aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
...
* added support for certificate requests for not yet known CAsMartin Willi2008-03-204-5/+31
|
* added $Andreas Steffen2008-03-201-0/+2
|
* fixed verification of preinstalled certificatesMartin Willi2008-03-201-1/+1
|
* included utils/linked_list.hAndreas Steffen2008-03-201-0/+1
|
* more trustchain verification improvementsMartin Willi2008-03-201-99/+103
| | | | should fix crl-revoked and two-certs scenarios
* cleaned up includesAndreas Steffen2008-03-201-1/+3
|
* CA certificates are allowed to sign OCSP responsed without OCSP_SIGNER flagMartin Willi2008-03-201-1/+2
|
* refactored trustchain verification, this should fix #33Martin Willi2008-03-197-329/+531
| | | | moved auth_info/ocsp_response credset wrapper to separate files
* increased debug level in trust chain verification for auditing purposesAndreas Steffen2008-03-191-31/+50
|
* removed unimplemented private/public key function declarationsMartin Willi2008-03-192-47/+0
|
* The introduced SHA1_NOFINAL hasher was not sufficient for EAP-AKA, Martin Willi2008-03-1910-109/+183
| | | | | | as it requires to XOR the key into the hashers state. A new SHA1 based keyed hash function, implemented as PRF, enables EAP-AKA and the FIPS-PRF function to properly use the existing SHA1 implementation.
* log nextUpdate of crls and ocsp responsesAndreas Steffen2008-03-191-12/+36
|
* fixed stupid bug in fetch_ocsp()Andreas Steffen2008-03-191-1/+1
|
* attempt to achieve consistent debugging outputAndreas Steffen2008-03-197-69/+79
|
* fixed shared key lookup in strokeMartin Willi2008-03-191-1/+1
|
* fixed peer_cfg lookup when omitting IDrMartin Willi2008-03-192-3/+18
|
* fixed CRL check return value on revoked certificatesMartin Willi2008-03-196-53/+32
| | | | | fixed possible refcounting bugs generic return_null() implementation
* fixed compiler warningMartin Willi2008-03-181-0/+1
|
* added generic payload order rules for notifiesMartin Willi2008-03-181-0/+6
|
* fixed ike_cfg lookup in strokeMartin Willi2008-03-181-1/+1
|
* added false positive signature check Martin Willi2008-03-181-0/+6
|
* added missing test case file ([3607])Martin Willi2008-03-181-0/+61
|
* creating public key from RSA private keyMartin Willi2008-03-184-5/+27
| | | | RSA key generation and signature test
* made is_newer() a certificate_t methodAndreas Steffen2008-03-187-137/+226
|
* better normalized tables for SQL plugin (IDs)Martin Willi2008-03-186-286/+453
|
* enforcing x509_flags on certificate constructionMartin Willi2008-03-175-38/+43
|
* fixed CRL revoked certs enumerationMartin Willi2008-03-171-4/+4
|
* logging to SQL databaseMartin Willi2008-03-156-1/+255
|
* correctly unregister IKE_SA at the bus Martin Willi2008-03-151-1/+1
|
* removed X509_PEER flag; flags are meant to read cert, not to store ↵Martin Willi2008-03-145-40/+106
| | | | | | | additional state in cert removed x509_t.set_flags for the reason above implemented a simple, generic shared_key_t
* credential lookup in mysql/sqlite databaseMartin Willi2008-03-147-2/+493
|
* refactored buggy trustchain building, fixed refcount bugMartin Willi2008-03-141-105/+91
|
* reduced mysql pool verbosityMartin Willi2008-03-141-1/+1
|
* SQL schema for MySQL and SQLite, test dataMartin Willi2008-03-144-89/+165
|
* two small fixesTobias Brunner2008-03-135-7/+7
|
* fixed apidoc groupingMartin Willi2008-03-132-2/+2
|
* added NetworkManager prototype DBUS policy, applet configMartin Willi2008-03-132-0/+29
|
* added old and unmaintained prototype of NetworkManager applet and authenticatorMartin Willi2008-03-133-0/+244
|
* merged the modularization branch (credentials) back to trunkMartin Willi2008-03-13488-23646/+30021
|
* improved P2P_NAT debuggingAndreas Steffen2008-02-272-4/+7
|
* creating sysconfdir if it does not existMartin Willi2008-02-222-15/+13
| | | | moved all directory creations into starters Makefile
* version bump to 4.2.0Andreas Steffen2008-02-152-1/+3
|
* release of 4.1.11 bug fix version4.1.11Andreas Steffen2008-02-141-1/+1
|
* refactored connect_manager_t to use the find functions on linked listsTobias Brunner2008-02-141-157/+65
|
* find methods for linked listsTobias Brunner2008-02-142-0/+105
|
* some websites append a newline character to a DER-encoded binary blobAndreas Steffen2008-02-052-10/+30
|
* split connections with different virtual IPs in different peer_cfgsMartin Willi2008-02-054-31/+49
| | | | respect different peer_cfg's when initiating a CHILD_SA within an existing IKE_SA
* * replaced __thread with pthread_key_t/pthread_setspecificTobias Brunner2008-02-051-16/+35
| | | | * use pthread_once to initialize the request handler
* implemented IKEV2 EAP-SIM server and client test module that use triplets ↵Andreas Steffen2008-02-044-141/+725
| | | | stored in a file. For details see the scenario 'ikev2/rw-eap-sim-rsa'
* use the new options_t classAndreas Steffen2008-02-041-1/+4
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 06:26:23 +0000