strongswan.git
8 years agoupdated build_database.sh
Andreas Steffen [Wed, 18 Jul 2012 11:55:08 +0000 (13:55 +0200)]
updated build_database.sh

8 years agoFix EAP-MSCHAPv2 master key derivation, broken with 87dd205b
Martin Willi [Wed, 18 Jul 2012 14:46:05 +0000 (16:46 +0200)]
Fix EAP-MSCHAPv2 master key derivation, broken with 87dd205b

8 years agoRemove debugging leftovers
Martin Willi [Wed, 18 Jul 2012 13:35:40 +0000 (15:35 +0200)]
Remove debugging leftovers

8 years agoAdd a SHA1 test vector forcing padding over block boundary
Martin Willi [Wed, 18 Jul 2012 10:28:16 +0000 (12:28 +0200)]
Add a SHA1 test vector forcing padding over block boundary

8 years agobuilds an Ubuntu 12.04 LTS measurement database
Andreas Steffen [Wed, 18 Jul 2012 09:33:39 +0000 (11:33 +0200)]
builds an Ubuntu 12.04 LTS measurement database

8 years agominor fixes in attest
Andreas Steffen [Wed, 18 Jul 2012 09:32:24 +0000 (11:32 +0200)]
minor fixes in attest

8 years agoAdd a tool to burn hashers
Martin Willi [Tue, 17 Jul 2012 15:11:01 +0000 (17:11 +0200)]
Add a tool to burn hashers

8 years agoUse centralized hasher names in pki utility
Martin Willi [Tue, 17 Jul 2012 15:31:02 +0000 (17:31 +0200)]
Use centralized hasher names in pki utility

8 years agoUse centralized hasher names in coupling plugin
Martin Willi [Tue, 17 Jul 2012 15:30:47 +0000 (17:30 +0200)]
Use centralized hasher names in coupling plugin

8 years agoUse centralized hasher names in openssl plugin
Martin Willi [Tue, 17 Jul 2012 15:30:23 +0000 (17:30 +0200)]
Use centralized hasher names in openssl plugin

8 years agoAdd short names for hasher algorithms
Martin Willi [Tue, 17 Jul 2012 13:35:02 +0000 (15:35 +0200)]
Add short names for hasher algorithms

8 years agovarious PTS fixes
Andreas Steffen [Tue, 17 Jul 2012 14:38:55 +0000 (16:38 +0200)]
various PTS fixes

8 years agoparcel IMA file measurements into batches
Andreas Steffen [Tue, 17 Jul 2012 11:44:02 +0000 (13:44 +0200)]
parcel IMA file measurements into batches

8 years agoregister _check_file_measurement() method
Andreas Steffen [Tue, 17 Jul 2012 11:42:58 +0000 (13:42 +0200)]
register _check_file_measurement() method

8 years agoFix tls_prf bug introduced with bc474883
Martin Willi [Tue, 17 Jul 2012 09:32:13 +0000 (11:32 +0200)]
Fix tls_prf bug introduced with bc474883

8 years agocheck IMA file measurements against database reference
Andreas Steffen [Tue, 17 Jul 2012 09:16:11 +0000 (11:16 +0200)]
check IMA file measurements against database reference

8 years agoSupport void return values in OpenSSL 0.9.8 HMAC functions
Martin Willi [Tue, 17 Jul 2012 08:58:53 +0000 (10:58 +0200)]
Support void return values in OpenSSL 0.9.8 HMAC functions

8 years agohandled return values in tnc-pdp
Andreas Steffen [Mon, 16 Jul 2012 20:54:38 +0000 (22:54 +0200)]
handled return values in tnc-pdp

8 years agofixed potential hasher problem in IMA template hash
Andreas Steffen [Mon, 16 Jul 2012 20:44:45 +0000 (22:44 +0200)]
fixed potential hasher problem in IMA template hash

8 years agofixed potential hasher problems
Andreas Steffen [Mon, 16 Jul 2012 20:39:34 +0000 (22:39 +0200)]
fixed potential hasher problems

8 years agouse a nonce for a PA-TNC message identifier
Andreas Steffen [Mon, 16 Jul 2012 16:08:49 +0000 (18:08 +0200)]
use a nonce for a PA-TNC message identifier

8 years agoipsec attest supports ima template hashes
Andreas Steffen [Mon, 16 Jul 2012 15:14:27 +0000 (17:14 +0200)]
ipsec attest supports ima template hashes

8 years agoHandle PRF failures in eap-aka-3gpp2
Martin Willi [Tue, 10 Jul 2012 13:11:25 +0000 (15:11 +0200)]
Handle PRF failures in eap-aka-3gpp2

8 years agoRefactored error handling in keymat_v1_t
Martin Willi [Tue, 10 Jul 2012 12:51:17 +0000 (14:51 +0200)]
Refactored error handling in keymat_v1_t

8 years agoClean up error handling in keymat_v2_t
Martin Willi [Tue, 10 Jul 2012 12:28:08 +0000 (14:28 +0200)]
Clean up error handling in keymat_v2_t

8 years agoCleaned up memory management and return values for encryption payload
Martin Willi [Tue, 10 Jul 2012 12:24:46 +0000 (14:24 +0200)]
Cleaned up memory management and return values for encryption payload

8 years agoFix memory management in SIM/AKA crypto functions
Martin Willi [Tue, 10 Jul 2012 11:37:59 +0000 (13:37 +0200)]
Fix memory management in SIM/AKA crypto functions

8 years agoTest reset() of hasher in crypto tester
Martin Willi [Tue, 10 Jul 2012 11:19:36 +0000 (13:19 +0200)]
Test reset() of hasher in crypto tester

8 years agoRefactored error handling in crypto tester
Martin Willi [Tue, 10 Jul 2012 07:49:38 +0000 (09:49 +0200)]
Refactored error handling in crypto tester

8 years agoSet a key before benching PRFs
Martin Willi [Tue, 10 Jul 2012 07:07:13 +0000 (09:07 +0200)]
Set a key before benching PRFs

8 years agoResetting OpenSSL HMAC with NULL key reuses existing key
Martin Willi [Tue, 10 Jul 2012 07:06:15 +0000 (09:06 +0200)]
Resetting OpenSSL HMAC with NULL key reuses existing key

8 years agoMake sure HMAC_Init is called before HMAC_Update, fixes crash
Martin Willi [Tue, 10 Jul 2012 07:03:38 +0000 (09:03 +0200)]
Make sure HMAC_Init is called before HMAC_Update, fixes crash

8 years agoCheck and forward syscall errors in AF_ALG
Martin Willi [Mon, 9 Jul 2012 15:55:52 +0000 (17:55 +0200)]
Check and forward syscall errors in AF_ALG

8 years agoAdd a return value to hasher_t.reset()
Martin Willi [Mon, 9 Jul 2012 15:26:14 +0000 (17:26 +0200)]
Add a return value to hasher_t.reset()

8 years agoAdd a return value to hasher_t.allocate_hash()
Martin Willi [Mon, 9 Jul 2012 15:15:52 +0000 (17:15 +0200)]
Add a return value to hasher_t.allocate_hash()

8 years agoAdd a return value to keymat_v1_t.{get,update,confirm}_iv
Martin Willi [Mon, 9 Jul 2012 14:27:09 +0000 (16:27 +0200)]
Add a return value to keymat_v1_t.{get,update,confirm}_iv

8 years agoAdd a return value to hasher_t.get_hash()
Martin Willi [Mon, 9 Jul 2012 13:33:41 +0000 (15:33 +0200)]
Add a return value to hasher_t.get_hash()

8 years agoAdd a return value to crypter_t.set_key()
Martin Willi [Fri, 6 Jul 2012 14:57:17 +0000 (16:57 +0200)]
Add a return value to crypter_t.set_key()

8 years agoAdd a return value to crypter_t.decrypt()
Martin Willi [Fri, 6 Jul 2012 14:11:15 +0000 (16:11 +0200)]
Add a return value to crypter_t.decrypt()

8 years agoAdd a return value to crypter_t.encrypt
Martin Willi [Fri, 6 Jul 2012 13:54:03 +0000 (15:54 +0200)]
Add a return value to crypter_t.encrypt

8 years agoIdentation fixes, warn about unused nonce_gen return values
Martin Willi [Fri, 6 Jul 2012 12:45:17 +0000 (14:45 +0200)]
Identation fixes, warn about unused nonce_gen return values

8 years agoAdd a return value to mac_t.set_key()
Martin Willi [Fri, 6 Jul 2012 12:40:04 +0000 (14:40 +0200)]
Add a return value to mac_t.set_key()

8 years agoAdd a return value to mac_t.get_bytes()
Martin Willi [Fri, 6 Jul 2012 12:34:11 +0000 (14:34 +0200)]
Add a return value to mac_t.get_bytes()

8 years agoCheck rng return value when generating libfast session COOKIEs
Martin Willi [Fri, 6 Jul 2012 12:17:01 +0000 (14:17 +0200)]
Check rng return value when generating libfast session COOKIEs

8 years agoInitialize conftest with the same plugins as charon
Martin Willi [Fri, 6 Jul 2012 12:05:49 +0000 (14:05 +0200)]
Initialize conftest with the same plugins as charon

8 years agoRemove unused replay variable in conftests seq number reset hook
Martin Willi [Fri, 6 Jul 2012 12:05:14 +0000 (14:05 +0200)]
Remove unused replay variable in conftests seq number reset hook

8 years agoUpdate conftest to use splitted listener/logger interfaces
Martin Willi [Fri, 6 Jul 2012 12:00:01 +0000 (14:00 +0200)]
Update conftest to use splitted listener/logger interfaces

8 years agoCheck rng return value when generating TLS session identifiers
Martin Willi [Fri, 6 Jul 2012 11:55:42 +0000 (13:55 +0200)]
Check rng return value when generating TLS session identifiers

8 years agoCheck rng return value when generating SIM/AKA message IVs
Martin Willi [Fri, 6 Jul 2012 11:52:57 +0000 (13:52 +0200)]
Check rng return value when generating SIM/AKA message IVs

8 years agoCheck rng return value when generating radius message authenticator
Martin Willi [Fri, 6 Jul 2012 11:52:30 +0000 (13:52 +0200)]
Check rng return value when generating radius message authenticator

8 years agoCheck rng return value when generating secrets and IVs in libtls
Tobias Brunner [Mon, 25 Jun 2012 14:04:40 +0000 (16:04 +0200)]
Check rng return value when generating secrets and IVs in libtls

8 years agoCheck rng return value when generating identity in eap-simaka-reauth plugin
Tobias Brunner [Fri, 6 Jul 2012 08:18:00 +0000 (10:18 +0200)]
Check rng return value when generating identity in eap-simaka-reauth plugin

8 years agoCheck rng return value when generating pseudonym in eap-simaka-pseudonym plugin
Tobias Brunner [Fri, 6 Jul 2012 08:11:21 +0000 (10:11 +0200)]
Check rng return value when generating pseudonym in eap-simaka-pseudonym plugin

8 years agoCheck rng return value when generating nonces in eap-aka plugin
Tobias Brunner [Fri, 6 Jul 2012 08:09:25 +0000 (10:09 +0200)]
Check rng return value when generating nonces in eap-aka plugin

8 years agoCheck rng return value when generating nonces in eap-sim plugin
Tobias Brunner [Fri, 6 Jul 2012 08:02:41 +0000 (10:02 +0200)]
Check rng return value when generating nonces in eap-sim plugin

8 years agoCheck rng return value when generating nonces in libpts
Tobias Brunner [Mon, 25 Jun 2012 14:08:11 +0000 (16:08 +0200)]
Check rng return value when generating nonces in libpts

8 years agoCheck rng return value when generating RAND in eap-aka-3gpp2 plugin
Tobias Brunner [Mon, 25 Jun 2012 13:58:50 +0000 (15:58 +0200)]
Check rng return value when generating RAND in eap-aka-3gpp2 plugin

8 years agoCheck rng return value when generating challenges in eap-md5 and mschapv2 plugins
Tobias Brunner [Mon, 25 Jun 2012 13:57:13 +0000 (15:57 +0200)]
Check rng return value when generating challenges in eap-md5 and mschapv2 plugins

8 years agoCheck rng return value when generating Transaction IDs in DHCP plugin
Tobias Brunner [Mon, 25 Jun 2012 13:56:31 +0000 (15:56 +0200)]
Check rng return value when generating Transaction IDs in DHCP plugin

8 years agoCheck rng return value when generating SPIs in kernel-klips plugin
Tobias Brunner [Mon, 25 Jun 2012 14:02:13 +0000 (16:02 +0200)]
Check rng return value when generating SPIs in kernel-klips plugin

8 years agoCheck rng return value when seeding OpenSSL RNG
Tobias Brunner [Mon, 25 Jun 2012 14:07:12 +0000 (16:07 +0200)]
Check rng return value when seeding OpenSSL RNG

8 years agoCheck rng return value when generating DH secret in gcrypt plugin
Tobias Brunner [Mon, 25 Jun 2012 14:10:46 +0000 (16:10 +0200)]
Check rng return value when generating DH secret in gcrypt plugin

8 years agoCheck rng return value when generating DH secrets and primes in gmp plugin
Tobias Brunner [Mon, 25 Jun 2012 14:09:00 +0000 (16:09 +0200)]
Check rng return value when generating DH secrets and primes in gmp plugin

8 years agoCheck rng return value when generating serial numbers in pki utility
Tobias Brunner [Mon, 25 Jun 2012 14:03:53 +0000 (16:03 +0200)]
Check rng return value when generating serial numbers in pki utility

8 years agoWrapper functions added to generate non-zero random bytes
Tobias Brunner [Mon, 25 Jun 2012 12:34:14 +0000 (14:34 +0200)]
Wrapper functions added to generate non-zero random bytes

8 years agoCheck rng return value when generating SCEP sender nonce
Tobias Brunner [Fri, 6 Jul 2012 08:49:46 +0000 (10:49 +0200)]
Check rng return value when generating SCEP sender nonce

8 years agoCheck rng return value when generating OCSP nonces
Tobias Brunner [Mon, 25 Jun 2012 14:06:59 +0000 (16:06 +0200)]
Check rng return value when generating OCSP nonces

8 years agoCheck rng return value when generating key and IV in PKCS#7 wrapper
Tobias Brunner [Mon, 25 Jun 2012 14:13:49 +0000 (16:13 +0200)]
Check rng return value when generating key and IV in PKCS#7 wrapper

8 years agoCheck rng return value when generating ME CONNECT_ID and KEY
Tobias Brunner [Mon, 25 Jun 2012 14:01:51 +0000 (16:01 +0200)]
Check rng return value when generating ME CONNECT_ID and KEY

8 years agoCheck rng return value when generating IKEv1 message IDs
Tobias Brunner [Mon, 25 Jun 2012 13:59:48 +0000 (15:59 +0200)]
Check rng return value when generating IKEv1 message IDs

8 years agoCheck rng return value when generating COOKIE2 during MOBIKE
Tobias Brunner [Fri, 6 Jul 2012 08:54:06 +0000 (10:54 +0200)]
Check rng return value when generating COOKIE2 during MOBIKE

8 years agoCheck rng return value when generating COOKIE secret in receiver
Tobias Brunner [Mon, 25 Jun 2012 13:55:44 +0000 (15:55 +0200)]
Check rng return value when generating COOKIE secret in receiver

8 years agoCheck rng return value when generating fake NAT detection payloads
Tobias Brunner [Mon, 25 Jun 2012 14:00:48 +0000 (16:00 +0200)]
Check rng return value when generating fake NAT detection payloads

8 years agoCheck rng return value when encrypting encryption payload
Tobias Brunner [Mon, 25 Jun 2012 13:54:57 +0000 (15:54 +0200)]
Check rng return value when encrypting encryption payload

8 years agoCheck rng return value when generating SPIs in ike_sa_manager_t
Tobias Brunner [Fri, 6 Jul 2012 08:46:34 +0000 (10:46 +0200)]
Check rng return value when generating SPIs in ike_sa_manager_t

8 years agoCheck rng return value in crypto tester
Tobias Brunner [Mon, 25 Jun 2012 14:14:30 +0000 (16:14 +0200)]
Check rng return value in crypto tester

8 years agoRelay rng return value in nonce plugin
Tobias Brunner [Mon, 25 Jun 2012 14:07:40 +0000 (16:07 +0200)]
Relay rng return value in nonce plugin

8 years agoRNGs' get_bytes and allocate_bytes return boolean
Tobias Brunner [Mon, 25 Jun 2012 11:22:54 +0000 (13:22 +0200)]
RNGs' get_bytes and allocate_bytes return boolean

8 years agoNonce: Let get_nonce, allocate_nonce return boolean
Reto Buerki [Tue, 12 Jun 2012 08:54:02 +0000 (10:54 +0200)]
Nonce: Let get_nonce, allocate_nonce return boolean

8 years agoAdd a return value to prf_t.set_key()
Martin Willi [Fri, 6 Jul 2012 09:57:01 +0000 (11:57 +0200)]
Add a return value to prf_t.set_key()

8 years agoAdd a return value to prf_t.allocate_bytes()
Martin Willi [Fri, 6 Jul 2012 09:28:27 +0000 (11:28 +0200)]
Add a return value to prf_t.allocate_bytes()

8 years agoUse a bool return value in keymat_v1_t.get_hash_phase2()
Martin Willi [Fri, 6 Jul 2012 09:16:49 +0000 (11:16 +0200)]
Use a bool return value in keymat_v1_t.get_hash_phase2()

8 years agoAdd a return value to keymat_v1_t.get_hash()
Martin Willi [Fri, 6 Jul 2012 09:07:39 +0000 (11:07 +0200)]
Add a return value to keymat_v1_t.get_hash()

8 years agoAdd a return value to keymat_v2_t.get_auth_octets()
Martin Willi [Fri, 6 Jul 2012 08:58:19 +0000 (10:58 +0200)]
Add a return value to keymat_v2_t.get_auth_octets()

8 years agoAdd a return value to keymat_v2_t.get_psk_sig()
Martin Willi [Fri, 6 Jul 2012 08:47:20 +0000 (10:47 +0200)]
Add a return value to keymat_v2_t.get_psk_sig()

8 years agoAdd a return value to prf_t.get_bytes()
Martin Willi [Fri, 6 Jul 2012 08:14:29 +0000 (10:14 +0200)]
Add a return value to prf_t.get_bytes()

8 years agoAdd a return value to tls_prf_t.set_key()
Martin Willi [Fri, 6 Jul 2012 07:49:25 +0000 (09:49 +0200)]
Add a return value to tls_prf_t.set_key()

8 years agoAdd a return value to tls_prf_t.get_bytes()
Martin Willi [Fri, 6 Jul 2012 07:49:16 +0000 (09:49 +0200)]
Add a return value to tls_prf_t.get_bytes()

8 years agoprf_plus_create() can return NULL on failure
Martin Willi [Fri, 6 Jul 2012 06:43:58 +0000 (08:43 +0200)]
prf_plus_create() can return NULL on failure

8 years agoAdd a return value to prf_plus_t.get_bytes()
Martin Willi [Fri, 6 Jul 2012 06:39:15 +0000 (08:39 +0200)]
Add a return value to prf_plus_t.get_bytes()

8 years agoAdd a return value to prf_plus_t.allocate_bytes()
Martin Willi [Fri, 6 Jul 2012 06:24:24 +0000 (08:24 +0200)]
Add a return value to prf_plus_t.allocate_bytes()

8 years agoAdd a return value to signer_t.set_key()
Martin Willi [Fri, 6 Jul 2012 07:33:10 +0000 (09:33 +0200)]
Add a return value to signer_t.set_key()

8 years agoAdd a return value to tls_crypto_t.derive_secrets()
Martin Willi [Fri, 6 Jul 2012 07:28:25 +0000 (09:28 +0200)]
Add a return value to tls_crypto_t.derive_secrets()

8 years agoAdd a return value to simaka_crypto_t.derive_keys_*()
Martin Willi [Fri, 6 Jul 2012 06:57:18 +0000 (08:57 +0200)]
Add a return value to simaka_crypto_t.derive_keys_*()

8 years agoAdd a return value to signer_t.get_signature()
Martin Willi [Thu, 5 Jul 2012 16:21:58 +0000 (18:21 +0200)]
Add a return value to signer_t.get_signature()

8 years agoAdd a return value to radius_message_t.sign()
Martin Willi [Thu, 5 Jul 2012 16:11:26 +0000 (18:11 +0200)]
Add a return value to radius_message_t.sign()

8 years agoAdd a return value to simaka_message_t.generate()
Martin Willi [Thu, 5 Jul 2012 16:04:41 +0000 (18:04 +0200)]
Add a return value to simaka_message_t.generate()

8 years agoAdd a return value to signer_t.allocate_signature()
Martin Willi [Thu, 5 Jul 2012 15:26:12 +0000 (17:26 +0200)]
Add a return value to signer_t.allocate_signature()

8 years agoAdd a return value to aead_t.set_key()
Martin Willi [Thu, 5 Jul 2012 15:19:23 +0000 (17:19 +0200)]
Add a return value to aead_t.set_key()

8 years agoAdd a return value to aead_t.encrypt()
Martin Willi [Thu, 5 Jul 2012 15:10:17 +0000 (17:10 +0200)]
Add a return value to aead_t.encrypt()