| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | pki: Enable PSS padding if enabled in strongswan.conf | Tobias Brunner | 2017-11-08 | 1 | -1/+2 |
| | | |||||
| * | pki: Optionally generate RSA/PSS signatures | Tobias Brunner | 2017-11-08 | 1 | -5/+18 |
| | | |||||
| * | pki: Properly forward digest to attribute certificate builder | Tobias Brunner | 2017-11-08 | 1 | -0/+1 |
| | | |||||
| * | pki: Edited keyid parameter use in various pki man pages and usage outputs | Andreas Steffen | 2017-03-06 | 1 | -2/+2 |
| | | |||||
| * | Support BLISS signatures with SHA-3 hash | Andreas Steffen | 2015-11-03 | 1 | -1/+2 |
| | | |||||
| * | pki: Choose default digest based on the signature key | Tobias Brunner | 2015-03-23 | 1 | -2/+6 |
| | | |||||
| * | pki: Use SHA-256 as default for signatures | Tobias Brunner | 2015-03-23 | 1 | -10/+2 |
| | | | | | | | Since the BLISS private key supports this we don't do any special handling anymore (if the user choses a digest that is not supported, signing will simply fail later because no signature scheme will be found). | ||||
| * | Allow SHA256 and SHA384 data hash for BLISS signatures. | Andreas Steffen | 2015-02-26 | 1 | -3/+7 |
| | | | | | | The default is SHA512 since this hash function is also used for the c_indices random oracle. | ||||
| * | Implemented full BLISS support for IKEv2 public key authentication and the ↵ | Andreas Steffen | 2014-11-29 | 1 | -0/+5 |
| | | | | | pki tool | ||||
| * | pki: Switch to binary mode on Windows when reading/writing DER to FDs | Martin Willi | 2014-06-04 | 1 | -0/+2 |
| | | |||||
| * | enum: Return boolean result for enum_from_name() lookup | Martin Willi | 2014-05-16 | 1 | -2/+1 |
| | | | | | | | | | | | | Handling the result for enum_from_name() is difficult, as checking for negative return values requires a cast if the enum type is unsigned. The new signature clearly differentiates lookup result from lookup value. Further, this actually allows to convert real -1 enum values, which could not be distinguished from "not-found" and the -1 return value. This also fixes several clang warnings where enums are unsigned. | ||||
| * | pki: Support absolute --not-before/after acert lifetimes | Martin Willi | 2014-03-31 | 1 | -7/+26 |
| | | |||||
| * | pki: Implement an acert command to issue attribute certificates | Martin Willi | 2014-03-31 | 1 | -0/+273 |
 |
index : tteras/strongswan | |
| tteras' strongSwan tree | gitolite |
| aboutsummaryrefslogtreecommitdiffstats |