53 Commit (afee77d816f42c7e405c065395c6a7f4dc2aade1)

Autore SHA1 Messaggio Data
  Michael Brown a0021a30dd [ocsp] Centralise test for whether or not an OCSP check is required 6 anni fa
  Michael Brown 1e277ab062 [crypto] Add certstat() to display basic certificate information 8 anni fa
  Michael Brown ff28b22568 [crypto] Generalise X.509 "valid" field to a "flags" field 8 anni fa
  Michael Brown e564a4e7d6 [crypto] Add image_x509() to extract X.509 certificates from image 8 anni fa
  Michael Brown b1caa48e4b [crypto] Support SHA-{224,384,512} in X.509 certificates 9 anni fa
  Michael Brown 9aa8090d06 [base16] Add buffer size parameter to base16_encode() and base16_decode() 9 anni fa
  Michael Brown fbc4ba4b4e [build] Fix the REQUIRE_SYMBOL mechanism 9 anni fa
  Michael Brown b6ee89ffb5 [legal] Relicense files under GPL2_OR_LATER_OR_UBDL 9 anni fa
  Michael Brown 50e48d5b19 [crypto] Fix debug message 10 anni fa
  Michael Brown 8484e97f7c [crypto] Add support for iPAddress subject alternative names 10 anni fa
  Michael Brown 93acb5d8d0 [crypto] Allow wildcard matches on commonName as well as subjectAltName 10 anni fa
  Michael Brown f10726c8bb [crypto] Add support for subjectAltName and wildcard certificates 10 anni fa
  Michael Brown 7c7c957094 [crypto] Allow signed timestamp error margin to be configured at build time 10 anni fa
  Michael Brown d90490578d [crypto] Use fingerprint when no common name is available for debug messages 10 anni fa
  Michael Brown bc8ca6b8ce [crypto] Generalise X.509 cache to a full certificate store 10 anni fa
  Michael Brown e1ebc50f81 [crypto] Remove dynamically-allocated storage for certificate OCSP URI 10 anni fa
  Michael Brown 01fa7efa38 [crypto] Remove dynamically-allocated storage for certificate name 10 anni fa
  Michael Brown cb29cd4298 [crypto] Report meaningful error when certificate chain validation fails 11 anni fa
  Michael Brown c3b4860ce3 [legal] Update FSF mailing address in GPL licence texts 12 anni fa
  Michael Brown 024247317d [arp] Try to avoid discarding ARP cache entries 12 anni fa
  Michael Brown 4010890a39 [crypto] Allow an error margin on X.509 certificate validity periods 12 anni fa
  Michael Brown 7fa1f41f7d [crypto] Require OCSP check if certificate provides an OCSP URI 12 anni fa
  Michael Brown c923d57663 [crypto] Return a NULL X.509 certificate if construction fails 12 anni fa
  Michael Brown 39ac285a8a [crypto] Add framework for OCSP 12 anni fa
  Michael Brown e01af7367d [crypto] Parse OCSPSigning key purpose, if present 12 anni fa
  Michael Brown 4aad46ac70 [crypto] Generalise x509_parse_bit_string() to asn1_bit_string() 12 anni fa
  Michael Brown 7deb610881 [crypto] Generalise asn1_{digest,pubkey,signature}_algorithm() 12 anni fa
  Michael Brown 88c09b36cf [crypto] Generalise x509_parse_time() to asn1_generalized_time() 12 anni fa
  Michael Brown e5858c1938 [crypto] Parse X.509 raw public key bit string 12 anni fa
  Michael Brown 0e4ee60a75 [crypto] Reduce standard debugging output 12 anni fa
  Michael Brown 1a5f025ad8 [crypto] Add x509_auto_append() 12 anni fa
  Michael Brown 99c798d87a [crypto] Add x509_append_raw() 12 anni fa
  Michael Brown 6c8fcd4bb3 [crypto] Check that common name contains no NUL characters 12 anni fa
  Michael Brown 0ad8b601dd [crypto] Allow for X.509 certificates with no common name 12 anni fa
  Michael Brown 557f467bab [crypto] Allow certificate chains to be long-lived data structures 12 anni fa
  Michael Brown 601cb3610f [crypto] Parse OCSP responder URI from X.509 certificate 12 anni fa
  Michael Brown fe6e741c62 [crypto] Parse X.509 extended key usage extension 12 anni fa
  Michael Brown f2af64aba5 [crypto] Differentiate "untrusted root" and "incomplete chain" error cases 12 anni fa
  Michael Brown 5c66395939 [crypto] Shrink raw certificate data to fit certificate 12 anni fa
  Michael Brown 2d9d0adc4e [crypto] Add previous certificate in chain as a parameter to parse_next() 12 anni fa
  Michael Brown c285378388 [crypto] Parse X.509 certificate serial number 12 anni fa
  Michael Brown 38b7e43f7d [crypto] Generalise X.509 OID-identified algorithm to asn1.c 12 anni fa
  Michael Brown b1316ef276 [crypto] Validate path length constraint in certificate chain 12 anni fa
  Michael Brown 8583c323a2 [tls] Check certificate validity period against current date and time 12 anni fa
  Michael Brown 0610bcb1d2 [tls] Parse X.509 validity times into seconds since the Epoch 12 anni fa
  Michael Brown 4d3b5473f8 [tls] Add full X.509 certificate parsing 12 anni fa
  Michael Brown dc87161c30 [tls] Use iPXE native RSA algorithm 12 anni fa
  Michael Brown e20550fddf [crypto] Add more ASN.1 functions for X.509 certificate parsing 12 anni fa
  Michael Brown 1c29b4d979 [crypto] Upgrade AES and RSA code to upstream axTLS version 1.4.5 12 anni fa
  Michael Brown 1691cf50bc [tls] Accept certificates without a version number 13 anni fa