aboutsummaryrefslogtreecommitdiffstats
path: root/src/libstrongswan/plugins/openssl
Commit message (Expand)AuthorAgeFilesLines
* curl: For SSL features, depend on thread-safety provided by our crypto pluginsMartin Willi2014-09-241-0/+2
* openssl: Report correct key length for EC keys when not using NIST curvesTobias Brunner2014-09-022-22/+2
* openssl: Don't re-enter FIPS mode if we are already using itMartin Willi2014-06-041-2/+3
* openssl: Be less verbose about FIPS mode when not running as daemonMartin Willi2014-06-041-2/+2
* openssl: Fix includes to prevent <winsock2.h> to complain about include orderMartin Willi2014-06-042-6/+8
* openssl: Undef OpenSSLs X509_NAME defined by <wincrypt.h>Martin Willi2014-06-041-0/+6
* openssl: Check and link against libeay32 instead of libcrypto on WindowsMartin Willi2014-06-041-1/+1
* plugins: Don't link with -rdynamic on WindowsMartin Willi2014-06-041-1/+1
* aead: Support custom AEAD salt sizesMartin Willi2014-03-312-2/+12
* openssl: Add default fallback when calculating fingerprints of RSA keysTobias Brunner2014-03-221-1/+15
* lib: All settings use configured namespaceTobias Brunner2014-02-125-5/+5
* openssl: Verify that a peer's ECDH public value is a point on the elliptic curveTobias Brunner2013-11-191-0/+5
* openssl: Add workaround if ECC Brainpool curves are not definedTobias Brunner2013-10-171-11/+247
* openssl: Add support for ECC Brainpool curves for DH, if defined by OpenSSLTobias Brunner2013-10-172-6/+51
* iv_gen: aead_t implementations provide an IV generatorTobias Brunner2013-10-111-0/+15
* Remove HASH_PREFERRED, usages are replaced with HASH_SHA1, which is required ...Tobias Brunner2013-10-111-3/+3
* openssl: Properly log FIPS mode when enabled via openssl.confTobias Brunner2013-09-271-5/+13
* openssl: Add support for generic encoding of EC public keysTobias Brunner2013-09-131-23/+13
* openssl: Add generic RSA public key encodingTobias Brunner2013-09-131-3/+17
* openssl: Add helper function to convert BIGNUMs to chunksTobias Brunner2013-09-132-0/+27
* automake: replace INCLUDES by AM_CPPFLAGSMartin Willi2013-07-181-4/+5
* openssl: parse X.509 extended key usage from extension parsing loopMartin Willi2013-07-181-33/+38
* openssl: show which critical X.509 extension is not supportedMartin Willi2013-07-181-1/+6
* Recognize critical IssuingDistributionPoint CRL extensionAndreas Steffen2013-07-121-0/+4
* openssl: RAND_pseudo_bytes() returns 0 if bytes are not cryptographically strongMartin Willi2013-07-041-9/+6
* openssl: add support for IP addr blocks in X.509 certificatesMichael Rossberg2013-05-241-1/+115
* openssl: Only warn about unavailable FIPS mode if the user requested itTobias Brunner2013-05-081-1/+1
* openssl: Cleanup thread specific error bufferTobias Brunner2013-05-081-5/+38
* openssl: Don't use deprecated CRYPTO_set_id_callback() with OpenSSL >= 1.0.0Tobias Brunner2013-05-081-17/+29
* openssl: Add PKCS#12 parsing via OpenSSLTobias Brunner2013-05-084-0/+307
* openssl: Properly cleanup OpenSSL libraryTobias Brunner2013-05-081-2/+7
* Add support for untruncated HMAC-SHA-512Tobias Brunner2013-05-081-0/+1
* openssl: Define a default for FIPS_MODETobias Brunner2013-05-031-0/+4
* support of OpenSSL FIPS-140-2 libraryAndreas Steffen2013-04-162-1/+20
* Allow SHA1_Init()/SHA1_Update() to fail if OpenSSL version >= 1.0Martin Willi2013-04-101-0/+14
* Check RSA_public_decrypt() length before constructing and comparing a chunkMartin Willi2013-04-101-7/+10
* RSA_check_key() may return -1 if it failsMartin Willi2013-04-101-2/+2
* RAND_bytes/RAND_pseudo_bytes returns -1 if it is not supported by RAND methodMartin Willi2013-04-101-1/+1
* Check return value of ECDSA_Verify() correctlyMartin Willi2013-04-101-1/+1
* openssl: The EVP GCM interface requires at least OpenSSL 1.0.1Tobias Brunner2013-03-012-0/+8
* openssl: Provide AES-GCM implementationTobias Brunner2013-02-284-1/+312
* openssl: Disable PKCS#7/CMS when building against OpenSSL < 0.9.8gTobias Brunner2013-02-202-1/+5
* openssl: Properly honor OPENSSL_NO_* definesTobias Brunner2013-01-317-5/+31
* Properly check MSB in openssl plugin's PKCS#7 implementationTobias Brunner2013-01-241-1/+1
* Include opensslconf.h before checking its definesMartin Willi2013-01-031-0/+2
* Don't build OpenSSL PKCS#7 code if OPENSSL_NO_CMS definedMartin Willi2013-01-031-0/+4
* Fix up serialNumber in openssl PKCS#7 if it has a leading MSB setMartin Willi2012-12-191-2/+7
* Implement PKCS#7 decryption using opensslMartin Willi2012-12-191-16/+255
* Make available wrapped certificates while verifying PKCS#7 signatures in opensslMartin Willi2012-12-191-0/+22
* Implement openssl PKCS#7 certficiate enumerationMartin Willi2012-12-191-0/+72
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-29 06:48:03 +0000