| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | libipsec: Add support for AES and Camellia in CCM mode | Tobias Brunner | 2017-01-25 | 1 | -3/+16 |
| | | | | | Fixes #2172. | ||||
| * | Use standard unsigned integer types | Andreas Steffen | 2016-03-24 | 1 | -6/+6 |
| | | |||||
| * | libipsec: Properly support CAMELLIA in CTR mode | Tobias Brunner | 2015-10-30 | 1 | -0/+1 |
| | | |||||
| * | libipsec: Fix crypter lookup for AES-CTR | Tobias Brunner | 2015-10-30 | 1 | -1/+12 |
| | | | | | | | | | | | | | Due to the nonce, the ESP key material is four bytes longer than needed for the actual AES key. The crypto plugins, however, register their AES-CTR implementations with the AES key length, so the lookup here failed. For IKEv2 the key material is allocated after creating a crypter instance with the negotiated AES key size. The length of the actual key material is retrieved via get_key_size(), which adds the four bytes to the AES key length. Fixes #1124. | ||||
| * | libipsec: Create AEAD with four byte salt for ChaCha20-Poly1305 | Martin Willi | 2015-06-29 | 1 | -0/+1 |
| | | |||||
| * | aead: Create AEAD using traditional transforms with an explicit IV generator | Martin Willi | 2015-04-13 | 1 | -1/+8 |
| | | | | | | | Real AEADs directly provide a suitable IV generator, but traditional crypters do not. For some (stream) ciphers, we should use sequential IVs, for which we pass an appropriate generator to the AEAD wrapper. | ||||
| * | aead: Support custom AEAD salt sizes | Martin Willi | 2014-03-31 | 1 | -1/+2 |
| | | | | | | | | | | The salt, or often called implicit nonce, varies between AEAD algorithms and their use in protocols. For IKE and ESP, GCM uses 4 bytes, while CCM uses 3 bytes. With TLS, however, AEAD mode uses 4 bytes for both GCM and CCM. Our GCM backends currently support 4 bytes and CCM 3 bytes only. This is fine until we go for CCM mode support in TLS, which requires 4 byte nonces. | ||||
| * | libipsec: Properly initialize variables when creating AEAD wrapper | Tobias Brunner | 2013-09-04 | 1 | -2/+2 |
| | | |||||
| * | libipsec: Don't limit traditional algorithms to AES and SHA1/2 | Tobias Brunner | 2013-08-12 | 1 | -25/+7 |
| | | | | | Closes #377. | ||||
| * | libipsec: Add support for AES-GCM | Tobias Brunner | 2013-05-03 | 1 | -3/+45 |
| | | |||||
| * | libipsec: Wrap traditional algorithms in AEAD wrapper | Tobias Brunner | 2013-05-03 | 1 | -57/+59 |
| | | |||||
| * | Moved debug.[ch] to utils folder | Tobias Brunner | 2012-10-24 | 1 | -1/+1 |
| | | |||||
| * | Include stdint.h for UINT32_MAX on FreeBSD | Tobias Brunner | 2012-08-29 | 1 | -0/+1 |
| | | |||||
| * | Adding class to manage ESP context (crypto, sequence numbers) | Tobias Brunner | 2012-08-08 | 1 | -0/+300 |
 |
index : tteras/strongswan | |
| tteras' strongSwan tree | gitolite |
| aboutsummaryrefslogtreecommitdiffstats |