aboutsummaryrefslogtreecommitdiffstats
path: root/src/libstrongswan
Commit message (Collapse)AuthorAgeFilesLines
...
* handle 0.0.0.0 string and af == AF_INET6Andreas Steffen2008-11-051-1/+1
|
* OpenSSL requires a signature length of exactly RSA_size()Martin Willi2008-11-041-5/+3
|
* removed superfluous get_other_public_value in diffie_hellman_t interfaceMartin Willi2008-11-044-76/+4
|
* fixed bignum export if BN_num_bytes() != DH_size()Martin Willi2008-11-042-45/+54
|
* fixed memleakMartin Willi2008-11-041-8/+11
|
* added locking mechanism for multithreaded use of OpenSSLMartin Willi2008-11-031-0/+117
|
* removed accidently checked in debug codeMartin Willi2008-11-031-1/+0
|
* reverted 4541, does not fix the problemMartin Willi2008-11-031-0/+8
|
* removed 0-byte truncation, fixes random Openssl RSA signature verification ↵Martin Willi2008-10-311-7/+0
| | | | failures
* fixed crash in openssl signature verification if sizeof(size_t) != ↵Martin Willi2008-10-311-1/+3
| | | | sizeof(int) (64bit)
* reverted changeset 4529:Martin Willi2008-10-301-2/+1
| | | | | Camellia is 22 in IKEv1, but not-yet defined in IKEv2 in IKEv2, 22 is reserved for AES-XTS
* added Camellia CBC to list of encryption algorithmsAndreas Steffen2008-10-301-1/+2
|
* prf handles zero-length allocations gracefulMartin Willi2008-10-291-3/+10
|
* refining changeset 4483 by introducing charon.dh_exponent_ansi_x9_42 keyAndreas Steffen2008-10-283-27/+62
|
* remove unused local DH_EXPONENT_ENTROPY definitionAndreas Steffen2008-10-271-2/+0
|
* use 512 bits of entropy for secret DH exponentsAndreas Steffen2008-10-263-1/+9
|
* fixed perl oid generationMartin Willi2008-10-161-2/+2
|
* condvar->wait() can handle recursive mutexMartin Willi2008-10-161-20/+76
|
* merging kernel_pfkey plugin back from kernel-interface branchTobias Brunner2008-10-143-9/+15
|
* implemented ipsec listalgs as a stroke commandAndreas Steffen2008-10-081-1/+1
|
* get_subject() of a CERT_TRUSTED_PUBKEY object returns ID_PUBKEY_INFO_SHA1 ↵Andreas Steffen2008-10-081-1/+1
| | | | hash consistent with the IKEv2 keyid philosophy
* Implemented BUILD_BLOB_ASN1_DER for the CERT_TRUSTED_PUBKEY subtypeAndreas Steffen2008-10-082-4/+24
|
* fixed builder_cancel macro to return NULL on failed buildMartin Willi2008-10-062-1/+15
|
* using signed return value for read()Martin Willi2008-09-301-1/+2
|
* fixed DH value range testingMartin Willi2008-09-171-1/+1
|
* checking mpz_export return value properlyMartin Willi2008-09-173-8/+28
| | | | fixes a potential DoS attack if a DH value of zero gets processed
* stroke parses and lists AC groupsAndreas Steffen2008-09-172-4/+11
|
* time values in strongswan.conf can be optionally specified in days (d), ↵Andreas Steffen2008-09-042-4/+50
| | | | hours (h), minutes (m), or seconds (s)
* agent plugin optionally accepts a BUILD_PUBLIC_KEY to select a specific ↵Martin Willi2008-09-041-18/+68
| | | | private key from the agent
* libstrongswan agent plugin to use ssh-agent for RSA signaturesMartin Willi2008-09-026-0/+710
|
* refactored credential builderMartin Willi2008-09-0217-351/+333
| | | | | | | | | allow enumeration of matching builders try a second builder if the first one fails builder clones resources internally on demand caller frees added resources on failure and success stricter handling of non-supported build parts
* OIDs used by strongSwanAndreas Steffen2008-09-011-1/+1
|
* capability API to allow plugin-controlled capability setMartin Willi2008-08-283-0/+8
|
* creating default IKE proposals dynamically using algorithm enumeration APIMartin Willi2008-08-284-31/+31
|
* separated sha1_prf implementation from sha1_hasherMartin Willi2008-08-286-133/+208
|
* crypto_factory algorithm enumeration APIMartin Willi2008-08-282-93/+221
| | | | implementation of "ipsec listalgs"
* mkdir_p: utility function to create a directory and all required parent ↵Tobias Brunner2008-08-282-0/+61
| | | | directories
* ported parts of two-sim branchMartin Willi2008-08-224-6/+26
| | | | | | eap_identity parameter to exchange in eap_identity some auth_info/peer_cfg refactorings fixed some bugs, introduced new ones
* a (incomplete) implementation of draft-sheffer-ikev2-gtc-00.txt using PAMMartin Willi2008-08-211-0/+1
|
* corrected captionAndreas Steffen2008-08-211-1/+1
|
* added sqlite busy handler: retries on locking conflictsMartin Willi2008-08-211-0/+14
|
* fixed libstrongswan integrity testAndreas Steffen2008-08-193-11/+27
|
* added options for virtual IP, UDP encapsulation, IPCompMartin Willi2008-07-311-2/+6
| | | | proper handling of libstrongswan/glib TRUE/FALSE conflict
* added a driver type getter for database implementationsMartin Willi2008-07-213-0/+38
|
* using token enumerator to parser plugin listMartin Willi2008-07-021-28/+7
|
* implementation of a simple "token enumerator"Martin Willi2008-07-023-0/+157
|
* whitelisting leaks of ENGINE_load_builtin_enginesMartin Willi2008-07-011-0/+1
|
* sqlite plugin requires libsqlite3 => 3.3.1 to share connectionsMartin Willi2008-06-301-5/+13
| | | | use recursive locking if libsqlite3 < 3.5.0
* fixed ifndef typo for MYSQL_DATA_TRUNCATED checkMartin Willi2008-06-261-1/+1
|
* fixed plugin loader destructionMartin Willi2008-06-251-1/+1
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-07 16:02:22 +0000