strongswan.git
7 years agobuilds an Ubuntu 12.04 LTS measurement database
Andreas Steffen [Wed, 18 Jul 2012 09:33:39 +0000 (11:33 +0200)]
builds an Ubuntu 12.04 LTS measurement database

7 years agominor fixes in attest
Andreas Steffen [Wed, 18 Jul 2012 09:32:24 +0000 (11:32 +0200)]
minor fixes in attest

7 years agoAdd a tool to burn hashers
Martin Willi [Tue, 17 Jul 2012 15:11:01 +0000 (17:11 +0200)]
Add a tool to burn hashers

7 years agoUse centralized hasher names in pki utility
Martin Willi [Tue, 17 Jul 2012 15:31:02 +0000 (17:31 +0200)]
Use centralized hasher names in pki utility

7 years agoUse centralized hasher names in coupling plugin
Martin Willi [Tue, 17 Jul 2012 15:30:47 +0000 (17:30 +0200)]
Use centralized hasher names in coupling plugin

7 years agoUse centralized hasher names in openssl plugin
Martin Willi [Tue, 17 Jul 2012 15:30:23 +0000 (17:30 +0200)]
Use centralized hasher names in openssl plugin

7 years agoAdd short names for hasher algorithms
Martin Willi [Tue, 17 Jul 2012 13:35:02 +0000 (15:35 +0200)]
Add short names for hasher algorithms

7 years agovarious PTS fixes
Andreas Steffen [Tue, 17 Jul 2012 14:38:55 +0000 (16:38 +0200)]
various PTS fixes

7 years agoparcel IMA file measurements into batches
Andreas Steffen [Tue, 17 Jul 2012 11:44:02 +0000 (13:44 +0200)]
parcel IMA file measurements into batches

7 years agoregister _check_file_measurement() method
Andreas Steffen [Tue, 17 Jul 2012 11:42:58 +0000 (13:42 +0200)]
register _check_file_measurement() method

7 years agoFix tls_prf bug introduced with bc474883
Martin Willi [Tue, 17 Jul 2012 09:32:13 +0000 (11:32 +0200)]
Fix tls_prf bug introduced with bc474883

7 years agocheck IMA file measurements against database reference
Andreas Steffen [Tue, 17 Jul 2012 09:16:11 +0000 (11:16 +0200)]
check IMA file measurements against database reference

7 years agoSupport void return values in OpenSSL 0.9.8 HMAC functions
Martin Willi [Tue, 17 Jul 2012 08:58:53 +0000 (10:58 +0200)]
Support void return values in OpenSSL 0.9.8 HMAC functions

7 years agohandled return values in tnc-pdp
Andreas Steffen [Mon, 16 Jul 2012 20:54:38 +0000 (22:54 +0200)]
handled return values in tnc-pdp

7 years agofixed potential hasher problem in IMA template hash
Andreas Steffen [Mon, 16 Jul 2012 20:44:45 +0000 (22:44 +0200)]
fixed potential hasher problem in IMA template hash

7 years agofixed potential hasher problems
Andreas Steffen [Mon, 16 Jul 2012 20:39:34 +0000 (22:39 +0200)]
fixed potential hasher problems

7 years agouse a nonce for a PA-TNC message identifier
Andreas Steffen [Mon, 16 Jul 2012 16:08:49 +0000 (18:08 +0200)]
use a nonce for a PA-TNC message identifier

7 years agoipsec attest supports ima template hashes
Andreas Steffen [Mon, 16 Jul 2012 15:14:27 +0000 (17:14 +0200)]
ipsec attest supports ima template hashes

7 years agoHandle PRF failures in eap-aka-3gpp2
Martin Willi [Tue, 10 Jul 2012 13:11:25 +0000 (15:11 +0200)]
Handle PRF failures in eap-aka-3gpp2

7 years agoRefactored error handling in keymat_v1_t
Martin Willi [Tue, 10 Jul 2012 12:51:17 +0000 (14:51 +0200)]
Refactored error handling in keymat_v1_t

7 years agoClean up error handling in keymat_v2_t
Martin Willi [Tue, 10 Jul 2012 12:28:08 +0000 (14:28 +0200)]
Clean up error handling in keymat_v2_t

7 years agoCleaned up memory management and return values for encryption payload
Martin Willi [Tue, 10 Jul 2012 12:24:46 +0000 (14:24 +0200)]
Cleaned up memory management and return values for encryption payload

7 years agoFix memory management in SIM/AKA crypto functions
Martin Willi [Tue, 10 Jul 2012 11:37:59 +0000 (13:37 +0200)]
Fix memory management in SIM/AKA crypto functions

7 years agoTest reset() of hasher in crypto tester
Martin Willi [Tue, 10 Jul 2012 11:19:36 +0000 (13:19 +0200)]
Test reset() of hasher in crypto tester

7 years agoRefactored error handling in crypto tester
Martin Willi [Tue, 10 Jul 2012 07:49:38 +0000 (09:49 +0200)]
Refactored error handling in crypto tester

7 years agoSet a key before benching PRFs
Martin Willi [Tue, 10 Jul 2012 07:07:13 +0000 (09:07 +0200)]
Set a key before benching PRFs

7 years agoResetting OpenSSL HMAC with NULL key reuses existing key
Martin Willi [Tue, 10 Jul 2012 07:06:15 +0000 (09:06 +0200)]
Resetting OpenSSL HMAC with NULL key reuses existing key

7 years agoMake sure HMAC_Init is called before HMAC_Update, fixes crash
Martin Willi [Tue, 10 Jul 2012 07:03:38 +0000 (09:03 +0200)]
Make sure HMAC_Init is called before HMAC_Update, fixes crash

7 years agoCheck and forward syscall errors in AF_ALG
Martin Willi [Mon, 9 Jul 2012 15:55:52 +0000 (17:55 +0200)]
Check and forward syscall errors in AF_ALG

7 years agoAdd a return value to hasher_t.reset()
Martin Willi [Mon, 9 Jul 2012 15:26:14 +0000 (17:26 +0200)]
Add a return value to hasher_t.reset()

7 years agoAdd a return value to hasher_t.allocate_hash()
Martin Willi [Mon, 9 Jul 2012 15:15:52 +0000 (17:15 +0200)]
Add a return value to hasher_t.allocate_hash()

7 years agoAdd a return value to keymat_v1_t.{get,update,confirm}_iv
Martin Willi [Mon, 9 Jul 2012 14:27:09 +0000 (16:27 +0200)]
Add a return value to keymat_v1_t.{get,update,confirm}_iv

7 years agoAdd a return value to hasher_t.get_hash()
Martin Willi [Mon, 9 Jul 2012 13:33:41 +0000 (15:33 +0200)]
Add a return value to hasher_t.get_hash()

7 years agoAdd a return value to crypter_t.set_key()
Martin Willi [Fri, 6 Jul 2012 14:57:17 +0000 (16:57 +0200)]
Add a return value to crypter_t.set_key()

7 years agoAdd a return value to crypter_t.decrypt()
Martin Willi [Fri, 6 Jul 2012 14:11:15 +0000 (16:11 +0200)]
Add a return value to crypter_t.decrypt()

7 years agoAdd a return value to crypter_t.encrypt
Martin Willi [Fri, 6 Jul 2012 13:54:03 +0000 (15:54 +0200)]
Add a return value to crypter_t.encrypt

7 years agoIdentation fixes, warn about unused nonce_gen return values
Martin Willi [Fri, 6 Jul 2012 12:45:17 +0000 (14:45 +0200)]
Identation fixes, warn about unused nonce_gen return values

7 years agoAdd a return value to mac_t.set_key()
Martin Willi [Fri, 6 Jul 2012 12:40:04 +0000 (14:40 +0200)]
Add a return value to mac_t.set_key()

7 years agoAdd a return value to mac_t.get_bytes()
Martin Willi [Fri, 6 Jul 2012 12:34:11 +0000 (14:34 +0200)]
Add a return value to mac_t.get_bytes()

7 years agoCheck rng return value when generating libfast session COOKIEs
Martin Willi [Fri, 6 Jul 2012 12:17:01 +0000 (14:17 +0200)]
Check rng return value when generating libfast session COOKIEs

7 years agoInitialize conftest with the same plugins as charon
Martin Willi [Fri, 6 Jul 2012 12:05:49 +0000 (14:05 +0200)]
Initialize conftest with the same plugins as charon

7 years agoRemove unused replay variable in conftests seq number reset hook
Martin Willi [Fri, 6 Jul 2012 12:05:14 +0000 (14:05 +0200)]
Remove unused replay variable in conftests seq number reset hook

7 years agoUpdate conftest to use splitted listener/logger interfaces
Martin Willi [Fri, 6 Jul 2012 12:00:01 +0000 (14:00 +0200)]
Update conftest to use splitted listener/logger interfaces

7 years agoCheck rng return value when generating TLS session identifiers
Martin Willi [Fri, 6 Jul 2012 11:55:42 +0000 (13:55 +0200)]
Check rng return value when generating TLS session identifiers

7 years agoCheck rng return value when generating SIM/AKA message IVs
Martin Willi [Fri, 6 Jul 2012 11:52:57 +0000 (13:52 +0200)]
Check rng return value when generating SIM/AKA message IVs

7 years agoCheck rng return value when generating radius message authenticator
Martin Willi [Fri, 6 Jul 2012 11:52:30 +0000 (13:52 +0200)]
Check rng return value when generating radius message authenticator

7 years agoCheck rng return value when generating secrets and IVs in libtls
Tobias Brunner [Mon, 25 Jun 2012 14:04:40 +0000 (16:04 +0200)]
Check rng return value when generating secrets and IVs in libtls

7 years agoCheck rng return value when generating identity in eap-simaka-reauth plugin
Tobias Brunner [Fri, 6 Jul 2012 08:18:00 +0000 (10:18 +0200)]
Check rng return value when generating identity in eap-simaka-reauth plugin

7 years agoCheck rng return value when generating pseudonym in eap-simaka-pseudonym plugin
Tobias Brunner [Fri, 6 Jul 2012 08:11:21 +0000 (10:11 +0200)]
Check rng return value when generating pseudonym in eap-simaka-pseudonym plugin

7 years agoCheck rng return value when generating nonces in eap-aka plugin
Tobias Brunner [Fri, 6 Jul 2012 08:09:25 +0000 (10:09 +0200)]
Check rng return value when generating nonces in eap-aka plugin

7 years agoCheck rng return value when generating nonces in eap-sim plugin
Tobias Brunner [Fri, 6 Jul 2012 08:02:41 +0000 (10:02 +0200)]
Check rng return value when generating nonces in eap-sim plugin

7 years agoCheck rng return value when generating nonces in libpts
Tobias Brunner [Mon, 25 Jun 2012 14:08:11 +0000 (16:08 +0200)]
Check rng return value when generating nonces in libpts

7 years agoCheck rng return value when generating RAND in eap-aka-3gpp2 plugin
Tobias Brunner [Mon, 25 Jun 2012 13:58:50 +0000 (15:58 +0200)]
Check rng return value when generating RAND in eap-aka-3gpp2 plugin

7 years agoCheck rng return value when generating challenges in eap-md5 and mschapv2 plugins
Tobias Brunner [Mon, 25 Jun 2012 13:57:13 +0000 (15:57 +0200)]
Check rng return value when generating challenges in eap-md5 and mschapv2 plugins

7 years agoCheck rng return value when generating Transaction IDs in DHCP plugin
Tobias Brunner [Mon, 25 Jun 2012 13:56:31 +0000 (15:56 +0200)]
Check rng return value when generating Transaction IDs in DHCP plugin

7 years agoCheck rng return value when generating SPIs in kernel-klips plugin
Tobias Brunner [Mon, 25 Jun 2012 14:02:13 +0000 (16:02 +0200)]
Check rng return value when generating SPIs in kernel-klips plugin

7 years agoCheck rng return value when seeding OpenSSL RNG
Tobias Brunner [Mon, 25 Jun 2012 14:07:12 +0000 (16:07 +0200)]
Check rng return value when seeding OpenSSL RNG

7 years agoCheck rng return value when generating DH secret in gcrypt plugin
Tobias Brunner [Mon, 25 Jun 2012 14:10:46 +0000 (16:10 +0200)]
Check rng return value when generating DH secret in gcrypt plugin

7 years agoCheck rng return value when generating DH secrets and primes in gmp plugin
Tobias Brunner [Mon, 25 Jun 2012 14:09:00 +0000 (16:09 +0200)]
Check rng return value when generating DH secrets and primes in gmp plugin

7 years agoCheck rng return value when generating serial numbers in pki utility
Tobias Brunner [Mon, 25 Jun 2012 14:03:53 +0000 (16:03 +0200)]
Check rng return value when generating serial numbers in pki utility

7 years agoWrapper functions added to generate non-zero random bytes
Tobias Brunner [Mon, 25 Jun 2012 12:34:14 +0000 (14:34 +0200)]
Wrapper functions added to generate non-zero random bytes

7 years agoCheck rng return value when generating SCEP sender nonce
Tobias Brunner [Fri, 6 Jul 2012 08:49:46 +0000 (10:49 +0200)]
Check rng return value when generating SCEP sender nonce

7 years agoCheck rng return value when generating OCSP nonces
Tobias Brunner [Mon, 25 Jun 2012 14:06:59 +0000 (16:06 +0200)]
Check rng return value when generating OCSP nonces

7 years agoCheck rng return value when generating key and IV in PKCS#7 wrapper
Tobias Brunner [Mon, 25 Jun 2012 14:13:49 +0000 (16:13 +0200)]
Check rng return value when generating key and IV in PKCS#7 wrapper

7 years agoCheck rng return value when generating ME CONNECT_ID and KEY
Tobias Brunner [Mon, 25 Jun 2012 14:01:51 +0000 (16:01 +0200)]
Check rng return value when generating ME CONNECT_ID and KEY

7 years agoCheck rng return value when generating IKEv1 message IDs
Tobias Brunner [Mon, 25 Jun 2012 13:59:48 +0000 (15:59 +0200)]
Check rng return value when generating IKEv1 message IDs

7 years agoCheck rng return value when generating COOKIE2 during MOBIKE
Tobias Brunner [Fri, 6 Jul 2012 08:54:06 +0000 (10:54 +0200)]
Check rng return value when generating COOKIE2 during MOBIKE

7 years agoCheck rng return value when generating COOKIE secret in receiver
Tobias Brunner [Mon, 25 Jun 2012 13:55:44 +0000 (15:55 +0200)]
Check rng return value when generating COOKIE secret in receiver

7 years agoCheck rng return value when generating fake NAT detection payloads
Tobias Brunner [Mon, 25 Jun 2012 14:00:48 +0000 (16:00 +0200)]
Check rng return value when generating fake NAT detection payloads

7 years agoCheck rng return value when encrypting encryption payload
Tobias Brunner [Mon, 25 Jun 2012 13:54:57 +0000 (15:54 +0200)]
Check rng return value when encrypting encryption payload

7 years agoCheck rng return value when generating SPIs in ike_sa_manager_t
Tobias Brunner [Fri, 6 Jul 2012 08:46:34 +0000 (10:46 +0200)]
Check rng return value when generating SPIs in ike_sa_manager_t

7 years agoCheck rng return value in crypto tester
Tobias Brunner [Mon, 25 Jun 2012 14:14:30 +0000 (16:14 +0200)]
Check rng return value in crypto tester

7 years agoRelay rng return value in nonce plugin
Tobias Brunner [Mon, 25 Jun 2012 14:07:40 +0000 (16:07 +0200)]
Relay rng return value in nonce plugin

7 years agoRNGs' get_bytes and allocate_bytes return boolean
Tobias Brunner [Mon, 25 Jun 2012 11:22:54 +0000 (13:22 +0200)]
RNGs' get_bytes and allocate_bytes return boolean

7 years agoNonce: Let get_nonce, allocate_nonce return boolean
Reto Buerki [Tue, 12 Jun 2012 08:54:02 +0000 (10:54 +0200)]
Nonce: Let get_nonce, allocate_nonce return boolean

7 years agoAdd a return value to prf_t.set_key()
Martin Willi [Fri, 6 Jul 2012 09:57:01 +0000 (11:57 +0200)]
Add a return value to prf_t.set_key()

7 years agoAdd a return value to prf_t.allocate_bytes()
Martin Willi [Fri, 6 Jul 2012 09:28:27 +0000 (11:28 +0200)]
Add a return value to prf_t.allocate_bytes()

7 years agoUse a bool return value in keymat_v1_t.get_hash_phase2()
Martin Willi [Fri, 6 Jul 2012 09:16:49 +0000 (11:16 +0200)]
Use a bool return value in keymat_v1_t.get_hash_phase2()

7 years agoAdd a return value to keymat_v1_t.get_hash()
Martin Willi [Fri, 6 Jul 2012 09:07:39 +0000 (11:07 +0200)]
Add a return value to keymat_v1_t.get_hash()

7 years agoAdd a return value to keymat_v2_t.get_auth_octets()
Martin Willi [Fri, 6 Jul 2012 08:58:19 +0000 (10:58 +0200)]
Add a return value to keymat_v2_t.get_auth_octets()

7 years agoAdd a return value to keymat_v2_t.get_psk_sig()
Martin Willi [Fri, 6 Jul 2012 08:47:20 +0000 (10:47 +0200)]
Add a return value to keymat_v2_t.get_psk_sig()

7 years agoAdd a return value to prf_t.get_bytes()
Martin Willi [Fri, 6 Jul 2012 08:14:29 +0000 (10:14 +0200)]
Add a return value to prf_t.get_bytes()

7 years agoAdd a return value to tls_prf_t.set_key()
Martin Willi [Fri, 6 Jul 2012 07:49:25 +0000 (09:49 +0200)]
Add a return value to tls_prf_t.set_key()

7 years agoAdd a return value to tls_prf_t.get_bytes()
Martin Willi [Fri, 6 Jul 2012 07:49:16 +0000 (09:49 +0200)]
Add a return value to tls_prf_t.get_bytes()

7 years agoprf_plus_create() can return NULL on failure
Martin Willi [Fri, 6 Jul 2012 06:43:58 +0000 (08:43 +0200)]
prf_plus_create() can return NULL on failure

7 years agoAdd a return value to prf_plus_t.get_bytes()
Martin Willi [Fri, 6 Jul 2012 06:39:15 +0000 (08:39 +0200)]
Add a return value to prf_plus_t.get_bytes()

7 years agoAdd a return value to prf_plus_t.allocate_bytes()
Martin Willi [Fri, 6 Jul 2012 06:24:24 +0000 (08:24 +0200)]
Add a return value to prf_plus_t.allocate_bytes()

7 years agoAdd a return value to signer_t.set_key()
Martin Willi [Fri, 6 Jul 2012 07:33:10 +0000 (09:33 +0200)]
Add a return value to signer_t.set_key()

7 years agoAdd a return value to tls_crypto_t.derive_secrets()
Martin Willi [Fri, 6 Jul 2012 07:28:25 +0000 (09:28 +0200)]
Add a return value to tls_crypto_t.derive_secrets()

7 years agoAdd a return value to simaka_crypto_t.derive_keys_*()
Martin Willi [Fri, 6 Jul 2012 06:57:18 +0000 (08:57 +0200)]
Add a return value to simaka_crypto_t.derive_keys_*()

7 years agoAdd a return value to signer_t.get_signature()
Martin Willi [Thu, 5 Jul 2012 16:21:58 +0000 (18:21 +0200)]
Add a return value to signer_t.get_signature()

7 years agoAdd a return value to radius_message_t.sign()
Martin Willi [Thu, 5 Jul 2012 16:11:26 +0000 (18:11 +0200)]
Add a return value to radius_message_t.sign()

7 years agoAdd a return value to simaka_message_t.generate()
Martin Willi [Thu, 5 Jul 2012 16:04:41 +0000 (18:04 +0200)]
Add a return value to simaka_message_t.generate()

7 years agoAdd a return value to signer_t.allocate_signature()
Martin Willi [Thu, 5 Jul 2012 15:26:12 +0000 (17:26 +0200)]
Add a return value to signer_t.allocate_signature()

7 years agoAdd a return value to aead_t.set_key()
Martin Willi [Thu, 5 Jul 2012 15:19:23 +0000 (17:19 +0200)]
Add a return value to aead_t.set_key()

7 years agoAdd a return value to aead_t.encrypt()
Martin Willi [Thu, 5 Jul 2012 15:10:17 +0000 (17:10 +0200)]
Add a return value to aead_t.encrypt()

7 years agoipsec attest now can measure all files in a directory
Andreas Steffen [Mon, 16 Jul 2012 07:53:32 +0000 (09:53 +0200)]
ipsec attest now can measure all files in a directory

7 years agomoved listing of file measurements to pts_file_meas
Andreas Steffen [Fri, 13 Jul 2012 20:15:13 +0000 (22:15 +0200)]
moved listing of file measurements to pts_file_meas

7 years agomoved to debug level 3
Andreas Steffen [Fri, 13 Jul 2012 19:25:43 +0000 (21:25 +0200)]
moved to  debug level 3

7 years agoCompilation error fixed if dladdr is not available
Tobias Brunner [Sat, 14 Jul 2012 09:43:40 +0000 (11:43 +0200)]
Compilation error fixed if dladdr is not available