index
:
tteras/strongswan
master
tteras
tteras-release
tteras' strongSwan tree
gitolite
about
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
Commit message (
Expand
)
Author
Age
Files
Lines
...
*
plugin-loader: Increase log level for warning about plugin features that fail...
Tobias Brunner
2015-03-09
1
-3
/
+3
*
tls-peer: Make sure to use the right trusted public key for peer
Tobias Brunner
2015-03-09
1
-4
/
+8
*
pkcs11: Convert RFC 3279 ECDSA signatures when verifying
Tobias Brunner
2015-03-09
1
-4
/
+33
*
pkcs11: Properly encode RFC 3279 ECDSA signatures
Tobias Brunner
2015-03-09
1
-2
/
+19
*
pkcs11: Properly encode EC_POINTs created on a token
Tobias Brunner
2015-03-09
1
-5
/
+8
*
pkcs11: Properly handle EC_POINTs returned as ASN.1 octet string
Tobias Brunner
2015-03-09
1
-1
/
+43
*
Updated products in imv database
Andreas Steffen
2015-03-08
1
-0
/
+137
*
attest: output trusted flag and device description
Andreas Steffen
2015-03-08
1
-8
/
+10
*
Make access requestor IP address available to TNC server
Andreas Steffen
2015-03-08
24
-244
/
+550
*
testing: Update modified updown scripts to the latest template
Tobias Brunner
2015-03-06
14
-2589
/
+993
*
Remove obsolete _updown_espmark script
Tobias Brunner
2015-03-06
4
-441
/
+1
*
_updown: Remove obsolete stuff from default script
Tobias Brunner
2015-03-06
1
-192
/
+7
*
ikev1: Set protocol ID and SPIs in INITIAL-CONTACT notification payloads
Tobias Brunner
2015-03-06
1
-2
/
+13
*
x509: Use subjectKeyIdentifier provided by issuer cert when checking CRL issuer
Tobias Brunner
2015-03-06
1
-18
/
+15
*
kernel-pfkey: Add option to set receive buffer size of event socket
Tobias Brunner
2015-03-06
3
-0
/
+21
*
use SHA512 for moon's BLISS signature
Andreas Steffen
2015-03-04
2
-2
/
+3
*
Merge branch 'ikev2-signature-authentication'
Tobias Brunner
2015-03-04
84
-191
/
+1411
|
\
|
*
NEWS: Introduce RFC 7427 signature authentication
Tobias Brunner
2015-03-04
1
-0
/
+13
|
*
man: Add documentation about IKEv2 signature schemes
Tobias Brunner
2015-03-04
1
-0
/
+15
|
*
testing: Test classic public key authentication in ikev2/net2net-cert scenario
Tobias Brunner
2015-03-04
2
-0
/
+2
|
*
testing: Disable signature authentication on dave in openssl-ikev2/ecdsa-cert...
Tobias Brunner
2015-03-04
2
-2
/
+3
|
*
ikev2: Try all RSA signature schemes if none is configured
Tobias Brunner
2015-03-04
1
-4
/
+19
|
*
ikev2: Consider signature schemes in rightauth when sending hash algorithms
Tobias Brunner
2015-03-04
1
-14
/
+54
|
*
tkm: Implement hash algorithm storage methods of keymat_v2_t interface
Tobias Brunner
2015-03-04
1
-0
/
+29
|
*
keymat: Use hash algorithm set
Tobias Brunner
2015-03-04
1
-29
/
+7
|
*
hash-algorithm-set: Add class to manage a set of hash algorithms
Tobias Brunner
2015-03-04
4
-1
/
+193
|
*
ikev2: Add an option to disable constraints against signature schemes
Tobias Brunner
2015-03-04
2
-1
/
+19
|
*
stroke: Enable BLISS-based public key constraints
Tobias Brunner
2015-03-04
1
-4
/
+19
|
*
credential-manager: Store BLISS key strength in auth config
Tobias Brunner
2015-03-04
1
-0
/
+3
|
*
auth-cfg: Add BLISS key strength constraint
Tobias Brunner
2015-03-04
2
-21
/
+43
|
*
testing: Don't check for exact IKEv2 fragment size
Tobias Brunner
2015-03-04
1
-2
/
+2
|
*
testing: Update test conditions because signature schemes are now logged
Tobias Brunner
2015-03-04
33
-58
/
+58
|
*
testing: Add ikev2/rw-sig-auth scenario
Tobias Brunner
2015-03-04
12
-0
/
+180
|
*
testing: Add ikev2/net2net-cert-sha2 scenario
Tobias Brunner
2015-03-04
9
-0
/
+104
|
*
ikev2: Fall back to SHA-1 signatures for RSA
Tobias Brunner
2015-03-04
1
-0
/
+7
|
*
ikev2: Select a signature scheme appropriate for the given key
Tobias Brunner
2015-03-04
1
-18
/
+13
|
*
public-key: Add helper to determine acceptable signature schemes for keys
Tobias Brunner
2015-03-04
3
-1
/
+122
|
*
ikev2: Log the actual signature scheme used for RFC 7427 authentication
Tobias Brunner
2015-03-04
1
-4
/
+6
|
*
ikev2: Store signature scheme used to verify peer in auth_cfg
Tobias Brunner
2015-03-04
1
-0
/
+1
|
*
ikev2: Add a global option to disable RFC 7427 signature authentication
Tobias Brunner
2015-03-04
2
-2
/
+15
|
*
ikev2: Remove private AUTH_BLISS method
Tobias Brunner
2015-03-04
3
-18
/
+1
|
*
ikev2: Handle RFC 7427 signature authentication in pubkey authenticator
Tobias Brunner
2015-03-04
2
-49
/
+179
|
*
hasher: Add helper to determine hash algorithm from signature scheme
Tobias Brunner
2015-03-04
2
-0
/
+44
|
*
public-key: Add helper to map signature schemes to ASN.1 OIDs
Tobias Brunner
2015-03-04
2
-3
/
+54
|
*
public-key: Add helper to determine key type from signature scheme
Tobias Brunner
2015-03-04
2
-0
/
+43
|
*
ikev2: Enable signature authentication by transmitting supported hash algorithms
Tobias Brunner
2015-03-04
2
-4
/
+88
|
*
keymat: Add facility to store supported hash algorithms
Tobias Brunner
2015-03-04
2
-1
/
+70
|
*
hasher: Add filter function for algorithms permitted by RFC 7427
Tobias Brunner
2015-03-04
2
-0
/
+30
|
*
hasher: Redefine hash algorithms to match values defined by RFC 7427
Tobias Brunner
2015-03-04
2
-27
/
+29
|
*
ikev2: Add SIGNATURE_HASH_ALGORITHMS notify payload
Tobias Brunner
2015-03-04
2
-6
/
+18
[prev]
[next]