1390 Commits (c124f21f5607c533c4099eeb5f6fe6e198bf0b3f)

Author SHA1 Message Date
  Michael Brown 97dcc824bf [image] Add concept of trusted images 12 years ago
  Michael Brown bdb69d587e [crypto] Add support for Cryptographic Message Syntax (PKCS #7) 12 years ago
  Michael Brown fe6e741c62 [crypto] Parse X.509 extended key usage extension 12 years ago
  Michael Brown 2d9d0adc4e [crypto] Add previous certificate in chain as a parameter to parse_next() 12 years ago
  Michael Brown c285378388 [crypto] Parse X.509 certificate serial number 12 years ago
  Michael Brown 38b7e43f7d [crypto] Generalise X.509 OID-identified algorithm to asn1.c 12 years ago
  Michael Brown 9a03a8e3d2 [test] Add X.509 self-tests 12 years ago
  Michael Brown 94cdbd76d6 [crypto] Treat ASN.1 OIDs as opaque 12 years ago
  Michael Brown 225be9d598 [crypto] Move all ASN.1 OIDs to asn1.h 12 years ago
  Michael Brown c76afb3605 [crypto] Use standard bit-rotation functions 12 years ago
  Michael Brown cf78afa5c5 [tls] Support sending a client certificate 12 years ago
  Michael Brown 8685280cbd [build] Allow a client certificate to be specified at build time 12 years ago
  Michael Brown 05c13716f9 [crypto] Use linker tables for RSA digestInfo prefixes 12 years ago
  Michael Brown 7869f71ae7 [tls] Treat handshake digest algorithm as a session parameter 12 years ago
  Michael Brown a156c15746 [tls] Use hybrid MD5+SHA1 algorithm 12 years ago
  Michael Brown 8583c323a2 [tls] Check certificate validity period against current date and time 12 years ago
  Michael Brown 0610bcb1d2 [tls] Parse X.509 validity times into seconds since the Epoch 12 years ago
  Michael Brown 846bde90e6 [time] Define an API for getting the current time 12 years ago
  Michael Brown bd6805a8c1 [libc] Add mktime() function 12 years ago
  Michael Brown 4d3b5473f8 [tls] Add full X.509 certificate parsing 12 years ago
  Michael Brown 3ec773cd2b [crypto] Force caller to provide temporary storage for modular calculations 12 years ago
  Michael Brown 5af9e62196 [rng] Add Linux entropy source using /dev/random 12 years ago
  Michael Brown 196f0bb081 [rng] Allow entropy_enable() to return an error 12 years ago
  Michael Brown dc87161c30 [tls] Use iPXE native RSA algorithm 12 years ago
  Michael Brown 299dedcff0 [crypto] Add native RSA algorithm 12 years ago
  Michael Brown c00eb6e190 [crypto] Add abstraction for a public-key algorithm 12 years ago
  Michael Brown e20550fddf [crypto] Add more ASN.1 functions for X.509 certificate parsing 12 years ago
  Michael Brown da76a489d6 [test] Run self-tests as an embedded image 12 years ago
  Michael Brown a0082b1308 [libc] Move VA_ARG_COUNT() macro to stdarg.h 12 years ago
  Michael Brown 071184a6e4 [crypto] Add big-integer library for RSA calculations 12 years ago
  Michael Brown f229162749 [crypto] Add ASN.1 functions for X.509 certificate parsing 12 years ago
  Michael Brown ffb6d6be6d [rng] Remove obsolete (and unfinished) get_random_bytes() function 12 years ago
  Michael Brown b63bcd73a0 [tls] Use const to mark incoming data being processed 12 years ago
  Michael Brown 1c29b4d979 [crypto] Upgrade AES and RSA code to upstream axTLS version 1.4.5 12 years ago
  Michael Brown 18ff2ad53e [debug] Ensure debug address and colourisation fields are fully initialised 12 years ago
  Michael Brown 8d038040ea [rng] Choose HMAC_DRBG using SHA-256 as the DRBG algorithm 12 years ago
  Michael Brown b9d9c3f1d5 [rng] Allow HMAC_DRBG to use multiple underlying hash algorithms 12 years ago
  Michael Brown 742e43be05 [rng] Use SHA-256 for Hash_df, and validate the hash function strength 12 years ago
  Michael Brown fb6a33360f [rng] Allow hash_df() to accept multiple underlying hash algorithms 12 years ago
  Michael Brown c8f52cccfb [tls] Formalise the definition of a TLS cipher suite 12 years ago
  Michael Brown 6069b09bfc [tls] Support (and prefer) SHA-256 variants of existing cipher suites 12 years ago
  Michael Brown 015c936791 [tls] Support TLS version 1.2 12 years ago
  Michael Brown fba2310562 [crypto] Replace MD5 implementation 12 years ago
  Michael Brown 657ab17338 [crypto] Add SHA-256 algorithm 12 years ago
  Michael Brown 76f5939736 [crypto] Replace SHA-1 implementation 12 years ago
  Michael Brown 4a32308b40 [tls] Add missing #include <stdlib.h> 12 years ago
  Michael Brown 281f9aa7a6 [tls] Send empty Certificate record if requested by server 12 years ago
  Michael Brown 56a7981d58 [tls] Allow transmitted records to be scheduled independently 12 years ago
  Michael Brown b7f8d1bbfd [tls] Add support for Server Name Indication (SNI) 12 years ago
  Michael Brown d9ce3bfe4c [tls] Support TLS version 1.1 12 years ago