto] Allow certificate chains to be long-lived data structures il y a 12 ans
  Michael Brown 601cb3610f [crypto] Parse OCSP responder URI from X.509 certificate il y a 12 ans
  Michael Brown fe6e741c62 [crypto] Parse X.509 extended key usage extension il y a 12 ans
  Michael Brown f2af64aba5 [crypto] Differentiate "untrusted root" and "incomplete chain" error cases il y a 12 ans
  Michael Brown 5c66395939 [crypto] Shrink raw certificate data to fit certificate il y a 12 ans
  Michael Brown 2d9d0adc4e [crypto] Add previous certificate in chain as a parameter to parse_next() il y a 12 ans
  Michael Brown c285378388 [crypto] Parse X.509 certificate serial number il y a 12 ans
  Michael Brown 38b7e43f7d [crypto] Generalise X.509 OID-identified algorithm to asn1.c il y a 12 ans
  Michael Brown b1316ef276 [crypto] Validate path length constraint in certificate chain il y a 12 ans
  Michael Brown 8583c323a2 [tls] Check certificate validity period against current date and time il y a 12 ans
  Michael Brown 0610bcb1d2 [tls] Parse X.509 validity times into seconds since the Epoch il y a 12 ans
  Michael Brown 4d3b5473f8 [tls] Add full X.509 certificate parsing il y a 12 ans
  Michael Brown dc87161c30 [tls] Use iPXE native RSA algorithm il y a 12 ans
  Michael Brown e20550fddf [crypto] Add more ASN.1 functions for X.509 certificate parsing il y a 12 ans
  Michael Brown 1c29b4d979 [crypto] Upgrade AES and RSA code to upstream axTLS version 1.4.5 il y a 12 ans
  Michael Brown 1691cf50bc [tls] Accept certificates without a version number il y a 13 ans
  Michael Brown 8406115834 [build] Rename gPXE to iPXE il y a 14 ans