| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | diffie-hellman: Introduce an optional setter for the private value | Martin Willi | 2015-04-15 | 1 | -0/+12 |
| | | | | | This allows us to work with deterministic values for testing purposes. | ||||
| * | diffie-hellman: Verify public DH values in backends | Martin Willi | 2015-03-23 | 1 | -1/+10 |
| | | |||||
| * | diffie-hellman: Add a bool return value to set_other_public_value() | Martin Willi | 2015-03-23 | 1 | -1/+3 |
| | | |||||
| * | diffie-hellman: Add a bool return value to get_my_public_value() | Martin Willi | 2015-03-23 | 1 | -1/+3 |
| | | |||||
| * | diffie-hellman: Use bool instead of status_t as get_shared_secret() return value | Martin Willi | 2015-03-23 | 1 | -2/+3 |
| | | | | | | While such a change is not unproblematic, keeping status_t makes the API inconsistent once we introduce return values for the public value operations. | ||||
| * | crypto: Define MODP_CUSTOM outside of IKE DH range | Tobias Brunner | 2014-12-23 | 1 | -2/+4 |
| | | | | | | | | | | Before this fix it was possible to crash charon with an IKE_SA_INIT message containing a KE payload with DH group MODP_CUSTOM(1025). Defining MODP_CUSTOM outside of the two byte IKE DH identifier range prevents it from getting negotiated. Fixes CVE-2014-9221. | ||||
| * | diffie-hellman: Explicitly initialize DH exponent sizes during initialization | Martin Willi | 2014-08-25 | 1 | -0/+8 |
| | | | | | | | | | To avoid any race conditions when multiple threads call and initialize diffie_hellman_get_params(), explicitly examine the optimum DH exponent size during library initialization. Fixes #655. | ||||
| * | Prototype implementation of IKE key exchange via NTRU encryption | Andreas Steffen | 2013-11-27 | 1 | -0/+5 |
| | | |||||
| * | ecc: Added ECC Brainpool ECDH groups as registered with IANA | Andreas Steffen | 2013-10-17 | 1 | -0/+5 |
| | | |||||
| * | Various style, typo and whitespace corrections | Adrian-Ken Rueegsegger | 2012-01-13 | 1 | -3/+2 |
| | | |||||
| * | pkcs11: Merged the ECDH into the DH implementation. | Tobias Brunner | 2011-10-31 | 1 | -1/+1 |
| | | |||||
| * | Added a generic function to check if a DH group is an EC group | Martin Willi | 2010-09-03 | 1 | -0/+8 |
| | | |||||
| * | Added a MODP_CUSTOM DH group which takes g and p as constructor arguments | Martin Willi | 2010-09-02 | 1 | -0/+2 |
| | | |||||
| * | Added support for DH groups 22, 23 and 24, patch contributed by Joy Latten | Martin Willi | 2010-04-19 | 1 | -0/+8 |
| | | |||||
| * | Store DH generator in a chunk, hide non-public data in a private struct | Martin Willi | 2010-04-08 | 1 | -20/+5 |
| | | |||||
| * | Provide the Diffie Hellman parameters from a central location, so that we do ↵ | Tobias Brunner | 2010-03-09 | 1 | -3/+49 |
| | | | | | | | | | not have to replicate them in every plugin that implements the DH interface. The main reason for this change is that Android's libcrypto does not include the get_rfcX_prime_Y functions by default. Therefore we would have had to replicate the primes a third time. | ||||
| * | removed trailing spaces ([[:space:]]+$) | Martin Willi | 2009-09-04 | 1 | -14/+14 |
| | | |||||
| * | removing svn keyword $Id$ from all files | Tobias Brunner | 2009-04-30 | 1 | -2/+0 |
| | | |||||
| * | updated Doxyfile | Martin Willi | 2009-03-24 | 1 | -1/+1 |
| | | | | | | | properly close all doxygen groups fixed remaining doxygen warnings | ||||
| * | added a MODP_NULL Diffie Hellman group to avoid calculation overhead in ↵ | Martin Willi | 2008-11-22 | 1 | -0/+2 |
| | | | | | load-testing | ||||
| * | removed superfluous get_other_public_value in diffie_hellman_t interface | Martin Willi | 2008-11-04 | 1 | -10/+0 |
| | | |||||
| * | added missing comma in enumeration | Andreas Steffen | 2008-05-29 | 1 | -10/+9 |
| | | |||||
| * | added the ECP groups from RFC 5114 | Tobias Brunner | 2008-05-22 | 1 | -1/+3 |
| | | |||||
| * | added ECDH with OpenSSL (see RFC 4753) | Tobias Brunner | 2008-05-22 | 1 | -1/+7 |
| | | |||||
| * | merged the modularization branch (credentials) back to trunk | Martin Willi | 2008-03-13 | 1 | -50/+18 |
| | | |||||
| * | implemented an optional DH public value test | Martin Willi | 2007-10-04 | 1 | -36/+33 |
| | | | | | some other cleanups, using RFC2631 variable names | ||||
| * | better split up of library files "types.h" & "definitions.h" | Martin Willi | 2006-10-31 | 1 | -1/+1 |
| | | | | | | | | | | centralized all printf specifier character definitions reuse of arginfo handlers more cleanups fixed more AMD64 issues added DEBUG_LEVEL compile flag to exclude DBGn() statements | ||||
| * | moved typedefs to beginning of files to solve some include problems | Martin Willi | 2006-10-30 | 1 | -10/+7 |
| | | | | | | | | splitted authenticator to have a separate implementation for each auth_method_t using va_copy to clone va_lists, should fix proplems on AMD64 some other cleanups | ||||
| * | introduced new logging subsystem using bus: | Martin Willi | 2006-10-18 | 1 | -3/+3 |
| | | | | | | | | passive listeners can register on the bus active listeners wait for signals actively multiplexing allows multiple listeners to receive debug signals a lot more... | ||||
| * | updated copyright information | Martin Willi | 2006-07-07 | 1 | -1/+2 |
| | | |||||
| * | workaround for peers rekeying at the same time | Martin Willi | 2006-06-12 | 1 | -1/+1 |
| | | | | | | loading lifetime policies from ipsec.conf | ||||
| * | (no commit message) | Martin Willi | 2006-05-10 | 1 | -0/+149 |
 |
index : tteras/strongswan | |
| tteras' strongSwan tree | gitolite |
| aboutsummaryrefslogtreecommitdiffstats |