| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Fixed a minor vulnerability in which a malformed ASN.1 length field could ↵5.1.2rc1 | Andreas Steffen | 2014-02-14 | 1 | -0/+1 |
| | | | | | cause a crash of the charon daemon if the verbose debug level 3 (raw hex dump) for the asn subsystem is enabled. | ||||
| * | asn1: Support dates before 1970-01-01 (i.e. when time_t gets negative) | Tobias Brunner | 2014-02-12 | 2 | -4/+23 |
| | | | | | | | On x86 we allow "overflows" around 1969/1970 but not for other dates. Fixes #509. | ||||
| * | asn1: Add additional validation for parsed ASN.1 date/time values | Tobias Brunner | 2014-02-12 | 1 | -1/+12 |
| | | |||||
| * | Prototype implementation of IKE key exchange via NTRU encryption | Andreas Steffen | 2013-11-27 | 1 | -0/+24 |
| | | |||||
| * | unit-tests: 100% function coverage for asn1.c | Andreas Steffen | 2013-11-03 | 1 | -2/+2 |
| | | |||||
| * | Some minor refactoring in asn1.c | Andreas Steffen | 2013-11-02 | 1 | -11/+17 |
| | | |||||
| * | Do not free zero-length integer | Andreas Steffen | 2013-11-02 | 1 | -5/+10 |
| | | |||||
| * | asn1: Fix handling of invalid ASN.1 length in is_asn1() | Tobias Brunner | 2013-07-31 | 1 | -0/+5 |
| | | | | | Fixes CVE-2013-5018. | ||||
| * | Recognize critical IssuingDistributionPoint CRL extension | Andreas Steffen | 2013-07-12 | 1 | -1/+1 |
| | | |||||
| * | Add pkcs12 plugin which adds support for decoding PKCS#12 containers | Tobias Brunner | 2013-05-08 | 1 | -0/+11 |
| | | |||||
| * | PKCS#5 wrapper can decrypt PKCS#12-like schemes | Tobias Brunner | 2013-05-08 | 1 | -1/+9 |
| | | |||||
| * | Extract function to convert ASN.1 INTEGER object to u_int64_t | Tobias Brunner | 2013-05-08 | 2 | -0/+25 |
| | | |||||
| * | Use the GEN silent rule when generating oid database with perl | Martin Willi | 2013-05-06 | 1 | -2/+0 |
| | | |||||
| * | added some otherNames OIDs | Andreas Steffen | 2013-03-06 | 1 | -0/+6 |
| | | |||||
| * | Moved debug.[ch] to utils folder | Tobias Brunner | 2012-10-24 | 2 | -2/+2 |
| | | |||||
| * | added some new SHA-512 OIDs | Andreas Steffen | 2012-10-03 | 1 | -0/+2 |
| | | |||||
| * | Properly encode 0 in ASN.1. | Tobias Brunner | 2012-06-11 | 1 | -10/+7 |
| | | | | | | According to X.690 an INTEGER object always has at least one content octet. | ||||
| * | Don't use chunk_skip() in asn1_length(). | Tobias Brunner | 2012-06-11 | 1 | -1/+2 |
| | | | | | | | | | chunk_skip() returns chunk_empty if the length of the chunk is equal to the number of bytes to skip, this is problematic as asn1_length() modifies the original chunk. asn1_parser_t for instance uses the modified chunk to later calculate the length of the resulting ASN.1 object which produces incorrect results if it is based on chunk_empty. | ||||
| * | Merge branch 'ikev1' | Martin Willi | 2012-05-02 | 1 | -0/+3 |
| |\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Conflicts: configure.in man/ipsec.conf.5.in src/libcharon/encoding/generator.c src/libcharon/encoding/payloads/notify_payload.c src/libcharon/encoding/payloads/notify_payload.h src/libcharon/encoding/payloads/payload.c src/libcharon/network/receiver.c src/libcharon/sa/authenticator.c src/libcharon/sa/authenticator.h src/libcharon/sa/ikev2/tasks/ike_init.c src/libcharon/sa/task_manager.c src/libstrongswan/credentials/auth_cfg.c | ||||
| | * | Merge branch 'ikev1-clean' into ikev1-master | Martin Willi | 2012-03-20 | 1 | -0/+3 |
| | |\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Conflicts: configure.in man/ipsec.conf.5.in src/libcharon/daemon.c src/libcharon/plugins/eap_ttls/eap_ttls_peer.c src/libcharon/plugins/eap_radius/eap_radius_accounting.c src/libcharon/plugins/eap_radius/eap_radius_forward.c src/libcharon/plugins/farp/farp_listener.c src/libcharon/sa/ike_sa.c src/libcharon/sa/keymat.c src/libcharon/sa/task_manager.c src/libcharon/sa/trap_manager.c src/libstrongswan/plugins/x509/x509_cert.c src/libstrongswan/utils.h Applied lost changes of moved files keymat.c and task_manager.c. Updated listener_t.message hook signature in new plugins. | ||||
| | | * | Added support for iKEIntermediate X.509 extended key usage flag. | Tobias Brunner | 2012-03-20 | 1 | -0/+3 |
| | | | | | | | | | | | | | Mac OS X requires server certificates to have this flag set. | ||||
| * | | | Add support for dnQualifier in DNs. | Tobias Brunner | 2012-03-29 | 1 | -0/+1 |
| |/ / | |||||
| * | | Moved log message for unexpected ASN.1 objects to level 2. | Tobias Brunner | 2012-02-01 | 1 | -1/+1 |
| | | | | | | | | | This avoids error messages if later builders can successfully decode something. | ||||
| * | | Added support for PKCS#5 v2 schemes when decrypting PKCS#8 files. | Tobias Brunner | 2012-02-01 | 2 | -7/+13 |
| | | | |||||
| * | | Added support for encrypted PKCS#8 files (for some PKCS#5 v1.5 schemes). | Tobias Brunner | 2012-02-01 | 2 | -3/+10 |
| | | | |||||
| * | | Return parsed parameters from algorithmIdentifier if they are an OID (aka EC ↵ | Tobias Brunner | 2012-02-01 | 1 | -1/+1 |
| | | | | | | | | | | | | | | | named curve). Explicit EC parameters are not supported with this function, but before this change no parameters were actually ever returned. | ||||
| * | | Allow callers to force ASN.1 date encoding as GENERALIZEDTIME. | Tobias Brunner | 2011-12-23 | 2 | -6/+8 |
| | | | |||||
| * | | Avoid integer overflow when parsing ASN.1 dates. | Tobias Brunner | 2011-12-23 | 1 | -2/+2 |
| | | | | | | | | | This only works properly if sizeof(time_t) > 4. | ||||
| * | | Properly ASN.1 encode dates in certificates depending on the year. | Tobias Brunner | 2011-12-23 | 2 | -8/+13 |
| | | | |||||
| * | | Log ASN.1 parsing in new ASN debug group. | Tobias Brunner | 2011-12-16 | 2 | -26/+26 |
| |/ | |||||
| * | support unstructuredAddress in left|rightid | Andreas Steffen | 2011-04-18 | 1 | -1/+1 |
| | | |||||
| * | fixed asn1_oid_from_string(), allowing it to handle up to 32 bit node numbers | Andreas Steffen | 2011-03-12 | 1 | -11/+12 |
| | | |||||
| * | added tcg-at-tpmIdLabel OID | Andreas Steffen | 2011-03-11 | 1 | -0/+1 |
| | | |||||
| * | output unknown OIDs in dot string notation | Andreas Steffen | 2011-03-11 | 1 | -4/+14 |
| | | |||||
| * | fixed asn1_oid_to_string() conversion | Andreas Steffen | 2011-03-09 | 1 | -15/+9 |
| | | |||||
| * | defined some TCG attribute OIDs | Andreas Steffen | 2011-03-08 | 1 | -1/+7 |
| | | |||||
| * | support of RSAES-OAEP public keys | Andreas Steffen | 2011-03-08 | 1 | -1/+1 |
| | | |||||
| * | added id-RSAES-OAEP and id-pSpecified OIDs | Andreas Steffen | 2011-03-07 | 1 | -0/+2 |
| | | |||||
| * | defined OID_STRONGSWAN | Andreas Steffen | 2011-02-07 | 1 | -1/+1 |
| | | |||||
| * | Added support for policyConstraints to x509 plugin | Martin Willi | 2011-01-05 | 1 | -1/+1 |
| | | |||||
| * | Added policyMappings OID identifier | Martin Willi | 2011-01-05 | 1 | -1/+1 |
| | | |||||
| * | Added CertificatePolicy OID identifier | Martin Willi | 2011-01-05 | 1 | -3/+3 |
| | | |||||
| * | Added conversion functions between string OIDs and its DER encoding | Martin Willi | 2011-01-05 | 2 | -0/+110 |
| | | |||||
| * | replaced spaces by tabs | Andreas Steffen | 2010-12-30 | 1 | -1/+1 |
| | | |||||
| * | removed superfluous whitespace | Andreas Steffen | 2010-12-03 | 1 | -1/+1 |
| | | |||||
| * | Migrated asn1_parser_t to INIT/METHOD macros | Andreas Steffen | 2010-12-02 | 1 | -38/+28 |
| | | |||||
| * | added ITA and strongSwan OIDs | Andreas Steffen | 2010-11-17 | 1 | -0/+3 |
| | | |||||
| * | corrected TCGID OID | Andreas Steffen | 2010-11-17 | 1 | -1/+1 |
| | | |||||
| * | added qcStatements OID | Andreas Steffen | 2010-09-07 | 1 | -0/+1 |
| | | |||||
| * | Added Microsoft OID for user principal name (UPN) subjectAltNames | Martin Willi | 2010-08-10 | 1 | -0/+1 |
| | | |||||
 |
index : tteras/strongswan | |
| tteras' strongSwan tree | gitolite |
| aboutsummaryrefslogtreecommitdiffstats |