aboutsummaryrefslogtreecommitdiffstats
path: root/src/libstrongswan
Commit message (Collapse)AuthorAgeFilesLines
* added missing whitespaceAndreas Steffen2012-04-302-1/+2
|
* Properly initialize optional subject in PEM builder.Tobias Brunner2012-04-301-1/+1
|
* added support for raw RSA public keys to strokeAndreas Steffen2012-04-301-9/+24
|
* CERT_TRUSTED_PUBKEY stores notBefore, notAfter and subject informationAndreas Steffen2012-04-251-7/+41
|
* Removed auth_cfg_t.replace_value() and replaced usages with add().Tobias Brunner2012-04-182-76/+35
| | | | | replace_value() was used to replace identities. Since for these the latest is now returned by get(), adding the new identity with add() is sufficient.
* Changed the order and semantics of rules we expect only once in auth_cfg_t.Tobias Brunner2012-04-182-114/+212
| | | | | | | These rules are now inserted at the front of the internal list, this allows to retrieve the rule added last with get(). For other rules the order in which they are added is maintained (this allows to properly enumerate them).
* Added a simple method to replace the value of a rule in auth_cfg_t.Tobias Brunner2012-04-162-32/+74
|
* Make AES-CMAC actually usable for IKEv2.Tobias Brunner2012-04-041-0/+1
|
* represent 0 as a single byteAndreas Steffen2012-04-031-5/+1
|
* moved chunk_skip_zero to chunk.hAndreas Steffen2012-04-031-0/+18
|
* fixed typoAndreas Steffen2012-04-031-2/+2
|
* Added test vectors for AES-CMAC.Tobias Brunner2012-04-033-0/+153
|
* Implemented AES-CMAC based PRF and signer.Tobias Brunner2012-04-0310-0/+922
| | | | | | The cmac plugin implements AES-CMAC as defined in RFC 4493 and the signer and PRF based on it as defined in RFC 4494 and RFC 4615, respectively.
* Fixed GNU license header in hmac and xcbc plugins.Tobias Brunner2012-04-032-4/+4
|
* Add support for dnQualifier in DNs.Tobias Brunner2012-03-293-1/+6
|
* Don't cast second argument of mem_printf_hook (%b) to size_t.Tobias Brunner2012-03-274-7/+8
| | | | | | | | | | | | | Also treat the given number as unsigned int. Due to the printf hook registration the second argument of mem_printf_hook (if called via printf etc.) is always of type int*. Casting this to a size_t pointer and then dereferencing that as int does not work on big endian machines if int is smaller than size_t (e.g. on ppc64). In order to make this change work if the argument is of a type larger than int, size_t for instance, the second argument for %b has to be casted to (u_)int.
* Added support for untruncated MD5 and SHA1 HMACs in ESP as used in RFC 4595.Tobias Brunner2012-02-271-0/+2
| | | | This requires a Linux kernel >= 2.6.33.
* Compiler warnings fixed.Tobias Brunner2012-02-142-2/+2
|
* Moved log message for unexpected ASN.1 objects to level 2.Tobias Brunner2012-02-011-1/+1
| | | | This avoids error messages if later builders can successfully decode something.
* Added support for PKCS#5 v2 schemes when decrypting PKCS#8 files.Tobias Brunner2012-02-013-61/+323
|
* Added support for encrypted PKCS#8 files (for some PKCS#5 v1.5 schemes).Tobias Brunner2012-02-013-4/+261
|
* Added support to parse PKCS#8 encoded ECDSA private keys.Tobias Brunner2012-02-013-12/+28
|
* OpenSSL plugin parses ECDSA private keys with explicitly specified EC ↵Tobias Brunner2012-02-011-9/+30
| | | | | | | parameters. This is needed in case the key itself does not contain the parameters, which is the case for PKCS#8.
* Add builder part for parameters from algorithmIdentifier.Tobias Brunner2012-02-012-1/+4
|
* Return parsed parameters from algorithmIdentifier if they are an OID (aka EC ↵Tobias Brunner2012-02-011-1/+1
| | | | | | | named curve). Explicit EC parameters are not supported with this function, but before this change no parameters were actually ever returned.
* Parse RSA private keys from PKCS#8 encoded blobs.Tobias Brunner2012-02-014-1/+151
|
* Added PKCS#8 stub plugin.Tobias Brunner2012-02-014-0/+139
|
* Disable crypto benchmarking if CLOCK_THREAD_CPUTIME_ID is not available.Tobias Brunner2012-01-301-0/+10
|
* Cache list of plugin names to further simplify its usage.Tobias Brunner2012-01-192-20/+49
| | | | Also helpful for ipsec statusall to avoid having to enumerate plugins.
* Function added to plugin_loader to get a list of the names of loaded plugins.Tobias Brunner2012-01-192-1/+34
|
* Various style, typo and whitespace correctionsAdrian-Ken Rueegsegger2012-01-131-3/+2
|
* Android 4 requires LOCAL_MODULE_TAGS to be set for all modules.Tobias Brunner2012-01-121-0/+2
| | | | | | | Because all packages are now marked as optional executables that are to be installed on the final system have to be added to PRODUCT_PACKAGES in build/target/product/core.mk. Dependencies (such as libraries) are installed automatically.
* Fixed additional typos in comments and log messages.Tobias Brunner2012-01-122-2/+2
|
* Fix whitespacesAdrian-Ken Rueegsegger2012-01-122-16/+16
|
* Some documentation correctionsAdrian-Ken Rueegsegger2012-01-128-33/+32
|
* Fix gettid() on Android, which is defined in unistd.h there.Tobias Brunner2012-01-121-3/+4
|
* Use native gettid() if available (which is the case on Android).Tobias Brunner2012-01-101-3/+11
|
* Allow callers to force ASN.1 date encoding as GENERALIZEDTIME.Tobias Brunner2011-12-236-14/+16
|
* Avoid integer overflow when parsing ASN.1 dates.Tobias Brunner2011-12-231-2/+2
| | | | This only works properly if sizeof(time_t) > 4.
* Properly ASN.1 encode dates in certificates depending on the year.Tobias Brunner2011-12-236-16/+21
|
* Added atomic compare and swap operations.Tobias Brunner2011-12-232-0/+48
| | | | Using a GCC atomic builtin if available or a global mutex otherwise.
* Also log PGP parsing in ASN log group.Tobias Brunner2011-12-162-19/+19
|
* Log messages for PKCS1 and PEM parsing in ASN log group.Tobias Brunner2011-12-162-11/+11
|
* Log most X.509 related messages in new ASN log group.Tobias Brunner2011-12-165-57/+57
|
* Log ASN.1 parsing in new ASN debug group.Tobias Brunner2011-12-162-26/+26
|
* Added ASN debug group to log low-level encoding/decoding (ASN.1, X.509).Tobias Brunner2011-12-162-0/+4
| | | | | This will allow us to remove quite some clutter from the LIB debug group for higher debug levels.
* Log native thread ID when a thread is created.Tobias Brunner2011-12-161-1/+16
| | | | | If possible gettid() is used, otherwise pthread_self() is logged (which is not completely portable, but seems to work on most supported platforms).
* Log worker thread ID with two digits.Tobias Brunner2011-12-161-2/+2
|
* Make sure the certificate cache is flushed when plugins are unloaded.Tobias Brunner2011-12-151-0/+3
| | | | | This avoids segmentation faults when plugins implementing cert_t are already unloaded when the cache is flushed during destruction.
* Be less verbose if plugin dependecy not satisfiedMartin Willi2011-12-071-1/+1
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-23 04:45:07 +0000