aboutsummaryrefslogtreecommitdiff
path: root/src/crypto
AgeCommit message (Expand)AuthorFilesLines
2022-11-10[tls] Add GCM cipher suitesMichael Brown4-8/+128
2022-11-10[crypto] Support in-place decryption for GCM ciphersMichael Brown1-34/+32
2022-11-09[crypto] Ensure relevant GCM cipher state is cleared by cipher_setiv()Michael Brown1-7/+13
2022-11-09[tls] Allow handshake digest algorithm to be specified by cipher suiteMichael Brown2-0/+9
2022-11-08[tls] Add MAC length as a cipher suite parameterMichael Brown2-0/+8
2022-11-07[crypto] Add concept of cipher alignment sizeMichael Brown3-0/+3
2022-11-07[tls] Formalise notions of fixed and record initialisation vectorsMichael Brown2-0/+16
2022-10-25[crypto] Add block cipher Galois/Counter mode of operationMichael Brown2-0/+536
2022-10-25[crypto] Add concept of authentication tag to cipher algorithmsMichael Brown3-0/+10
2022-10-25[crypto] Allow initialisation vector length to vary from cipher blocksizeMichael Brown1-1/+2
2022-10-25[crypto] Expose null crypto algorithm methods for reuseMichael Brown3-51/+31
2022-10-11[tls] Add support for DHE variants of the existing cipher suitesMichael Brown2-4/+52
2022-10-11[tls] Add key exchange mechanism to definition of cipher suiteMichael Brown2-0/+4
2022-10-11[crypto] Add Ephemeral Diffie-Hellman key exchange algorithmMichael Brown1-0/+133
2022-10-10[crypto] Simplify internal HMAC APIMichael Brown4-93/+54
2021-05-18[x509] Use case-insensitive comparison for certificate namesMichael Brown1-1/+2
2020-12-28[x509] Clarify debug message for an untrusted X.509 issuerJosh McSavaney1-1/+1
2020-12-15[crypto] Allow private key to be specified as a TLS connection parameterMichael Brown2-11/+28
2020-12-09[x509] Make root of trust a reference-counted structureMichael Brown2-11/+46
2020-12-08[x509] Record root of trust used when validating a certificateMichael Brown2-7/+22
2020-12-08[ocsp] Remove dummy OCSP certificate rootMichael Brown1-14/+2
2020-12-08[asn1] Rename ASN1_OID_CURSOR to ASN1_CURSORMichael Brown19-27/+27
2020-07-21[deflate] Fix typo in comment describing length codesDaniel Johnson1-1/+1
2020-06-25[ocsp] Accept SHA1 certID responses even if SHA1 is not enabledMichael Brown1-15/+25
2020-06-16[crypto] Allow algorithms to be included without being OID-identifiableMichael Brown20-110/+371
2019-08-17[crypto] Profile the various stages of modular multiplicationMichael Brown1-0/+29
2019-08-17[crypto] Drag in configured digestInfo prefixes for any use of RSAMichael Brown1-0/+6
2019-03-10[ocsp] Accept response certID with missing hashAlgorithm parametersMichael Brown1-12/+30
2019-01-25[init] Show startup and shutdown function names in debug messagesMichael Brown2-0/+2
2018-03-20[rng] Use fixed-point calculations for min-entropy quantitiesMichael Brown1-2/+3
2018-03-18[ocsp] Centralise test for whether or not an OCSP check is requiredMichael Brown1-2/+2
2017-11-12[ntlm] Add support for NTLM authentication mechanismMichael Brown1-0/+334
2017-11-12[crypto] Add MD4 message digest algorithmMichael Brown1-0/+280
2017-11-12[crypto] Eliminate repetitions in MD5 round constant tableMichael Brown1-7/+10
2017-11-11[crypto] Fix endianness typo in commentMichael Brown1-1/+1
2017-06-20[crypto] Expose asn1_grow()Michael Brown1-1/+1
2017-06-20[crypto] Expose RSA_CTX_SIZE constantMichael Brown1-1/+1
2016-08-31[crypto] Mark permanent certificates as permanentMichael Brown1-0/+1
2016-08-31[crypto] Add certstat() to display basic certificate informationMichael Brown1-2/+2
2016-08-31[crypto] Allow certificates to be marked as having been added explicitlyMichael Brown1-4/+19
2016-08-31[crypto] Expose certstore_del() to explicitly remove stored certificatesMichael Brown1-4/+15
2016-08-25[crypto] Generalise X.509 "valid" field to a "flags" fieldMichael Brown2-5/+5
2016-08-25[crypto] Add image_x509() to extract X.509 certificates from imageMichael Brown1-0/+42
2016-07-29[crypto] Enable both DER and PEM formats by defaultMichael Brown1-0/+42
2016-07-28[crypto] Allow for parsing of partial ASN.1 cursorsMichael Brown1-6/+7
2016-05-08[arm] Avoid instruction references to symbols defined via ".equ"Michael Brown1-2/+8
2016-03-20[crypto] Allow trusted certificates to be stored in non-volatile optionsMichael Brown1-3/+7
2016-03-13[build] Allow assembler section type character to vary by architectureMichael Brown2-2/+2
2016-03-11[crypto] Allow for zero-length ASN.1 cursorsMichael Brown1-12/+0
2016-01-21[ocsp] Avoid including a double path separator in request URIMichael Brown1-28/+26
generated by cgit v1.1 at 2024-11-17 06:24:42 +0000