aboutsummaryrefslogtreecommitdiffstats
path: root/src/libstrongswan/plugins/gcrypt/gcrypt_plugin.c
Commit message (Collapse)AuthorAgeFilesLines
* gcrypt: Add support for RSA-PSS signaturesTobias Brunner2017-11-081-0/+6
| | | | | | | | For salt lengths other than 20 this requires 0bd8137e68c2 ("cipher: Add option to specify salt length for PSS verification."), which was included in libgcrypt 1.7.0 (for Ubuntu requires 17.04). As that makes it pretty much useless for us (SHA-1 is a MUST NOT), we require that version to even provide the feature.
* gcrypt: Register supported RSA signature/verification schemesTobias Brunner2017-11-081-0/+16
|
* 128 bit default security strength requires 3072 bit prime DH groupAndreas Steffen2015-12-141-4/+4
|
* gcrypt: Explicitly initialize RNG backend to allocate static dataMartin Willi2015-04-151-0/+3
| | | | | | The libgcrypt RNG implementation uses static buffer allocation which it does not free. There is no symbol we can catch in leak-detective, hence we explicitly initialize the RNG during the whitelisted gcrypt_plugin_create() function.
* curl: For SSL features, depend on thread-safety provided by our crypto pluginsMartin Willi2014-09-241-0/+2
| | | | | | | | | To use SSL in curl, we need to initialize the SSL library in a thread-safe manner and provide the appropriate callbacks. As we already do that in our crypto plugins using these libraries, we depend on these features. This implies that we need the same plugin enabled (openssl, gcrypt) as the curl backend is configured to use to fetch from HTTPS URIs.
* gcrypt: Use predefined pthread locking functions instead of custom hooksMartin Willi2014-07-011-50/+4
| | | | | | | | | | | | | Starting with libgcrypt 1.6, it seems that custom locking functions are not supported anymore. Instead, the user has to select from one of the pre-defined set of locking functions. Given that we have a proper threading abstraction API with optional profiling on all platforms, this is somewhat annoying. However, there does not seem to be a way to use custom functions, and we have no other choice than using the provided macro magic to support all libgcrypt versions. Fixes #630.
* lib: All settings use configured namespaceTobias Brunner2014-02-121-2/+2
|
* Remove HASH_PREFERRED, usages are replaced with HASH_SHA1, which is required ↵Tobias Brunner2013-10-111-1/+1
| | | | for IKEv2 anyway
* Moved debug.[ch] to utils folderTobias Brunner2012-10-241-1/+1
|
* gcrypt: Register SHA1 first as HASH_PREFERRED depends on itTobias Brunner2012-06-271-1/+1
|
* gcrypt does not support MD2Andreas Steffen2011-11-091-1/+0
|
* Add features support to gcrypt plugin.Tobias Brunner2011-10-171-101/+74
|
* Added a (not yet implemented) plugin_t method to reload plugin configurationMartin Willi2011-04-151-0/+1
|
* Added a get_name() function to plugin_t, create_plugin_enumerator enumerates ↵Martin Willi2011-04-151-35/+40
| | | | over plugin_t
* trace back crypto algorithms to the plugins that registered themAndreas Steffen2010-12-181-33/+35
|
* Added a final flag to builder registration to enumerate the actually ↵Martin Willi2010-09-031-3/+3
| | | | supported algorithms
* Added support for MODP_CUSTOM to gcrypt pluginMartin Willi2010-09-031-0/+4
|
* Use a seperate section for each nested struct member in INIT macroMartin Willi2010-08-181-1/+5
|
* Implemented AES/Camellia counter mode in gcryptMartin Willi2010-08-131-0/+6
|
* Migraded gcrypt plugin to INIT/METHOD macrosMartin Willi2010-08-101-7/+5
|
* Added support for DH groups 22, 23 and 24, patch contributed by Joy LattenMartin Willi2010-04-191-0/+6
|
* Adding DBG_LIB to all calls of libstrongswan's version of DBG*.Tobias Brunner2010-04-061-1/+1
|
* Changed plugin constructors from plugin_create to plugin_name_plugin_create.Tobias Brunner2010-03-021-1/+1
|
* Separated the public interfaces of the threading primitives.Tobias Brunner2009-12-231-1/+1
|
* Moved mutex.c to a separate folder in order to cleanly wrap other threading ↵Tobias Brunner2009-12-231-1/+1
| | | | primitives (and utils/mutex.h is now threading.h).
* Updated gcrypt plugin to the new builder APIMartin Willi2009-09-101-4/+8
|
* removed trailing spaces ([[:space:]]+$)Martin Willi2009-09-041-24/+24
|
* OpenSolaris defines MUTEX_DEFAULT therefore we rename the members of the ↵Tobias Brunner2009-08-141-1/+1
| | | | enums mutex/condvar/rwlock_type_t.
* support of SHA224-based certificate signaturesAndreas Steffen2009-08-051-0/+2
|
* HASH_MD2 is not implemented yet in gcryptAndreas Steffen2009-06-181-2/+0
|
* gcrypt actually does not implement IDEAMartin Willi2009-06-151-2/+0
|
* added a gcrypt.quick_random option to generate weak testing keys fasterMartin Willi2009-06-151-0/+5
|
* gcrypt RSA public key implementationMartin Willi2009-06-091-0/+5
|
* gcrypt RSA private key implementationMartin Willi2009-06-091-0/+7
|
* gcrypt mpi based Diffie-Hellman implementationMartin Willi2009-06-091-0/+21
|
* gcrypt rng implementationMartin Willi2009-06-091-0/+11
|
* use abstract mutex_t for gcrypt locking callbacksMartin Willi2009-06-091-4/+50
|
* gcrypt crypter implementationMartin Willi2009-06-091-0/+25
|
* gcrypt hasher implementationMartin Willi2009-06-091-0/+20
|
* initialize gcrypt threadsave, currently for pthread onlyMartin Willi2009-06-091-1/+25
|
* added skeleton for libgcrypt based crypto pluginMartin Willi2009-06-091-0/+52
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-26 01:57:30 +0000