aboutsummaryrefslogtreecommitdiffstats
path: root/src/libstrongswan
Commit message (Collapse)AuthorAgeFilesLines
...
* Build nonce plugin on AndroidTobias Brunner2012-06-261-0/+3
|
* Added support for the curl plugin on AndroidTobias Brunner2012-06-261-0/+6
|
* Make rescheduling a job more predictableTobias Brunner2012-06-252-37/+85
| | | | | | | | | | | | | This avoids race conditions between calls to cancel() and jobs that like to be rescheduled. If jobs were able to reschedule themselves it would theoretically be possible that two worker threads have the same job assigned (the one currently executing the job and the one executing the same but rescheduled job if it already is time to execute it), this means that cancel() could be called twice for that job. Creating a new job based on the current one and reschedule that is also OK, but rescheduling itself is more efficient for jobs that need to be executed often.
* Centralized thread cancellation in processor_tTobias Brunner2012-06-257-223/+127
| | | | | | | | | | This ensures that no threads are active when plugins and the rest of the daemon are unloaded. callback_job_t was simplified a lot in the process as its main functionality is now contained in processor_t. The parent-child relationships were abandoned as these were only needed to simplify job cancellation.
* Give processor_t more control over the lifecycle of a jobTobias Brunner2012-06-256-105/+176
| | | | | | | | | | | Jobs are now destroyed by the processor, but they are allowed to reschedule themselves. That is, parts of the reschedule functionality already provided by callback_job_t is moved to the processor. Not yet fully supported is JOB_REQUEUE_DIRECT and canceling jobs. Note: job_t.destroy() is now called not only for queued jobs but also after execution or cancellation of jobs. job_t.status can be used to decide what to do in said method.
* Added a method to plugin_loader_t to add 'static' plugin featuresTobias Brunner2012-06-252-0/+115
| | | | | | | | This allows daemons and other components to register plugin features like those provided by plugins (following the same lifecycle). The added features are internally handled like they were added by a plugin.
* Make sure that all features of critical plugins are loadedTobias Brunner2012-06-251-5/+64
|
* Use mac_t and PRF and signer wrappers in cmac pluginTobias Brunner2012-06-258-443/+82
|
* Use mac_t and PRF and signer wrappers in xcbc pluginTobias Brunner2012-06-258-452/+91
|
* Make the hmac_t interface a generic interface for message authentication codesTobias Brunner2012-06-2511-132/+131
|
* Simplified creation of PRFs and signers in openssl and hmac pluginsTobias Brunner2012-06-252-136/+10
|
* Function to convert PRFs to hash algorithms addedTobias Brunner2012-06-252-0/+39
|
* hasher_algorithm_from_integrity() optionally returns truncation lengthTobias Brunner2012-06-252-6/+43
|
* Use simple wrappers for HMAC based PRF and signer in openssl pluginTobias Brunner2012-06-258-562/+132
|
* Use simple wrappers for HMAC based PRF and signer in hmac pluginTobias Brunner2012-06-258-524/+127
|
* Simple wrappers for HMAC based prf_t and signer_t implementations addedTobias Brunner2012-06-256-0/+395
|
* Refactored OpenSSL based HMAC implementationTobias Brunner2012-06-255-173/+382
|
* Adding OpenSSL HMAC signer functions to openssl pluginAleksandr Grinberg2012-06-254-1/+322
|
* Adding OpenSSL HMAC pseudo random functions to openssl pluginAleksandr Grinberg2012-06-254-1/+245
|
* Adding OpenSSL random number functions to openssl pluginAleksandr Grinberg2012-06-254-1/+159
|
* Doxygen fix in PKCS#7 wrapperTobias Brunner2012-06-191-1/+1
|
* Support multiple different public key strength types in constraintsMartin Willi2012-06-121-41/+38
|
* Add signature schemes to auth_cfg during trustchain validationMartin Willi2012-06-125-19/+45
|
* certificate_t->issued_by takes an argument to receive signature schemeMartin Willi2012-06-1212-17/+61
|
* Define auth_cfg rules for signature schemesMartin Willi2012-06-122-0/+53
|
* Implement strdupnull() macro as static inline function.Tobias Brunner2012-06-111-1/+4
| | | | This avoids compiler warnings if the argument is a const char*.
* Added function to convert integrity algorithms to hash algorithms (if based ↵Tobias Brunner2012-06-112-4/+50
| | | | on one).
* Properly encode 0 in ASN.1.Tobias Brunner2012-06-111-10/+7
| | | | | According to X.690 an INTEGER object always has at least one content octet.
* Don't use chunk_skip() in asn1_length().Tobias Brunner2012-06-111-1/+2
| | | | | | | | chunk_skip() returns chunk_empty if the length of the chunk is equal to the number of bytes to skip, this is problematic as asn1_length() modifies the original chunk. asn1_parser_t for instance uses the modified chunk to later calculate the length of the resulting ASN.1 object which produces incorrect results if it is based on chunk_empty.
* Changed memory management and call logic in PKCS#7 parser/generator.Tobias Brunner2012-06-112-85/+86
|
* Changed memory management and attribute handling in PKCS#9 wrapper.Tobias Brunner2012-06-113-112/+40
|
* Added get_attributes() method to pkcs7_t.Tobias Brunner2012-06-112-1/+15
|
* Log group added for applications other than daemons.Tobias Brunner2012-06-112-0/+4
|
* Updated PKCS#7 parser/generator in libstrongswan.Tobias Brunner2012-06-114-201/+226
| | | | | Added some functionality from pluto's version, updated usage of asn1 and crypto primitives. It does compile but is not really tested yet.
* Properly handle empty RDN values in DN strings.Tobias Brunner2012-06-071-3/+11
|
* Fixed return values of several functions (e.g. return FALSE for pointer types).Tobias Brunner2012-05-316-8/+8
|
* Fix boolean return value if an empty RSA signature is detected in gmp pluginMartin Willi2012-05-311-1/+1
| | | | Fixes CVE-2012-2388.
* Fixed check for loaded plugins with feature types that are not compared exactly.Tobias Brunner2012-05-241-25/+13
| | | | | Previously e.g. RNGs with weaker strength would have overwritten stronger ones.
* get_match() method added to hashtable_t.Tobias Brunner2012-05-242-5/+34
|
* Use a hashtable to check for already loaded plugin features.Tobias Brunner2012-05-231-20/+37
|
* Hash function for plugin features added.Tobias Brunner2012-05-232-0/+68
|
* Enumerate correct list while removing nonce_gens, fix deregistrationMartin Willi2012-05-211-1/+1
|
* Added a convenience function to dump backtraces for gdb-less debuggingMartin Willi2012-05-212-0/+26
|
* Use separate Doxygen groups for IKEv1 and IKEv2 entities (authenticators, ↵Tobias Brunner2012-05-181-2/+2
| | | | tasks etc.).
* pkcs8: Initialize salt and IV properly.Tobias Brunner2012-05-181-1/+1
|
* Add enumerator for registered nonce generators.Tobias Brunner2012-05-182-9/+33
|
* Add nonce plugin implementationAdrian-Ken Rueegsegger2012-05-186-0/+271
| | | | | | | This nonce generator uses an RNG to generate nonces. The RNG quality is currently set to RNG_WEAK which is the same value used in IKE init. The plugin is enabled and thus built by default.
* Add nonce generator interfaceAdrian-Ken Rueegsegger2012-05-186-0/+163
| | | | | | | Nonce generators (nonce_gen_t) can be used to get or allocate nonces. Users can request nonce generators from the crypto factory while nonce plugins register/remove themselves to/from the crypto factory.
* Use correct integrity_algorithm_t enum type in bench_signer()Martin Willi2012-05-141-1/+1
|
* Make function pointer defined with METHOD() macro non-constMartin Willi2012-05-141-2/+2
| | | | | clang complains about it being const, and the object code generated from gcc is the same.
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-12 03:58:18 +0000