aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
| * x509: Fix some whitespaces and do some minor style cleanups in acertMartin Willi2014-03-311-72/+76
| |
| * ac: Remove unimplemented equals_holder() method from ac_tMartin Willi2014-03-311-8/+0
|/
* Added libipsec/net2net-3des scenarioAndreas Steffen2014-03-2811-0/+1521
|
* Renewed self-signed OCSP signer certificateAndreas Steffen2014-03-274-43/+45
|
* unit-tests: Fix filtered enumerator tests on 64-bit big-endian platformsTobias Brunner2014-03-271-12/+12
| | | | | In case of sizeof(void*) == 8 and sizeof(int) == 4 on big-endian hosts the tests failed as the actual integer value got cut off.
* travis: Run the "all" test case with leak detective enabledTobias Brunner2014-03-272-0/+7
| | | | | | | | But disable the gcrypt plugin, as it causes leaks. Also disable the backtraces by libunwind as they seem to cause threads to get cleaned up after the leak detective already has been disabled, which leads to invalid free()s.
* unit-tests: Fix memory leak in ntru testsTobias Brunner2014-03-271-3/+5
|
* Version bump to 5.1.3rc1Andreas Steffen2014-03-261-1/+1
|
* Check that valid OCSP responses are received in the ikev2/ocsp-multi-level ↵Andreas Steffen2014-03-241-0/+4
| | | | scenario
* Updated expired certificates issued by the Research and Sales Intermediate CAsAndreas Steffen2014-03-2421-185/+295
|
* Renewed revoked Research CA certificate5.1.3dr1Andreas Steffen2014-03-226-11/+37
|
* unit-test: added missing TEST_FUNCTION macrosAndreas Steffen2014-03-221-8/+16
|
* Added openssl-ikev2/net2net-pgp-v3 scenarioAndreas Steffen2014-03-2217-0/+208
|
* openssl: Add default fallback when calculating fingerprints of RSA keysTobias Brunner2014-03-221-1/+15
| | | | | | We still try to calculate these directly as it can avoid a dependency on the pkcs1 or other plugins. But for e.g. PGPv3 keys we need to delegate the actual fingerprint calculation to the pgp plugin.
* Completed integration of ntru_crypto library into ntru pluginAndreas Steffen2014-03-2230-1711/+1355
|
* Merge branch 'travis-ci'Tobias Brunner2014-03-2012-216/+492
|\ | | | | | | | | | | | | | | | | | | | | | | | | Adds a config file and build script for Travis CI. Makes the unit tests buildable with Clang, and test vectors are now actually verified when the unit tests are executed. Also adds options to run only selected test suites and to increase the debug level during unit tests. The --enable/disable configure options have been reordered and grouped, and an option to enable all the features has been added (plus an option to select a specific printf-hook implementation).
| * travis: Use parallel buildTobias Brunner2014-03-201-1/+1
| | | | | | | | | | | | | | Not sure if 4 jobs is optimal, but according to the docs each build host has 1.5 virtual cores available (although "getconf _NPROCESSORS_ONLN" returns 32, which is probably the number of real cores underneath), so more jobs might not actually reduce the build time much more.
| * crypto-tester: Don't fail if key size is not supportedTobias Brunner2014-03-201-6/+3
| | | | | | | | | | | | | | | | The Blowfish and Twofish implementations provided by the gcrypt plugin only support specific key lengths, which we don't know when testing against vectors (either during unit tests or during algorithm registration). The on_create test with a specific key length will be skipped anyway, so there is no point in treating this failure differently.
| * unit-tests: Add an option to increase the verbosity when running testsTobias Brunner2014-03-201-1/+9
| | | | | | | | | | The TESTS_VERBOSITY option takes an integer from -1 to 4 that sets the default debug level.
| * unit-tests: Add an option to run only a subset of all test suitesTobias Brunner2014-03-201-8/+54
| | | | | | | | | | The TESTS_SUITES environment variable can contain a comma separated list of names of test suites to run.
| * unit-tests: Actually verify registered algorithms against test vectorsTobias Brunner2014-03-202-5/+47
| | | | | | | | | | | | | | | | Previously, the {ns}.crypto_test.on_add option had to be enabled to actually test the algorithms, which we can't enforce for the tests in the test_runner as the option is already read when the crypto factory is initialized. Even so, we wouldn't want to do this for every unit test, which would be the result of enabling that option.
| * travis: Add tests for builtin printf hook implementationTobias Brunner2014-03-202-2/+8
| | | | | | | | | | We can't test Vstr as it does not properly handle negative int arguments for custom format callbacks, so some of the enum tests would fail.
| * configure: Add an option to select a specific printf hook implementationTobias Brunner2014-03-201-20/+35
| |
| * travis: Install dependencies for each test dynamicallyTobias Brunner2014-03-202-9/+14
| | | | | | | | | | Since the installation of all packages alone takes several minutes this should speed up some test cases.
| * travis: Enable clang buildTobias Brunner2014-03-201-1/+6
| | | | | | | | But build the distribution only once.
| * unit-tests: Use TEST_FUNCTION macro in ntru testsTobias Brunner2014-03-201-34/+44
| |
| * unit-tests: Implement registered functions without __builtin_apply()Tobias Brunner2014-03-201-17/+17
| | | | | | | | | | This makes the tests work with clang, which does not implement said builtin.
| * unit-tests: Call functions with TEST_ prefix in ntru testTobias Brunner2014-03-201-36/+38
| |
| * unit-tests: Prefix imported testable functions with TEST_Tobias Brunner2014-03-201-3/+3
| | | | | | | | This avoids any clashes with existing functions in the monolithic build.
| * unit-tests: Change how hashtable for testable functions is createdTobias Brunner2014-03-203-28/+49
| | | | | | | | | | | | | | | | Because GCC does not adhere to the priorities defined for constructors when building with --enable-monolithic (not sure if it was just luck that it worked in non-monolithic mode - anyway, it's not very portable) function registration would fail because the hashtable would not be created yet.
| * Add Travis CI config and build scriptTobias Brunner2014-03-202-0/+87
| |
| * configure: Add an option to enable all optional features/pluginsTobias Brunner2014-03-202-2/+17
| | | | | | | | This has probably no real practical use, but it simplifies testing.
| * configure: Reorder and group feature optionsTobias Brunner2014-03-201-93/+106
| |
| * unit-tests: Generate weak keys with gcrypt plugin (but quickly)Tobias Brunner2014-03-201-0/+3
| |
| * tnc-pdp: Fix monolithic buildTobias Brunner2014-03-201-1/+2
|/
* plugin-feature: Hash only the actually used feature argumentTobias Brunner2014-03-201-1/+31
| | | | | | | | Clang does not initialize padding in union members so hashing the complete "arg" union could lead to different hashes if the hashed plugin_feature_t does not have static storage duration. Fixes #549.
* Added TPMRA workitem support for [dummy] Trusted Boot measurementsAndreas Steffen2014-03-191-0/+16
|
* pki: When dispatching commands, don't look beyond non-null-terminated arrayMartin Willi2014-03-191-1/+1
|
* pki: Check length of commands array before accessing command in --helpMartin Willi2014-03-191-1/+1
| | | | | | | As --help is counted as command as well, the array is not null-terminated and we have to check for MAX_COMMANDS. Fixes #550.
* charon-nm: No additional secrets are required once a password has been enteredTobias Brunner2014-03-181-0/+4
| | | | | | | Recent versions of NM will call need_secrets() as long as it returns TRUE, but then fail as the number of calls is limited by an assert. Fixes #547.
* array: Fix removal of elements in the second half of an arrayTobias Brunner2014-03-181-1/+1
| | | | | | | Memory beyond the end of the array was moved when array elements in the second half of an array were removed. Fixes #548.
* plugin-loader: Properly initialize modular plugin list if no plugins are enabledTobias Brunner2014-03-181-0/+1
|
* Implemented ntru_private_key classAndreas Steffen2014-03-1815-1381/+1429
|
* 11 bits are needed to encode a maximum index of 1086Andreas Steffen2014-03-151-1/+1
|
* Merged libstrongswan options into charon sectionAndreas Steffen2014-03-1598-240/+41
|
* strongswan.conf is not needed on RADIUS server aliceAndreas Steffen2014-03-152-0/+2
|
* tnc-ifmap: Get a reference to the client cert as it is also used in an auth ↵Tobias Brunner2014-03-101-1/+1
| | | | config
* Version bump to 5.1.3dr1Andreas Steffen2014-03-071-1/+1
|
* Disable mandatory ECP support for attestionAndreas Steffen2014-03-0724-9/+347
|
* Refactored NTRU parameter set selectionAndreas Steffen2014-03-073-40/+47
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-07 05:43:25 +0000