aboutsummaryrefslogtreecommitdiffstats
path: root/src/libstrongswan/plugins
Commit message (Collapse)AuthorAgeFilesLines
...
* Adding OpenSSL random number functions to openssl pluginAleksandr Grinberg2012-06-254-1/+159
|
* Add signature schemes to auth_cfg during trustchain validationMartin Willi2012-06-121-2/+2
|
* certificate_t->issued_by takes an argument to receive signature schemeMartin Willi2012-06-1210-15/+57
|
* Fixed return values of several functions (e.g. return FALSE for pointer types).Tobias Brunner2012-05-315-7/+7
|
* Fix boolean return value if an empty RSA signature is detected in gmp pluginMartin Willi2012-05-311-1/+1
| | | | Fixes CVE-2012-2388.
* Fixed check for loaded plugins with feature types that are not compared exactly.Tobias Brunner2012-05-241-25/+13
| | | | | Previously e.g. RNGs with weaker strength would have overwritten stronger ones.
* Use a hashtable to check for already loaded plugin features.Tobias Brunner2012-05-231-20/+37
|
* Hash function for plugin features added.Tobias Brunner2012-05-232-0/+68
|
* pkcs8: Initialize salt and IV properly.Tobias Brunner2012-05-181-1/+1
|
* Add nonce plugin implementationAdrian-Ken Rueegsegger2012-05-185-0/+264
| | | | | | | This nonce generator uses an RNG to generate nonces. The RNG quality is currently set to RNG_WEAK which is the same value used in IKE init. The plugin is enabled and thus built by default.
* Add nonce generator interfaceAdrian-Ken Rueegsegger2012-05-182-0/+20
| | | | | | | Nonce generators (nonce_gen_t) can be used to get or allocate nonces. Users can request nonce generators from the crypto factory while nonce plugins register/remove themselves to/from the crypto factory.
* fixed feature dependencies for CERT_TRUSTED_PUBKEYAndreas Steffen2012-05-051-0/+5
|
* If we load new features from a plugin, restart loading from first pluginMartin Willi2012-05-031-0/+4
|
* Building CERT_ANY through PEM requires either a CERT_X509 or a CERT_PGP builderMartin Willi2012-05-031-1/+2
|
* Certificate decoding soft-depends on public key decoding of specific typesMartin Willi2012-05-022-0/+6
|
* PEM loading plugin features depend on the same feature, they are helpers onlyMartin Willi2012-05-021-0/+17
|
* Don't depend on a feature that has a dependency to the same feauture during ↵Martin Willi2012-05-021-1/+2
| | | | unload
* Merge branch 'ikev1'Martin Willi2012-05-027-55/+137
|\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Conflicts: configure.in man/ipsec.conf.5.in src/libcharon/encoding/generator.c src/libcharon/encoding/payloads/notify_payload.c src/libcharon/encoding/payloads/notify_payload.h src/libcharon/encoding/payloads/payload.c src/libcharon/network/receiver.c src/libcharon/sa/authenticator.c src/libcharon/sa/authenticator.h src/libcharon/sa/ikev2/tasks/ike_init.c src/libcharon/sa/task_manager.c src/libstrongswan/credentials/auth_cfg.c
| * Merge branch 'ikev1-clean' into ikev1-masterMartin Willi2012-03-207-55/+137
| |\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Conflicts: configure.in man/ipsec.conf.5.in src/libcharon/daemon.c src/libcharon/plugins/eap_ttls/eap_ttls_peer.c src/libcharon/plugins/eap_radius/eap_radius_accounting.c src/libcharon/plugins/eap_radius/eap_radius_forward.c src/libcharon/plugins/farp/farp_listener.c src/libcharon/sa/ike_sa.c src/libcharon/sa/keymat.c src/libcharon/sa/task_manager.c src/libcharon/sa/trap_manager.c src/libstrongswan/plugins/x509/x509_cert.c src/libstrongswan/utils.h Applied lost changes of moved files keymat.c and task_manager.c. Updated listener_t.message hook signature in new plugins.
| | * Use a single set of FDs for all random plugin RNG instancesMartin Willi2012-03-203-36/+89
| | |
| | * Added a flag to register local credential sets exclusively, disabling all othersMartin Willi2012-03-201-1/+1
| | |
| | * Added missing XAuth plugin feature enum namesMartin Willi2012-03-202-4/+6
| | |
| | * Fixed fix for XAuth plugin feature matchingMartin Willi2012-03-201-1/+1
| | |
| | * Fix XAuth plugin feature matchingMartin Willi2012-03-201-1/+1
| | |
| | * Added support for iKEIntermediate X.509 extended key usage flag.Tobias Brunner2012-03-201-6/+14
| | | | | | | | | | | | Mac OS X requires server certificates to have this flag set.
| | * Some whitespace fixes.Tobias Brunner2012-03-201-22/+22
| | |
| | * Be less verbose if plugin dependecy not satisfiedMartin Willi2012-03-201-1/+1
| | |
| | * Added auth_cfg option to select XAUTH backend to useMartin Willi2012-03-201-2/+2
| | |
| | * Use a string to identify xauth backends, no need for integer typesMartin Willi2012-03-201-4/+3
| | |
| | * IKEv1 XAuth: Added plugin support for XAuth, which allows us to have plugins ↵Clavister OpenSource2012-03-202-0/+20
| | | | | | | | | | | | to talk to servers with different quirks for XAuth authentication.
* | | added missing whitespaceAndreas Steffen2012-04-302-1/+2
| | |
* | | Properly initialize optional subject in PEM builder.Tobias Brunner2012-04-301-1/+1
| | |
* | | added support for raw RSA public keys to strokeAndreas Steffen2012-04-301-9/+24
| | |
* | | CERT_TRUSTED_PUBKEY stores notBefore, notAfter and subject informationAndreas Steffen2012-04-251-7/+41
| | |
* | | Added test vectors for AES-CMAC.Tobias Brunner2012-04-033-0/+153
| | |
* | | Implemented AES-CMAC based PRF and signer.Tobias Brunner2012-04-039-0/+915
| | | | | | | | | | | | | | | | | | The cmac plugin implements AES-CMAC as defined in RFC 4493 and the signer and PRF based on it as defined in RFC 4494 and RFC 4615, respectively.
* | | Fixed GNU license header in hmac and xcbc plugins.Tobias Brunner2012-04-032-4/+4
| | |
* | | Don't cast second argument of mem_printf_hook (%b) to size_t.Tobias Brunner2012-03-271-3/+3
|/ / | | | | | | | | | | | | | | | | | | | | | | | | Also treat the given number as unsigned int. Due to the printf hook registration the second argument of mem_printf_hook (if called via printf etc.) is always of type int*. Casting this to a size_t pointer and then dereferencing that as int does not work on big endian machines if int is smaller than size_t (e.g. on ppc64). In order to make this change work if the argument is of a type larger than int, size_t for instance, the second argument for %b has to be casted to (u_)int.
* | Compiler warnings fixed.Tobias Brunner2012-02-142-2/+2
| |
* | Added support for PKCS#5 v2 schemes when decrypting PKCS#8 files.Tobias Brunner2012-02-011-54/+310
| |
* | Added support for encrypted PKCS#8 files (for some PKCS#5 v1.5 schemes).Tobias Brunner2012-02-011-1/+251
| |
* | Added support to parse PKCS#8 encoded ECDSA private keys.Tobias Brunner2012-02-013-12/+28
| |
* | OpenSSL plugin parses ECDSA private keys with explicitly specified EC ↵Tobias Brunner2012-02-011-9/+30
| | | | | | | | | | | | | | parameters. This is needed in case the key itself does not contain the parameters, which is the case for PKCS#8.
* | Parse RSA private keys from PKCS#8 encoded blobs.Tobias Brunner2012-02-014-1/+151
| |
* | Added PKCS#8 stub plugin.Tobias Brunner2012-02-013-0/+132
| |
* | Cache list of plugin names to further simplify its usage.Tobias Brunner2012-01-192-20/+49
| | | | | | | | Also helpful for ipsec statusall to avoid having to enumerate plugins.
* | Function added to plugin_loader to get a list of the names of loaded plugins.Tobias Brunner2012-01-192-1/+34
| |
* | Fix whitespacesAdrian-Ken Rueegsegger2012-01-121-12/+12
| |
* | Allow callers to force ASN.1 date encoding as GENERALIZEDTIME.Tobias Brunner2011-12-233-7/+7
| |
* | Properly ASN.1 encode dates in certificates depending on the year.Tobias Brunner2011-12-233-7/+7
| |
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 16:19:21 +0000