aboutsummaryrefslogtreecommitdiffstats
path: root/src/libstrongswan/credentials
Commit message (Expand)AuthorAgeFilesLines
* credential-manager: Log issuer identity if not foundTobias Brunner2017-07-271-0/+2
* auth-cfg: Don't limit subjectAltName check to received certificatesTobias Brunner2017-07-271-1/+1
* Fixed some typos, courtesy of codespellTobias Brunner2017-05-261-1/+1
* linked-list: Change return value of find_first() and signature of its callbackTobias Brunner2017-05-262-13/+15
* Change interface for enumerator_create_filter() callbackTobias Brunner2017-05-262-111/+129
* Migrate all enumerators to venumerate() interface changeTobias Brunner2017-05-267-73/+104
* credential-manager: Prefer local over global setsAdrian-Ken Rueegsegger2017-05-231-7/+7
* Reference Edwards-curve signature RFCsAndreas Steffen2017-03-201-5/+5
* builder: Define a builder part for X.509 RFC 3779 address blocksMartin Willi2017-02-272-0/+3
* mem-cred: Add methods to add/remove shared keys with unique identifiersTobias Brunner2017-02-162-6/+107
* mem-cred: Add method to remove a private key with a specific fingerprintTobias Brunner2017-02-162-2/+38
* Implemented EdDSA for IKEv2 using a pro forma Identity hash functionAndreas Steffen2016-12-141-17/+31
* Added support of EdDSA signaturesAndreas Steffen2016-12-145-17/+51
* Fixed in-place update of cached base and delta CRLsAndreas Steffen2016-10-301-4/+4
* Newer CRLs replace older versions of the CRL in the cacheAndreas Steffen2016-10-261-0/+39
* mem-cred: Support storing a delta CRL together with its baseTobias Brunner2016-10-111-8/+30
* gmp: Support of SHA-3 RSA signaturesAndreas Steffen2016-09-223-34/+67
* auth-cfg-wrapper: Fix memory leak with hash-and-URL certificatesTobias Brunner2016-09-121-1/+1
* mem-cred: Fix memory leak when replacing existing CRLsTobias Brunner2016-05-111-0/+1
* Use standard unsigned integer typesAndreas Steffen2016-03-243-7/+7
* Fix some Doxygen issuesTobias Brunner2016-03-111-5/+5
* auth-cfg: Add a rule to suspend certificate validation constraintsTobias Brunner2016-03-102-0/+18
* credential-manager: Check cache queue when destroying trusted certificate enu...Tobias Brunner2016-03-101-1/+2
* credential-manager: Make online revocation checks optional for public key enu...Tobias Brunner2016-03-102-3/+9
* auth-cfg: Make IKE signature schemes configurableTobias Brunner2016-03-042-37/+63
* ikev2: Diversify signature scheme ruleThomas Egerer2016-03-042-30/+68
* Apply pubkey and signature constraints in vici pluginAndreas Steffen2015-12-172-0/+117
* Refactored certificate management for the vici and stroke interfaces5.4.0dr1Andreas Steffen2015-12-122-30/+130
* Changed some certificate_type_names and added x509_flag_namesAndreas Steffen2015-12-113-4/+36
* Print OCSP single responsesAndreas Steffen2015-12-112-3/+82
* Standardized printing of certificate informationAndreas Steffen2015-12-112-0/+651
* auth-cfg: Prefer merged rules over existing ones when moving themTobias Brunner2015-11-121-3/+3
* Explicitly mention SHA2 algorithm in BLISS OIDs and signature schemesAndreas Steffen2015-11-062-28/+28
* Support BLISS signatures with SHA-3 hashAndreas Steffen2015-11-032-4/+28
* auth-cfg: Don't enforce EAP_RADIUSTobias Brunner2015-08-211-1/+2
* mem-cred: We don't need a write lock when looking for a certificateTobias Brunner2015-08-201-1/+1
* mem-cred: Add a method to atomically replace all certificatesTobias Brunner2015-08-202-10/+58
* auth-cfg: Don't enforce EAP_DYNAMICTobias Brunner2015-08-201-1/+2
* auth-cfg: Matching one CA should be enough, similar to peer certificatesTobias Brunner2015-08-171-15/+20
* Fixed some typosTobias Brunner2015-08-132-2/+2
* credential-manager: Store BLISS key strength in auth configTobias Brunner2015-03-041-0/+3
* auth-cfg: Add BLISS key strength constraintTobias Brunner2015-03-042-21/+43
* public-key: Add helper to determine acceptable signature schemes for keysTobias Brunner2015-03-042-0/+78
* public-key: Add helper to map signature schemes to ASN.1 OIDsTobias Brunner2015-03-042-3/+54
* public-key: Add helper to determine key type from signature schemeTobias Brunner2015-03-042-0/+43
* mem-cred: Add a method to unify certificate references, without adding itMartin Willi2015-03-032-0/+31
* Allow SHA256 and SHA384 data hash for BLISS signatures.Andreas Steffen2015-02-262-0/+10
* Started implementing BLISS signature generationAndreas Steffen2014-11-292-7/+7
* Store and parse BLISS private and public keys in DER and PEM formatAndreas Steffen2014-11-291-0/+4
* Created framework for BLISS post-quantum signature algorithmAndreas Steffen2014-11-292-5/+16