aboutsummaryrefslogtreecommitdiffstats
Commit message (Expand)AuthorAgeFilesLines
...
| * openssl: Add support for verifying RSASSA-PSS signaturesTobias Brunner2017-11-082-3/+142
| * openssl: Add support for creating RSASSA-PSS signaturesTobias Brunner2017-11-082-5/+132
| * openssl: Add helper to determine EVP_MD from hash_algorithm_tTobias Brunner2017-11-082-9/+27
| * unit-tests: Add FIPS 186-4 RSA test vectorsTobias Brunner2017-11-081-5/+2428
| * gcrypt: Determine missing RSA private key parametersTobias Brunner2017-11-081-4/+133
| * gmp: Determine missing RSA private key parametersTobias Brunner2017-11-081-4/+109
| * openssl: Add functions to determine missing RSA private key parametersTobias Brunner2017-11-081-9/+223
| * signature-params: Add functions to parse/build ASN.1 RSASSA-PSS paramsTobias Brunner2017-11-087-1/+421
| * hasher: Add function to determine length of hashesTobias Brunner2017-11-082-0/+46
| * asn1: Add function to generate an ASN.1 integer from an uint64_tTobias Brunner2017-11-083-6/+63
| * asn1: Add OID for MGF1Tobias Brunner2017-11-081-1/+1
| * signature-params: Add struct for RSASSA-PSS parametersTobias Brunner2017-11-082-0/+42
| * private-key: Add optional parameters argument to sign() methodTobias Brunner2017-11-0829-50/+50
| * public-key: Add optional parameters argument to verify() methodTobias Brunner2017-11-0828-46/+60
| * public-key: Add RSASSA-PSS signature scheme identifierTobias Brunner2017-11-083-0/+9
| * asn1: Add OID for RSASSA-PSSTobias Brunner2017-11-081-0/+1
|/
* ikev2: Don't use SHA-1 for RFC 7427 signature authenticationTobias Brunner2017-11-083-7/+5
* proposal: Remove MODP-1024 from default IKE proposalTobias Brunner2017-11-081-2/+2
* proposal: Remove MD5 from default IKE proposalTobias Brunner2017-11-081-2/+5
* proposal: Remove deprecated algorithms from default ESP and AH proposalsTobias Brunner2017-11-081-4/+0
* configure: Fix check for libtpmtss to build it only when neededMartin Willi2017-11-081-1/+1
* pool: Destroy enumerator before deleting existing poolTobias Brunner2017-11-081-4/+6
* kernel-pfkey: Support anti-replay windows > 2kTobias Brunner2017-11-081-1/+14
* kernel-pfkey: Don't include keys in SADB_UPDATE message to update IPs on FreeBSDTobias Brunner2017-11-081-0/+3
* Merge branch 'vici-counters'Tobias Brunner2017-11-0820-389/+1211
|\
| * swanctl: Add --counters commandTobias Brunner2017-11-083-1/+156
| * vici: Add 'get|reset-counters' commandsTobias Brunner2017-11-084-1/+191
| * counters: Move IKE event counter collection from stroke to a separate pluginTobias Brunner2017-11-0813-387/+864
|/
* systime-fix: Add timeout option to stop waiting for valid system timeTobias Brunner2017-11-082-10/+46
* android: Add log message if failed to retrieve user certificate encodingTobias Brunner2017-11-021-0/+1
* testing: Fix output matching of lease time in ipsec pool utilityTobias Brunner2017-11-021-2/+2
* shunt-mananger: Make outbound FWD shunt policies optionalTobias Brunner2017-11-021-6/+15
* ike: Do not send initial contact only for UNIQUE_NEVERThomas Egerer2017-11-023-4/+2
* pkcs11: Call C_Finalize() to cancel jobs waiting in C_WaitForSlotEvent()Tobias Brunner2017-11-021-9/+14
* pool: Make pool timeout configurable in other units than hoursTobias Brunner2017-11-022-11/+25
* utils: Add helper function to parse time spans from stringsTobias Brunner2017-11-024-42/+132
* asn1: Add additional OIDs seen in certificate DNsTobias Brunner2017-11-022-0/+6
* scripts: Add -d option to oid2der to decode DER encoded OIDsTobias Brunner2017-11-021-0/+17
* man: Fix documentation of inbound mark behavior in ipsec.conf(5)Tobias Brunner2017-11-021-5/+5
* vici: Make setting mark on inbound SA configurableTobias Brunner2017-11-022-18/+42
* child-cfg: Optionally set mark on inbound SATobias Brunner2017-11-022-2/+20
* eap-radius: Optionally send Class attributes in RADIUS accounting messagesTobias Brunner2017-11-024-21/+87
* ikev2: Abort make-before-break reauth if we don't find children to recreateTobias Brunner2017-11-021-1/+19
* openssl: Also load EC keys from an ENGINETobias Brunner2017-11-025-155/+168
* libcharon: Added Cisco FlexVPN Supported VIDAndreas Steffen2017-10-271-0/+2
* unit-tests: Fix "using integer constants in boolean context" warningTobias Brunner2017-10-231-12/+12
* streams: Remove registered systemd stream serviceTobias Brunner2017-10-181-0/+3
* streams: Named systemd sockets are only supported since systemd v227Tobias Brunner2017-10-132-0/+10
* starter: Add the correct keywords header file to EXTRA_DISTTobias Brunner2017-10-122-3/+3
* watcher: Don't notify watcher if removed FD was not foundTobias Brunner2017-10-101-2/+6
generated by cgit v1.2.3 (git 2.25.1) at 2024-04-26 22:35:23 +0000