aboutsummaryrefslogtreecommitdiffstats
path: root/src/libstrongswan/plugins
Commit message (Collapse)AuthorAgeFilesLines
...
* openssl: Only warn about unavailable FIPS mode if the user requested itTobias Brunner2013-05-081-1/+1
|
* openssl: Cleanup thread specific error bufferTobias Brunner2013-05-081-5/+38
|
* openssl: Don't use deprecated CRYPTO_set_id_callback() with OpenSSL >= 1.0.0Tobias Brunner2013-05-081-17/+29
|
* openssl: Add PKCS#12 parsing via OpenSSLTobias Brunner2013-05-084-0/+307
|
* openssl: Properly cleanup OpenSSL libraryTobias Brunner2013-05-081-2/+7
|
* PEM plugin loads PKCS#12 containers from (DER-encoded) filesTobias Brunner2013-05-083-0/+24
| | | | | It is not actually able to handle PEM encoded PKCS#12 files produced by OpenSSL.
* Remove pluto specific certificate typesTobias Brunner2013-05-081-6/+0
|
* Add support for untruncated HMAC-SHA-512Tobias Brunner2013-05-083-0/+4
|
* Add pkcs12 plugin which adds support for decoding PKCS#12 containersTobias Brunner2013-05-085-0/+754
|
* Register PKCS#8 builder for KEY_ANYTobias Brunner2013-05-081-0/+1
|
* Add support for PKCS#7/CMS encrypted-dataTobias Brunner2013-05-084-0/+256
|
* Add test vectors for RC2Tobias Brunner2013-05-083-0/+118
|
* Add implementation of the RC2 block cipher (RFC 2268)Tobias Brunner2013-05-085-0/+532
|
* Extract PKCS#5 handling from pkcs8 plugin to separate helper classTobias Brunner2013-05-081-455/+16
|
* agent: Use sshkey plugin to parse keys, adds support for ECDSATobias Brunner2013-05-072-56/+66
|
* sshkey: Add support for ECDSA keysTobias Brunner2013-05-071-0/+70
|
* sshkey: Added builder for SSHKEY RSA keysTobias Brunner2013-05-074-1/+139
|
* Add sshkey plugin stub that will parse RFC 4253 public keysTobias Brunner2013-05-073-0/+129
|
* openssl: Define a default for FIPS_MODETobias Brunner2013-05-031-0/+4
|
* support of OpenSSL FIPS-140-2 libraryAndreas Steffen2013-04-162-1/+20
|
* Allow SHA1_Init()/SHA1_Update() to fail if OpenSSL version >= 1.0Martin Willi2013-04-101-0/+14
|
* Check RSA_public_decrypt() length before constructing and comparing a chunkMartin Willi2013-04-101-7/+10
| | | | | If decryption fails, it returns -1. chunk_equals() should catch that error, but be more explicit in error checking.
* RSA_check_key() may return -1 if it failsMartin Willi2013-04-101-2/+2
|
* RAND_bytes/RAND_pseudo_bytes returns -1 if it is not supported by RAND methodMartin Willi2013-04-101-1/+1
|
* Check return value of ECDSA_Verify() correctlyMartin Willi2013-04-101-1/+1
|
* Make some private functions in plugins staticTobias Brunner2013-03-272-5/+5
| | | | Fixes monolithic build.
* Properly cleanup libmysqlTobias Brunner2013-03-191-1/+1
| | | | Seems to work correctly with recent MySQL versions.
* Fixed Doxygen comments after scanning complete src directoryTobias Brunner2013-03-022-5/+5
|
* openssl: The EVP GCM interface requires at least OpenSSL 1.0.1Tobias Brunner2013-03-012-0/+8
|
* openssl: Provide AES-GCM implementationTobias Brunner2013-02-284-1/+312
|
* Order of arguments in Doxygen comment fixedTobias Brunner2013-02-282-2/+2
|
* openssl: Disable PKCS#7/CMS when building against OpenSSL < 0.9.8gTobias Brunner2013-02-202-1/+5
| | | | Fixes #292.
* Encode RSA public keys in RFC 3110 DNSKEY formatAndreas Steffen2013-02-195-2/+141
|
* Moved configuration from resolver manager to unbound pluginAndreas Steffen2013-02-194-29/+38
| | | | Also streamlined log messages in unbound plugin.
* unbound: Implementation of query method of unbound_resolver_tReto Guadagnini2013-02-192-7/+64
|
* unbound: Implemented resolver_response_t as unbound_response_tReto Guadagnini2013-02-193-1/+316
|
* unbound: Implemented rr_t as unbound_rr_tReto Guadagnini2013-02-193-1/+215
|
* Added unbound plugin implementing the resolver interface using libunboundReto Guadagnini2013-02-195-0/+227
|
* Use CURL_TIMEOUT and not CURL_CONNECTTIMEOUT for FETCHER_TIMEOUT in curlMartin Willi2013-02-081-5/+12
| | | | | This allows us to use this timeout beyond DNS resolution. For the initial connect, we use a hardcoded timeout of 10s for now.
* openssl: Properly honor OPENSSL_NO_* definesTobias Brunner2013-01-317-5/+31
|
* Fix Doxygen comment for rdrand pluginTobias Brunner2013-01-311-1/+1
|
* Properly check MSB in openssl plugin's PKCS#7 implementationTobias Brunner2013-01-241-1/+1
|
* g_thread_init() is deprecated since Glib 2.23Tobias Brunner2013-01-241-0/+3
|
* Reseed rdrand after every 128bit sample onlyMartin Willi2013-01-151-2/+2
|
* Use raw opcodes for rdrand to build with older binutilsMartin Willi2013-01-111-6/+6
|
* Provide RNG_TRUE quality in rdrand by mixing reseeded outputs using AESMartin Willi2013-01-112-8/+108
|
* Provide RNG_STRONG quality in rdrand by forcing PRNG reseed after every sampleMartin Willi2013-01-112-1/+69
|
* Provide RNG_WEAK quality random generator in rdrandMartin Willi2013-01-114-2/+342
|
* Add a rdrand plugin stub detecting availability of RDRAND instructionsMartin Willi2013-01-113-0/+176
|
* Include opensslconf.h before checking its definesMartin Willi2013-01-031-0/+2
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-03 16:37:59 +0000