aboutsummaryrefslogtreecommitdiffstats
Commit message (Expand)AuthorAgeFilesLines
...
* x509: Don't include authKeyIdentifier in self-signed certificatesTobias Brunner2014-04-091-1/+1
* x509: Initialize certs when building optionalSignature for OCSP requestsTobias Brunner2014-04-091-1/+1
* stroke: Fix memory leak when printing unknown AC group OIDsTobias Brunner2014-04-091-0/+1
* pki: Fix memory leak when printing unknown AC group OIDsTobias Brunner2014-04-091-0/+1
* pki: Removed extra continue statementTobias Brunner2014-04-091-1/+0
* Added support for msSmartcardLogon EKUAndreas Steffen2014-04-086-16/+37
* Added some more OIDsAndreas Steffen2014-04-081-1/+20
* Initialize m1 to suppress compiler warningAndreas Steffen2014-04-071-1/+1
* Fixed another dirname/basename refactoring bug.Andreas Steffen2014-04-071-1/+3
* Fixed dirname/basename refactoring bug.Andreas Steffen2014-04-071-11/+10
* Added SHA3 OIDsAndreas Steffen2014-04-041-6/+12
* Fixed pretest script in tnc/tnccs-20-pt-tls scenarioAndreas Steffen2014-04-041-1/+1
* ike-cfg: Properly compare IKE proposals for equality5.1.3rc1Tobias Brunner2014-04-031-1/+1
* leak-detective: LEAK_DETECTIVE_DISABLE completely disables LDTobias Brunner2014-04-033-17/+23
* testing: Run 'conntrack -F' before all test scenariosTobias Brunner2014-04-0228-41/+14
* unit-tests: Verify two bytes at once when testing chunk_clear()Tobias Brunner2014-04-021-3/+6
* Merge branch 'tls-unit-tests'Martin Willi2014-04-0124-38/+988
|\
| * tls: Add a test case to check correct enum name mapping of cipher suitesMartin Willi2014-04-013-0/+250
| * tls: Add socket based tests testing all supported suites with TLS 1.2/1.1/1.0Martin Willi2014-04-013-0/+527
| * tls: Remove superfluous initializers in TLS AEAD implementationsMartin Willi2014-04-014-4/+0
| * tls: Support a maximum TLS version to negotiate using TLS socket abstractionMartin Willi2014-04-016-7/+9
| * tls: Support a null encryption flag on TLS socket abstractionMartin Willi2014-04-015-7/+21
| * tls: Introduce a generic TLS purpose that accepts NULL encryption ciphersMartin Willi2014-04-014-2/+8
| * tls: Export a function to list supported TLS cipher suitesMartin Willi2014-04-012-18/+66
| * tls: Create a unit-test runnerMartin Willi2014-04-016-0/+94
| * unit-tests: Catch timeouts during test runner deinit functionMartin Willi2014-04-011-6/+18
| * unit-tests: Prevent a failing worker thread to go wild after it failsMartin Willi2014-04-011-1/+2
|/
* Test TLS AEAD cipher suitesAndreas Steffen2014-04-0110-10/+17
* Added Ubuntu 14.04 to IMV databaseAndreas Steffen2014-03-311-0/+24
* Slightly edited evaltest of ikev2/ocsp-untrusted-cert scenarioAndreas Steffen2014-03-311-1/+1
* unit-tests: Always load address of testable functionsTobias Brunner2014-03-311-1/+1
* settings: Reduce log verbosity if strongswan.conf does not existTobias Brunner2014-03-311-1/+10
* test-vectors: Renumber AES-GCM test vectors according to original sourceTobias Brunner2014-03-312-16/+100
* Merge branch 'tls-aead'Martin Willi2014-03-3129-479/+1435
|\
| * NEWS: Note TLS AEAD modeMartin Willi2014-03-311-0/+3
| * tls: Fix some TLS cipher suite enum namesMartin Willi2014-03-311-3/+3
| * tls: Include TLS version announced in Client Hello in encrypted premasterMartin Willi2014-03-311-1/+7
| * tls: Check for minimal TLS record length before each record iterationMartin Willi2014-03-311-8/+8
| * tls: Fix AEAD algorithm filtering, avoid filtering all suites if no AEAD foundMartin Willi2014-03-311-19/+52
| * tls: Offer TLS signature schemes in ClientHello in order of preferenceMartin Willi2014-03-311-90/+59
| * tls: Define AES-GCM cipher suites from RFC 5288/5289Martin Willi2014-03-311-0/+54
| * tls: Implement the TLS AEAD abstraction for real AEAD modesMartin Willi2014-03-314-8/+262
| * tls: Separate TLS protection to abstracted AEAD modesMartin Willi2014-03-318-325/+874
| * aead: Support custom AEAD salt sizesMartin Willi2014-03-3117-43/+131
|/
* ikev2: Recreate a CHILD_SA that got a hard lifetime expire without rekeyingMartin Willi2014-03-311-0/+12
* revocation: Log error if no OCSP signer candidate foundMartin Willi2014-03-311-1/+1
* Merge branch 'ocsp-constraints'Martin Willi2014-03-313-46/+86
|\
| * revocation: Restrict OCSP signing to specific certificatesMartin Willi2014-03-313-10/+65
| * revocation: Don't merge auth config of CLR/OCSP trustchain validationMartin Willi2014-03-311-39/+24
|/
* hashtable: Make key arguments constTobias Brunner2014-03-312-22/+23
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-09 12:03:17 +0000