aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* suppress IKEv2-specific policy flags in pluto. Patch contributed by Heiko ↵Andreas Steffen2008-03-211-0/+8
| | | | Hund from Astaro.
* optimized debug output of credential_manager.cAndreas Steffen2008-03-211-21/+21
|
* removed build.h includeAndreas Steffen2008-03-201-2/+0
|
* refactored openac and its attribute certificate factoryAndreas Steffen2008-03-2012-275/+1542
|
* modified debug textAndreas Steffen2008-03-201-1/+1
|
* cert_cache_t caches subject-issuer relations and subject certificatesMartin Willi2008-03-204-3/+293
| | | | ocsp/crl do not benefit yet due missing lookup function
* fallback to random end entity certificate if trustchain building failsMartin Willi2008-03-201-3/+18
|
* (no commit message)Martin Willi2008-03-202-14/+86
|
* some C libraries need _GNU_SOURCE for rwlocksMartin Willi2008-03-201-0/+2
|
* added support for certificate requests for not yet known CAsMartin Willi2008-03-204-5/+31
|
* added $Andreas Steffen2008-03-201-0/+2
|
* fixed verification of preinstalled certificatesMartin Willi2008-03-201-1/+1
|
* included utils/linked_list.hAndreas Steffen2008-03-201-0/+1
|
* more trustchain verification improvementsMartin Willi2008-03-201-99/+103
| | | | should fix crl-revoked and two-certs scenarios
* cleaned up includesAndreas Steffen2008-03-201-1/+3
|
* CA certificates are allowed to sign OCSP responsed without OCSP_SIGNER flagMartin Willi2008-03-201-1/+2
|
* refactored trustchain verification, this should fix #33Martin Willi2008-03-197-329/+531
| | | | moved auth_info/ocsp_response credset wrapper to separate files
* increased debug level in trust chain verification for auditing purposesAndreas Steffen2008-03-191-31/+50
|
* removed unimplemented private/public key function declarationsMartin Willi2008-03-192-47/+0
|
* The introduced SHA1_NOFINAL hasher was not sufficient for EAP-AKA, Martin Willi2008-03-1910-109/+183
| | | | | | as it requires to XOR the key into the hashers state. A new SHA1 based keyed hash function, implemented as PRF, enables EAP-AKA and the FIPS-PRF function to properly use the existing SHA1 implementation.
* log nextUpdate of crls and ocsp responsesAndreas Steffen2008-03-191-12/+36
|
* fixed stupid bug in fetch_ocsp()Andreas Steffen2008-03-191-1/+1
|
* attempt to achieve consistent debugging outputAndreas Steffen2008-03-197-69/+79
|
* fixed shared key lookup in strokeMartin Willi2008-03-191-1/+1
|
* fixed peer_cfg lookup when omitting IDrMartin Willi2008-03-192-3/+18
|
* fixed CRL check return value on revoked certificatesMartin Willi2008-03-196-53/+32
| | | | | fixed possible refcounting bugs generic return_null() implementation
* fixed compiler warningMartin Willi2008-03-181-0/+1
|
* added generic payload order rules for notifiesMartin Willi2008-03-181-0/+6
|
* fixed ike_cfg lookup in strokeMartin Willi2008-03-181-1/+1
|
* added false positive signature check Martin Willi2008-03-181-0/+6
|
* added missing test case file ([3607])Martin Willi2008-03-181-0/+61
|
* creating public key from RSA private keyMartin Willi2008-03-184-5/+27
| | | | RSA key generation and signature test
* made is_newer() a certificate_t methodAndreas Steffen2008-03-187-137/+226
|
* better normalized tables for SQL plugin (IDs)Martin Willi2008-03-186-286/+453
|
* enforcing x509_flags on certificate constructionMartin Willi2008-03-175-38/+43
|
* fixed CRL revoked certs enumerationMartin Willi2008-03-171-4/+4
|
* logging to SQL databaseMartin Willi2008-03-156-1/+255
|
* correctly unregister IKE_SA at the bus Martin Willi2008-03-151-1/+1
|
* removed X509_PEER flag; flags are meant to read cert, not to store ↵Martin Willi2008-03-145-40/+106
| | | | | | | additional state in cert removed x509_t.set_flags for the reason above implemented a simple, generic shared_key_t
* credential lookup in mysql/sqlite databaseMartin Willi2008-03-147-2/+493
|
* refactored buggy trustchain building, fixed refcount bugMartin Willi2008-03-141-105/+91
|
* reduced mysql pool verbosityMartin Willi2008-03-141-1/+1
|
* SQL schema for MySQL and SQLite, test dataMartin Willi2008-03-144-89/+165
|
* two small fixesTobias Brunner2008-03-135-7/+7
|
* fixed apidoc groupingMartin Willi2008-03-132-2/+2
|
* added NetworkManager prototype DBUS policy, applet configMartin Willi2008-03-132-0/+29
|
* added old and unmaintained prototype of NetworkManager applet and authenticatorMartin Willi2008-03-133-0/+244
|
* reverted accidentally commited testing configMartin Willi2008-03-134-16/+14
|
* merged the modularization branch (credentials) back to trunkMartin Willi2008-03-13495-23703/+30238
|
* activated svn:keywords on all UML scriptsAndreas Steffen2008-03-015-5/+5
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 06:45:13 +0000