aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
* Allow support for CA-certificate retrieval in scepclient4.6.0Thomas Egerer2011-11-041-0/+21
| | | | | I think somehow this functionality got lost in the way from strongswan-2.7.0...
* Fix 'ipsec pool --status' for empty pools.Tobias Brunner2011-11-041-1/+7
|
* Syntax error in sqlite.sql fixed.Tobias Brunner2011-11-041-1/+1
|
* if available link libsimaka to checksum_builderAndreas Steffen2011-11-041-0/+4
|
* use the correct USE_SIMAKA conditionalAndreas Steffen2011-11-041-1/+1
|
* fixed integrity tests of plugins using libsimakaAndreas Steffen2011-11-049-8/+4
|
* Change order of ocsp uris when parsing a certThomas Egerer2011-11-041-1/+1
|
* Handle certificates being on hold in a CRLThomas Egerer2011-11-043-1/+14
| | | | | | | Certificates which are set on hold in a CRL might be removed from any subsequent CRL. Hence you cannot conclude that a certificate is revoked for good in this case, you would try to retrieve an update CRL to see if the certificate on hold is still on it or not.
* Memwipe request after sa update, tooThomas Egerer2011-11-041-0/+1
|
* Use chunk_clear to memwipe shared secretThomas Egerer2011-11-041-1/+1
|
* Change order of destroy/get_ref function callsThomas Egerer2011-11-041-1/+1
| | | | | Since DESTROY_IF might destroy the peer_cfg, a get_ref on a freed object is subject to fail.
* Fix resource leak in x509_ocsp_responseThomas Egerer2011-11-041-0/+4
|
* Extend xfrm_attr_type_names by newly added enum valuesThomas Egerer2011-11-041-2/+6
|
* Silently install route again, even if it did not change.Tobias Brunner2011-11-042-2/+12
| | | | | Address/interface changes can cause the route to disappear. Afterwards the route might look the same but that does not mean it is still installed.
* Compile warning fixed in kernel interfaces.Tobias Brunner2011-11-042-2/+2
|
* Common spelling errors fixed.Tobias Brunner2011-11-034-4/+4
|
* pkcs11: Make public key operations on tokens optional.Tobias Brunner2011-11-031-20/+21
|
* pkcs11: Make sure a key can be used for a given signature scheme.Tobias Brunner2011-11-023-16/+31
|
* pkcs11: Register ECDSA feature.Tobias Brunner2011-11-021-1/+10
|
* pkcs11: We have to create our own hashes for some signature schemes.Tobias Brunner2011-11-024-12/+81
|
* pkcs11: Lookup the public key of a private key by CKA_ID.Tobias Brunner2011-11-022-0/+125
| | | | | | Currently this only works if a public key object with the same ID is available, if there isn't one we could search for a certificate with the same ID and extract the key from there.
* pkcs11: Search for private keys in a more generic way.Tobias Brunner2011-11-021-20/+19
| | | | | | Also, don't extract the public key directly from the private key. Some tokens actually do not return the public exponent (it's not required). We have to find a different way to get the public key.
* pkcs11: Added support to encode ECDSA public keys.Tobias Brunner2011-11-021-0/+89
|
* pkcs11: Parse ECDSA public keys and find/create them on tokens.Tobias Brunner2011-11-021-2/+177
|
* pkcs11: Added generic functions to find/create public keys on tokens.Tobias Brunner2011-11-021-40/+75
|
* pkcs11: Store public key length in bits.Tobias Brunner2011-11-021-3/+3
|
* pkcs11: Fix encoding of RSA public keys.Tobias Brunner2011-11-021-0/+4
|
* pkcs11: Use create_object_attr_enumerator to encode RSA public key.Tobias Brunner2011-11-021-17/+7
|
* pkcs11: Instead of a mutex use a new session to do multipart operations.Tobias Brunner2011-11-022-40/+66
|
* pkcs11: Function added to retrieve multiple attributes from a single object.Tobias Brunner2011-11-022-6/+62
|
* pkcs11: Memory leak fixed in DH/ECDH implementation.Tobias Brunner2011-11-021-0/+2
|
* pkcs11: Invalid free fixed in DH/ECDH implementation.Tobias Brunner2011-11-021-1/+4
|
* pkcs11: Changed how pkcs11-manager is initialized.Tobias Brunner2011-11-021-42/+32
| | | | | The manager is now created directly, but events and certificate loading is deferred.
* pkcs11: Add attributes to specify what we use the DH/ECDH keys for.Tobias Brunner2011-11-021-2/+10
|
* charon must load libtls if availableAndreas Steffen2011-11-021-0/+4
|
* fixed integrity tests of plugins using libtls or libtnccsAndreas Steffen2011-11-0214-18/+43
|
* pkcs11: Allow to build pkcs11 plugin on Android.Tobias Brunner2011-10-311-0/+2
|
* pkcs11: Use callback registration for pkcs11-manager.Tobias Brunner2011-10-311-25/+73
| | | | | | Otherwise a plugin providing X509 decoding capabilities might be unloaded before the manager which will result in a segmentation fault when certificates in the manager's credential sets are to be destroyed.
* pkcs11: Merged the ECDH into the DH implementation.Tobias Brunner2011-10-316-405/+210
|
* pkcs11: Use get_ck_attribute for ECDH.Tobias Brunner2011-10-311-63/+13
|
* pkcs11: Use get_ck_attribute for DH.Tobias Brunner2011-10-311-28/+6
|
* pkcs11: Method added to library to extract a single attribute from an object.Tobias Brunner2011-10-312-1/+50
|
* pkcs11: Added names for CKA_* constants.Tobias Brunner2011-10-312-1/+123
|
* pkcs11: Added support for ECDH.Tobias Brunner2011-10-314-1/+422
|
* pkcs11: Added definitions needed for ECDH to pkcs11.h.Tobias Brunner2011-10-311-0/+24
|
* pkcs11: Specify object class and key type when deriving DH secrets.Tobias Brunner2011-10-311-0/+4
| | | | pkcs11_softtoken on OpenSolaris requires this (probably others too).
* pkcs11: Add features support.Tobias Brunner2011-10-313-84/+90
|
* pkcs11: Added support for DH.Tobias Brunner2011-10-314-0/+377
|
* pkcs11: Error message fixed.Tobias Brunner2011-10-311-1/+1
|
* pkcs11: Added support to generate random numbers on a token.Tobias Brunner2011-10-314-0/+201
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-09-15 00:33:49 +0000