aboutsummaryrefslogtreecommitdiffstats
path: root/src/libstrongswan/plugins
Commit message (Collapse)AuthorAgeFilesLines
...
* Check for issuer only if we actually got a CRLMartin Willi2011-01-051-7/+7
|
* Check inhibitAnyPolicy in constraints pluginMartin Willi2011-01-051-8/+53
|
* Slightly renamed different policyConstraints to distinguish them betterMartin Willi2011-01-051-26/+26
|
* Added support for inhibitAnyPolicy constraint to x509 pluginMartin Willi2011-01-051-33/+57
|
* Use a generic getter for all numerical X.509 constraintsMartin Willi2011-01-053-28/+26
|
* Check inhibitPolicyMapping in constraints pluginMartin Willi2011-01-051-3/+53
|
* Check requireExplicitPolicy in constraints pluginMartin Willi2011-01-051-19/+109
|
* Pass an additional anchor flag to validate() hook if we reach the root CAMartin Willi2011-01-052-2/+4
|
* Always pass auth info to validate(), use pathlen to check for user certificateMartin Willi2011-01-052-5/+8
|
* Added support for delta CRLs to x509 pluginMartin Willi2011-01-052-7/+112
|
* Moved CRL distribution point building to an exportable functionMartin Willi2011-01-051-29/+43
|
* Simplified format of x509 CRL URI parsing/enumeratorMartin Willi2011-01-053-207/+131
|
* Fail on critical extensions in openssl CRLsMartin Willi2011-01-051-1/+6
|
* Respect enforce_critical setting in x509 plugin CRLsMartin Willi2011-01-051-0/+8
|
* Parse CRL extensions in a switch statementMartin Willi2011-01-051-18/+24
|
* Respect policy mappings in certificatePolicy validationMartin Willi2011-01-051-24/+64
|
* Validate simple certificatePolicy inheritanceMartin Willi2011-01-051-0/+54
|
* Added support for policyConstraints to x509 pluginMartin Willi2011-01-052-6/+129
|
* Slightly renamed X509_NO_PATH_LEN_CONSTRAINT to use it for ↵Martin Willi2011-01-053-5/+5
| | | | PolicyConstraints, too
* Added policyMappings support to x509 pluginMartin Willi2011-01-052-3/+131
|
* Added certificatePolicy support to x509 pluginMartin Willi2011-01-052-11/+165
|
* Fail when parsing unsupported critical extensions in openssl_x509Martin Willi2011-01-051-1/+5
|
* Do not parse certificates with invalid version in openssl pluginMartin Willi2011-01-051-0/+7
|
* Implemented NameConstraint matching in constraints pluginMartin Willi2011-01-051-0/+208
|
* Added support for generating NameConstraints in x509 pluginMartin Willi2011-01-051-4/+74
|
* Added support for parsing NameConstraints in x509 pluginMartin Willi2011-01-051-0/+59
|
* Added name constraint enumerator to x509 interfaceMartin Willi2011-01-052-1/+30
|
* Migrated x509_cert_t to INIT/METHOD macrosMartin Willi2011-01-051-144/+88
|
* Moved X509 pathlen constraint checking to constraints pluginMartin Willi2011-01-051-0/+29
|
* Added plugin stub for advanced X509 constraint checkingMartin Willi2011-01-055-0/+231
|
* CRL/OCSP validation stores trustchain information in auth_cfgMartin Willi2011-01-051-17/+31
|
* Use subject, not issuer, of CRL issuing certificateMartin Willi2011-01-051-1/+1
|
* CRLSign keyUsage or CA basicConstraint are sufficient for CRL validationMartin Willi2011-01-051-1/+1
|
* Parse and encode crlSign keyUsage flag in x509 pluginMartin Willi2011-01-051-10/+71
|
* Use certificate CRLIssuer information to look up cacched CRLs or CDPsMartin Willi2011-01-051-50/+88
|
* Added support for CRL Issuers to x509 and OpenSSL pluginsMartin Willi2011-01-053-63/+254
|
* Load plugins only once, even if listed twiceMartin Willi2011-01-051-0/+27
|
* printed plugin names have a hyphenAndreas Steffen2010-12-247-5/+9
|
* Fixed public key construction from PKCS#11 private keyMartin Willi2010-12-231-3/+3
|
* Probe for supported AF_ALG algorithms, register dynamicallyMartin Willi2010-12-2010-161/+212
|
* Register algorithms with dependencies only if dependency availableMartin Willi2010-12-206-64/+133
|
* Register some less common AF_ALG ciphers (cast5, serpent, twofish, blowfish)Martin Willi2010-12-202-0/+18
|
* Implemented PRFs using AF_ALGMartin Willi2010-12-204-0/+253
|
* Use the AF_ALG wrapper in hasher, crypter and signerMartin Willi2010-12-203-278/+39
|
* Use a generic AF_ALG wrapper for common operationsMartin Willi2010-12-203-0/+312
|
* Implemented crypter on top of AF_ALGMartin Willi2010-12-204-1/+362
|
* Implemented signer interface using AF_ALGMartin Willi2010-12-204-1/+334
|
* Implemented hasher based on AF_ALGMartin Willi2010-12-204-2/+285
|
* Added plugin stub for AF_ALGMartin Willi2010-12-203-0/+112
|
* trace back crypto algorithms to the plugins that registered themAndreas Steffen2010-12-1819-138/+176
|