aboutsummaryrefslogtreecommitdiffstats
path: root/src/libtls/tls_crypto.c
Commit message (Collapse)AuthorAgeFilesLines
* Fixed encoding of TLS extensions (elliptic_curves and signature_algorithms)Tobias Brunner2012-11-281-0/+1
|
* Moved debug.[ch] to utils folderTobias Brunner2012-10-241-1/+1
|
* Added missing break when building TLS cipher suitesTobias Brunner2012-09-281-0/+1
|
* Don't allow NULL encryption with PEAPMartin Willi2012-09-121-1/+3
|
* Add a return value to hasher_t.allocate_hash()Martin Willi2012-07-161-2/+2
|
* Add a return value to hasher_t.get_hash()Martin Willi2012-07-161-4/+4
|
* Add a return value to crypter_t.set_key()Martin Willi2012-07-161-4/+10
|
* Add a return value to tls_prf_t.set_key()Martin Willi2012-07-161-6/+7
|
* Add a return value to tls_prf_t.get_bytes()Martin Willi2012-07-161-10/+26
|
* Add a return value to signer_t.set_key()Martin Willi2012-07-161-4/+10
|
* Add a return value to tls_crypto_t.derive_secrets()Martin Willi2012-07-161-4/+8
|
* Double check if a cached suite is available, overwrite any old suite stateMartin Willi2012-02-071-2/+3
|
* Fix TLS EAP-MSK derivation, uses different order of randoms than key expansionMartin Willi2012-02-071-0/+1
|
* Filter TLS suite MAC by HMAC algorithm, as the hash is not necessarily the sameMartin Willi2012-02-071-4/+4
|
* Implemented TLS session resumption both as client and as serverMartin Willi2011-12-311-23/+81
|
* In TLS 1.2, PRF and HASH function use at least SHA-256, not the MAC hash ↵Martin Willi2011-12-241-20/+20
| | | | function
* Fixed common misspellings.Tobias Brunner2011-07-201-1/+1
| | | | Mostly found by 'codespell'.
* renamed tls_reader|writer to bio_* and moved to libstrongswanAndreas Steffen2011-05-311-9/+9
|
* Revert alloc_str changesMartin Willi2011-04-211-8/+4
| | | | | | This reverts commit fdead26ffe1da8501a6ff5e0639a6f44c723e763. This reverts commit 3e2419ebe32de72d824864eb2e0e677a7c197af1. This reverts commit 17ce69b47a1efd6234960cf7d1f50712aee61db5.
* Use thread save settings alloc_str function where appropriateMartin Willi2011-04-211-4/+8
|
* added TLS_PURPOSE_EAP_PEAPAndreas Steffen2011-04-051-0/+1
|
* cast enumerated algorithm type as intAndreas Steffen2010-12-181-3/+4
|
* trace back crypto algorithms to the plugins that registered themAndreas Steffen2010-12-181-2/+5
|
* handle TLS_PURPOSE_EAP_TNCAndreas Steffen2010-09-081-0/+2
|
* Added TLS specific EC point formatsMartin Willi2010-09-061-0/+7
|
* Renamed ecp_format to ansi_format, as point formats in TLS use different ↵Martin Willi2010-09-061-1/+1
| | | | identifiers
* Added strongswan.conf option to filter for specific TLS suitesMartin Willi2010-09-061-0/+32
|
* Added strongswan.conf options to filter cipher suites by specific algorithmsMartin Willi2010-09-061-0/+173
|
* Fixed key type in TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHAMartin Willi2010-09-061-1/+1
|
* Prepend point format to ECDH public keyMartin Willi2010-09-061-0/+8
|
* Do not propose (EC)DHE suites if we do not support themMartin Willi2010-09-031-1/+5
|
* Offer only algorithms/suites we have a registered public key backend forMartin Willi2010-09-031-3/+68
|
* Fixed key type of ECDHE_RSA groupsMartin Willi2010-09-031-4/+4
|
* Use a dynamic curve enumerator to list/convert TLS named curvesMartin Willi2010-09-031-11/+47
|
* Add ECDHE enabled cipher suites, including ECDSA variantsMartin Willi2010-09-031-0/+60
|
* Select private key based on received cipher suitesMartin Willi2010-09-031-36/+58
|
* Support for EC curve Hello extension, EC curve fallbackMartin Willi2010-09-031-0/+14
|
* Added TLS EC curve type and name identifiersMartin Willi2010-09-031-0/+34
|
* Add DHE enabled RSA variants to the supported TLS suitesMartin Willi2010-09-021-0/+36
|
* Store a MODP group we use for each TLS suiteMartin Willi2010-09-021-12/+27
|
* Added generic TLS data sign/verify, hash/sig algorithm constructionMartin Willi2010-09-021-34/+104
|
* Support different hash/sig algorithms in handshake signing, including ECDSAMartin Willi2010-09-021-26/+146
|
* Added TLS ClientCertificateType identifiersMartin Willi2010-09-021-0/+19
|
* Added TLS specific Hash and Signature Algorithm identifiersMartin Willi2010-09-021-0/+16
|
* Prefer AES/Camellia suites over 3DES/NULL encryptionMartin Willi2010-08-251-16/+16
|
* Pass NULL peer identity to omit TLS peer authentication, added ↵Martin Willi2010-08-241-2/+0
| | | | eap-ttls.request_peer_auth option
* Added generic TLS purposesMartin Willi2010-08-241-6/+13
|
* Added a TLS purpose for EAP-TTLS with client authenticationMartin Willi2010-08-231-0/+1
|
* Introducing a dedicated debug message group for libtlsMartin Willi2010-08-231-11/+11
|
* fixed build_cipher_suite_list()Andreas Steffen2010-08-211-6/+6
|