mbedtls/include/mbedtls
Antonio Quartulli b9e3c6d9c6 pkcs5v2: add support for additional hmacSHA algorithms
Currently only SHA1 is supported as PRF algorithm for PBKDF2
(PKCS#5 v2.0).
This means that keys encrypted and authenticated using
another algorithm of the SHA family cannot be decrypted.

This deficiency has become particularly incumbent now that
PKIs created with OpenSSL1.1 are encrypting keys using
hmacSHA256 by default (OpenSSL1.0 used PKCS#5 v1.0 by default
and even if v2 was forced, it would still use hmacSHA1).

Enable support for all the digest algorithms of the SHA
family for PKCS#5 v2.0.

Signed-off-by: Antonio Quartulli <antonio@openvpn.net>
2018-02-14 11:12:58 +01:00
..
aes.h Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
aesni.h Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
arc4.h Add documentation warnings for weak algorithms 2018-01-30 10:39:32 +00:00
asn1.h Fix typo in asn1.h 2017-10-12 22:42:04 +01:00
asn1write.h Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
base64.h Fix references to non-standard SIZE_T_MAX 2015-10-05 15:23:11 +01:00
bignum.h Mention that mpi_fill_random interprets PRNG output as big-endian 2017-10-25 15:44:10 +01:00
blowfish.h Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
bn_mul.h Make check-names.sh happy 2016-01-08 15:08:49 +01:00
camellia.h Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
ccm.h Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
certs.h Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
check_config.h Tune dependencies 2015-09-09 12:46:16 +02:00
cipher.h Add documentation warnings for weak algorithms 2018-01-30 10:39:32 +00:00
cipher_internal.h Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
compat-1.3.h Remove obsolete macros from compat-1.3.h 2017-05-15 11:48:49 +01:00
config.h Add documentation warnings for weak algorithms 2018-01-30 10:39:32 +00:00
ctr_drbg.h Fix a fairly common typo in comments 2015-09-25 04:27:22 +02:00
debug.h Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
des.h Add documentation warnings for weak algorithms 2018-01-30 10:39:32 +00:00
dhm.h Add warning on the use of RFC 5114 primes 2017-10-16 09:21:33 +01:00
ecdh.h Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
ecdsa.h Clarify the use of ECDSA API 2017-06-07 15:59:21 +01:00
ecp.h Rename time and index parameter to avoid name conflict. 2017-07-28 22:14:55 +01:00
entropy.h Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
entropy_poll.h Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
error.h Only return VERIFY_FAILED from a single point 2017-07-28 12:20:48 +01:00
gcm.h Fix documentation for mbedtls_gcm_finish() 2016-10-12 19:54:07 +01:00
havege.h Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
hmac_drbg.h Fix a fairly common typo in comments 2015-09-25 04:27:22 +02:00
md.h Add documentation warnings for weak algorithms 2018-01-30 10:39:32 +00:00
md2.h Add documentation warnings for weak algorithms 2018-01-30 10:39:32 +00:00
md4.h Add documentation warnings for weak algorithms 2018-01-30 10:39:32 +00:00
md5.h Add documentation warnings for weak algorithms 2018-01-30 10:39:32 +00:00
md_internal.h Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
memory_buffer_alloc.h Clarifies documentation on reported memory statistics 2016-05-05 17:55:19 +01:00
net.h Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
oid.h pkcs5v2: add support for additional hmacSHA algorithms 2018-02-14 11:12:58 +01:00
padlock.h Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
pem.h Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
pk.h Try to prevent some misuse of RSA functions 2015-10-30 10:57:43 +01:00
pk_internal.h Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
pkcs5.h Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
pkcs11.h Fix macroization of inline in C++ 2015-10-05 11:41:36 +01:00
pkcs12.h Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
platform.h Fixes typo in platform.h 2016-05-18 19:36:04 +01:00
ripemd160.h Various fixes to doxygen API generation 2016-01-04 15:48:12 +00:00
rsa.h Improve documentation of PKCS1 decryption functions 2017-07-19 01:49:45 +01:00
sha1.h Add documentation warnings for weak algorithms 2018-01-30 10:39:32 +00:00
sha256.h Various fixes to doxygen API generation 2016-01-04 15:48:12 +00:00
sha512.h Various fixes to doxygen API generation 2016-01-04 15:48:12 +00:00
ssl.h Enhance documentation of ssl_write_hostname_ext, adapt ChangeLog. 2017-09-30 23:49:01 +01:00
ssl_cache.h Fix typo in documentation 2015-10-27 10:28:49 +01:00
ssl_ciphersuites.h Undo API change 2017-06-20 19:33:51 +01:00
ssl_cookie.h Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
ssl_internal.h Merge remote-tracking branch 'restricted/pr/412' into mbedtls-2.1-restricted 2017-12-19 11:33:07 +01:00
ssl_ticket.h Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
threading.h Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
timing.h mbedtls_timing_get_timer: don't use uninitialized memory 2017-12-20 19:33:48 +01:00
version.h Update version to 2.1.10 2018-02-02 18:10:05 +00:00
x509.h Rename time and index parameter to avoid name conflict. 2017-07-28 22:14:55 +01:00
x509_crl.h Reintroduce line deleted by accident 2016-01-04 15:48:43 +00:00
x509_crt.h Update doc of return value of verify() 2017-07-28 12:20:48 +01:00
x509_csr.h Fix typo in docs for mbedtls_x509write_csr_der() 2016-10-12 17:37:25 +01:00
xtea.h Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00