diff options
| author | Michael Brown | 2014-03-30 21:07:14 +0200 |
|---|---|---|
| committer | Michael Brown | 2014-03-30 21:08:00 +0200 |
| commit | 7c7c95709482c769fb081471f2ff8701dbd5b068 (patch) | |
| tree | f4f30b3d4d00794351b5e00cc6da173759d0dec8 /src/config/crypto.h | |
| parent | [crypto] Use fingerprint when no common name is available for debug messages (diff) | |
| download | ipxe-7c7c95709482c769fb081471f2ff8701dbd5b068.tar.gz ipxe-7c7c95709482c769fb081471f2ff8701dbd5b068.tar.xz ipxe-7c7c95709482c769fb081471f2ff8701dbd5b068.zip | |
[crypto] Allow signed timestamp error margin to be configured at build time
Signed-off-by: Michael Brown <mcb30@ipxe.org>
Diffstat (limited to 'src/config/crypto.h')
| -rw-r--r-- | src/config/crypto.h | 22 |
1 files changed, 22 insertions, 0 deletions
diff --git a/src/config/crypto.h b/src/config/crypto.h new file mode 100644 index 00000000..95c73d47 --- /dev/null +++ b/src/config/crypto.h @@ -0,0 +1,22 @@ +#ifndef CONFIG_CRYPTO_H +#define CONFIG_CRYPTO_H + +/** @file + * + * Cryptographic configuration + * + */ + +FILE_LICENCE ( GPL2_OR_LATER ); + +/** Margin of error (in seconds) allowed in signed timestamps + * + * We default to allowing a reasonable margin of error: 12 hours to + * allow for the local time zone being non-GMT, plus 30 minutes to + * allow for general clock drift. + */ +#define TIMESTAMP_ERROR_MARGIN ( ( 12 * 60 + 30 ) * 60 ) + +#include <config/local/crypto.h> + +#endif /* CONFIG_CRYPTO_H */ |