Andreas Steffen
375dfb9076
crypto: References to RFCs 8410 and 8420
2018-09-04 07:24:20 +02:00
Tobias Brunner
1b67166921
Unify format of HSR copyright statements
2018-05-23 16:32:53 +02:00
Tobias Brunner
f7a73fe0f7
hashers: Change names of SHA2 hash algorithms
...
Keep the lower case names as they are as we use them internally (parsing
and e.g. in OpenSSL as identifier).
2017-11-17 09:32:47 +01:00
Tobias Brunner
dfd5f090fb
hasher: Add uppercase short names for hash algorithms
2017-11-17 09:30:53 +01:00
Tobias Brunner
54f8d09261
auth-cfg: Store signature schemes as signature_params_t objects
...
Due to circular references the hasher_from_signature_scheme() helper
does not take a signature_params_t object.
2017-11-08 16:48:10 +01:00
Tobias Brunner
024b979522
certificate: Return signature scheme and parameters from issued_by() method
...
This also required some include restructuring (avoid including library.h
in headers) to avoid unresolvable circular dependencies.
2017-11-08 16:48:10 +01:00
Tobias Brunner
c2b878cd61
hasher: Add function to determine length of hashes
2017-11-08 16:48:10 +01:00
Tobias Brunner
677072accc
public-key: Add RSASSA-PSS signature scheme identifier
2017-11-08 16:48:10 +01:00
Tobias Brunner
43b59d1323
ikev2: Don't use SHA-1 for RFC 7427 signature authentication
...
RFC 8247 demoted it to MUST NOT.
References #2427 .
2017-11-08 16:47:24 +01:00
Tobias Brunner
525cc46cab
Change interface for enumerator_create_filter() callback
...
This avoids the unportable 5 pointer hack, but requires enumerating in
the callback.
2017-05-26 13:56:44 +02:00
Andreas Steffen
db1ab1cd99
Reference Edwards-curve signature RFCs
2017-03-20 21:18:00 +01:00
Andreas Steffen
35bc60cc68
Added support of EdDSA signatures
2016-12-14 11:15:47 +01:00
Andreas Steffen
40f2589abf
gmp: Support of SHA-3 RSA signatures
2016-09-22 17:34:31 +02:00
Andreas Steffen
b12c53ce77
Use standard unsigned integer types
2016-03-24 18:52:48 +01:00
Andreas Steffen
23a50e66f1
testing: Updated hasher tests
2015-11-06 16:05:44 +01:00
Andreas Steffen
a88d958933
Explicitly mention SHA2 algorithm in BLISS OIDs and signature schemes
2015-11-06 14:55:31 +01:00
Andreas Steffen
f6fede934b
Support BLISS signatures with SHA-3 hash
2015-11-03 21:35:09 +01:00
Andreas Steffen
de61e2cef4
Defined SHA-3 hashers
2015-11-03 19:07:15 +01:00
Tobias Brunner
1d384bf8aa
hash-algorithm-set: Add class to manage a set of hash algorithms
2015-03-04 13:54:11 +01:00
Tobias Brunner
d874101055
hasher: Add helper to determine hash algorithm from signature scheme
2015-03-04 13:54:09 +01:00
Tobias Brunner
247eadb73d
hasher: Add filter function for algorithms permitted by RFC 7427
2015-03-04 13:54:08 +01:00
Tobias Brunner
4f9e1c49eb
hasher: Redefine hash algorithms to match values defined by RFC 7427
...
Other algorithms are defined in private use range.
2015-03-04 13:54:08 +01:00
Andreas Steffen
27bd0fed93
Allow SHA256 and SHA384 data hash for BLISS signatures.
...
The default is SHA512 since this hash function is also
used for the c_indices random oracle.
2015-02-26 08:56:12 +01:00
Andreas Steffen
f673966b9f
Started implementing BLISS signature generation
2014-11-29 14:51:16 +01:00
Tobias Brunner
e2c9a03d15
Remove HASH_PREFERRED, usages are replaced with HASH_SHA1, which is required for IKEv2 anyway
2013-10-11 15:13:25 +02:00
Tobias Brunner
1f2a34d6d8
Add support for untruncated HMAC-SHA-512
2013-05-08 15:02:39 +02:00
Tobias Brunner
199fdcadae
Function added to convert a hash algorithm to an HMAC integrity algorithm
2013-05-08 15:02:39 +02:00
Tobias Brunner
3b891b9e5b
Avoid problems with Doxygen by adding warn_unused_result attribute at the end of method signatures
2012-08-11 16:48:09 +02:00
Martin Willi
4b96000833
Add short names for hasher algorithms
2012-07-17 17:31:55 +02:00
Martin Willi
e3b2e900e6
Add a return value to hasher_t.reset()
2012-07-16 14:55:06 +02:00
Martin Willi
87dd205b61
Add a return value to hasher_t.allocate_hash()
2012-07-16 14:55:06 +02:00
Martin Willi
8bd6a30af1
Add a return value to hasher_t.get_hash()
2012-07-16 14:55:06 +02:00
Tobias Brunner
01850f5d55
Function to convert PRFs to hash algorithms added
2012-06-25 16:35:06 +02:00
Tobias Brunner
903093d439
hasher_algorithm_from_integrity() optionally returns truncation length
2012-06-25 16:35:06 +02:00
Tobias Brunner
cc55783f36
Added function to convert integrity algorithms to hash algorithms (if based on one).
2012-06-11 17:33:28 +02:00
Martin Willi
4952dc11da
Fixed all doxygen warnings
2009-10-22 14:34:10 +02:00
Andreas Steffen
210d287368
extended hasher_signature_algorithm_to_oid() function
2009-09-13 21:41:51 +02:00
Martin Willi
b9b8a98f47
remove spaces within tabs (\t( )+\t)
2009-09-04 15:00:19 +02:00
Martin Willi
7daf5226b7
removed trailing spaces ([[:space:]]+$)
2009-09-04 13:46:09 +02:00
Andreas Steffen
b6f739c13b
support of SHA224-based certificate signatures
2009-08-05 22:01:44 +02:00
Andreas Steffen
e43b1e4a5b
inserted HASH_MD4 in increasing order
2009-05-07 23:19:19 +02:00
Martin Willi
2c36ebb58e
moved hasher to the correct doxygen group
2009-05-04 16:10:13 +02:00
Tobias Brunner
8c5d72cd0b
removing svn keyword $Id$ from all files
2009-04-30 13:19:35 +00:00
Martin Willi
1490ff4d9b
updated Doxyfile
...
properly close all doxygen groups
fixed remaining doxygen warnings
2009-03-24 17:43:01 +00:00
Tobias Brunner
b250665f58
adding enum elements for MD4 and DES (ECB)
2009-02-18 19:45:46 +00:00
Martin Willi
cfede7f6e2
The introduced SHA1_NOFINAL hasher was not sufficient for EAP-AKA,
...
as it requires to XOR the key into the hashers state.
A new SHA1 based keyed hash function, implemented as PRF, enables EAP-AKA
and the FIPS-PRF function to properly use the existing SHA1 implementation.
2008-03-19 14:02:52 +00:00
Martin Willi
552cc11b1f
merged the modularization branch (credentials) back to trunk
2008-03-13 14:14:44 +00:00
Andreas Steffen
cd543a69a2
extended asn1_algorithmIdentifier() to SHA-2
2008-01-22 10:32:37 +00:00
Andreas Steffen
6d8bec0b97
corrected typos
2007-10-17 02:56:24 +00:00
Andreas Steffen
f39e4d3209
added hasher_signature_algorithm_to_oid() function
2007-10-12 23:18:42 +00:00