strongswan.git
10 years agoremoved obsolete INTEGRITY_TEST and fips signer code
Martin Willi [Fri, 19 Jun 2009 14:39:44 +0000 (16:39 +0200)]
removed obsolete INTEGRITY_TEST and fips signer code
--enable-integrity-test now conditionally builds libchecksum

10 years agobuild checksums for charon plugins
Martin Willi [Fri, 19 Jun 2009 14:21:09 +0000 (16:21 +0200)]
build checksums for charon plugins

10 years agolibrary initialization fails if libstrongswan checksum is invalid
Martin Willi [Fri, 19 Jun 2009 10:01:52 +0000 (12:01 +0200)]
library initialization fails if libstrongswan checksum is invalid

10 years agochecksum.c depends on all libraries
Martin Willi [Fri, 19 Jun 2009 09:52:51 +0000 (11:52 +0200)]
checksum.c depends on all libraries

10 years agoimplemented a checksum_builder tool to build the checksum library
Martin Willi [Fri, 19 Jun 2009 09:42:54 +0000 (11:42 +0200)]
implemented a checksum_builder tool to build the checksum library

10 years agointegrity checker accepts an option checksum library on construction
Martin Willi [Fri, 19 Jun 2009 09:40:41 +0000 (11:40 +0200)]
integrity checker accepts an option checksum library on construction

10 years agocheck integrity of libstrongswan
Martin Willi [Thu, 18 Jun 2009 15:51:22 +0000 (17:51 +0200)]
check integrity of libstrongswan

10 years agocheck integrity of plugins before loading
Martin Willi [Thu, 18 Jun 2009 15:50:28 +0000 (17:50 +0200)]
check integrity of plugins before loading

10 years agoimplemented an integrity checker class to build and check code integrity
Martin Willi [Thu, 18 Jun 2009 15:48:15 +0000 (17:48 +0200)]
implemented an integrity checker class to build and check code integrity

10 years agodist-hook to remove .svn folder not needed anymore
Martin Willi [Mon, 22 Jun 2009 13:45:24 +0000 (15:45 +0200)]
dist-hook to remove .svn folder not needed anymore

10 years agoremoved unneeded newline
Martin Willi [Mon, 22 Jun 2009 13:35:18 +0000 (15:35 +0200)]
removed unneeded newline

10 years agouse get_proposal_token() for algorithm selection
Andreas Steffen [Sat, 20 Jun 2009 10:09:36 +0000 (12:09 +0200)]
use get_proposal_token() for algorithm selection

10 years agoversion bump to 4.3.3
Andreas Steffen [Fri, 19 Jun 2009 15:00:34 +0000 (17:00 +0200)]
version bump to 4.3.3

10 years agoauthby=pubkey is now the default authentication 4.3.2
Andreas Steffen [Fri, 19 Jun 2009 08:41:38 +0000 (10:41 +0200)]
authby=pubkey is now the default authentication

10 years agofixed another 64bit compiler warning
Martin Willi [Fri, 19 Jun 2009 08:19:55 +0000 (10:19 +0200)]
fixed another 64bit compiler warning

10 years agofixed compiler warning
Martin Willi [Fri, 19 Jun 2009 08:05:27 +0000 (10:05 +0200)]
fixed compiler warning

10 years agoreverted rule_count back to size_t, as it is passed as pointer (fixes 64bit issues)
Martin Willi [Fri, 19 Jun 2009 08:01:04 +0000 (10:01 +0200)]
reverted rule_count back to size_t, as it is passed as pointer (fixes 64bit issues)

10 years agoadded info about two DoS fixes
Andreas Steffen [Thu, 18 Jun 2009 17:29:16 +0000 (19:29 +0200)]
added info about two DoS fixes

10 years agoHASH_MD2 is not implemented yet in gcrypt
Andreas Steffen [Thu, 18 Jun 2009 08:03:05 +0000 (10:03 +0200)]
HASH_MD2 is not implemented yet in gcrypt

10 years agoadded test vector for NULL encryption
Andreas Steffen [Thu, 18 Jun 2009 07:59:24 +0000 (09:59 +0200)]
added test vector for NULL encryption

10 years agoadded test vector for NULL encryption
Andreas Steffen [Thu, 18 Jun 2009 07:42:05 +0000 (09:42 +0200)]
added test vector for NULL encryption

10 years agoadded md2 and md4 test vectors
Andreas Steffen [Thu, 18 Jun 2009 07:32:57 +0000 (09:32 +0200)]
added md2 and md4 test vectors

10 years agoadded 2 des test vectors
Andreas Steffen [Thu, 18 Jun 2009 06:23:51 +0000 (08:23 +0200)]
added 2 des test vectors

10 years agoadded gcrypt-ikev2/alg-camellia scenario
Andreas Steffen [Thu, 18 Jun 2009 05:48:38 +0000 (07:48 +0200)]
added gcrypt-ikev2/alg-camellia scenario

10 years agoremoved serpent and twofish plugins - use gcrypt instead
Andreas Steffen [Thu, 18 Jun 2009 05:27:40 +0000 (07:27 +0200)]
removed serpent and twofish plugins - use gcrypt instead

10 years agomoved alg-serpent and alg-twofish scenarios to gcrypt-ikev1
Andreas Steffen [Thu, 18 Jun 2009 05:15:51 +0000 (07:15 +0200)]
moved alg-serpent and alg-twofish scenarios to gcrypt-ikev1

10 years agofixed typo
Andreas Steffen [Thu, 18 Jun 2009 03:56:02 +0000 (05:56 +0200)]
fixed typo

10 years agoremoved superfluous print argument
Andreas Steffen [Wed, 17 Jun 2009 20:54:57 +0000 (22:54 +0200)]
removed superfluous print argument

10 years agoadded 2 RC5 test vectors
Andreas Steffen [Wed, 17 Jun 2009 20:34:03 +0000 (22:34 +0200)]
added 2 RC5 test vectors

10 years agoadded 2 IDEA test vectors
Andreas Steffen [Wed, 17 Jun 2009 19:53:30 +0000 (21:53 +0200)]
added 2 IDEA test vectors

10 years agoadded 6 serpent test vectors
Andreas Steffen [Wed, 17 Jun 2009 19:37:26 +0000 (21:37 +0200)]
added 6 serpent test vectors

10 years agoadded 3 Twofish test vectors
Andreas Steffen [Wed, 17 Jun 2009 13:50:27 +0000 (15:50 +0200)]
added 3 Twofish test vectors

10 years agoadded one CAST-128 test vector
Andreas Steffen [Wed, 17 Jun 2009 13:24:20 +0000 (15:24 +0200)]
added one CAST-128 test vector

10 years agocorrected ASN.1 encoding of OID node
Andreas Steffen [Wed, 17 Jun 2009 13:08:03 +0000 (15:08 +0200)]
corrected ASN.1 encoding of OID node

10 years agoadded Camellia encryption support to scepclient
Andreas Steffen [Wed, 17 Jun 2009 12:42:57 +0000 (14:42 +0200)]
added Camellia encryption support to scepclient

10 years agoadded 6 Camellia test vectors
Andreas Steffen [Wed, 17 Jun 2009 12:22:00 +0000 (14:22 +0200)]
added 6 Camellia test vectors

10 years agoadded 6 Camellia test vectors
Andreas Steffen [Wed, 17 Jun 2009 12:21:34 +0000 (14:21 +0200)]
added 6 Camellia test vectors

10 years agodouble check that parsing a list consumes all bytes
Martin Willi [Wed, 17 Jun 2009 11:38:05 +0000 (13:38 +0200)]
double check that parsing a list consumes all bytes

10 years agouse signed lengths in parser and generator
Martin Willi [Wed, 17 Jun 2009 11:21:52 +0000 (13:21 +0200)]
use signed lengths in parser and generator

10 years agoconversion from CAMELLIA OIDs to encryption_algorithm
Andreas Steffen [Wed, 17 Jun 2009 11:12:48 +0000 (13:12 +0200)]
conversion from CAMELLIA OIDs to encryption_algorithm

10 years agofixed tabs
Andreas Steffen [Wed, 17 Jun 2009 11:08:19 +0000 (13:08 +0200)]
fixed tabs

10 years agoadded camellia-cbc OIDs
Andreas Steffen [Wed, 17 Jun 2009 11:07:07 +0000 (13:07 +0200)]
added camellia-cbc OIDs

10 years agofixed 64 bit warning
Andreas Steffen [Wed, 17 Jun 2009 10:32:16 +0000 (12:32 +0200)]
fixed 64 bit warning

10 years agofixed copy/paste error in attribute type parsing
Martin Willi [Wed, 17 Jun 2009 09:41:40 +0000 (11:41 +0200)]
fixed copy/paste error in attribute type parsing

10 years agoadded 2 3DES-CBC and 3 AES-CBC test vectors
Andreas Steffen [Tue, 16 Jun 2009 22:08:44 +0000 (00:08 +0200)]
added 2 3DES-CBC and 3 AES-CBC test vectors

10 years agosome more scenario adaptations
Andreas Steffen [Tue, 16 Jun 2009 19:03:13 +0000 (21:03 +0200)]
some more scenario adaptations

10 years agotest-vector support in rw-cert scenarios
Andreas Steffen [Tue, 16 Jun 2009 18:53:41 +0000 (20:53 +0200)]
test-vector support in rw-cert scenarios

10 years agoadded two gcrypt scenarios
Andreas Steffen [Tue, 16 Jun 2009 16:47:28 +0000 (18:47 +0200)]
added two gcrypt scenarios

10 years ago--enable-test-vectors and --enable-gcrypt in UML scenarios
Andreas Steffen [Tue, 16 Jun 2009 16:05:59 +0000 (18:05 +0200)]
--enable-test-vectors and --enable-gcrypt in UML scenarios

10 years agomoved ike_alg descriptions to crypto.c
Andreas Steffen [Tue, 16 Jun 2009 14:08:40 +0000 (16:08 +0200)]
moved ike_alg descriptions to crypto.c

10 years agouse rwlock instead of a mutex in trap_manager, avoids possible deadlock
Martin Willi [Wed, 3 Jun 2009 12:22:25 +0000 (14:22 +0200)]
use rwlock instead of a mutex in trap_manager, avoids possible deadlock

10 years agoload trap_manager before plugins, allowing them to install traps
Martin Willi [Tue, 2 Jun 2009 13:27:40 +0000 (15:27 +0200)]
load trap_manager before plugins, allowing them to install traps

10 years agoreset IKE_SA on bus after checkout/checkin of replacement SA
Martin Willi [Tue, 2 Jun 2009 13:26:29 +0000 (15:26 +0200)]
reset IKE_SA on bus after checkout/checkin of replacement SA

10 years agoinstanciate first registered kernel interface immediately
Martin Willi [Tue, 2 Jun 2009 07:59:40 +0000 (09:59 +0200)]
instanciate first registered kernel interface immediately

10 years agoreformatted crypto_test output
Andreas Steffen [Tue, 16 Jun 2009 12:58:44 +0000 (14:58 +0200)]
reformatted crypto_test output

10 years agocalculating plugin dependencies for eap-sim/aka
Martin Willi [Tue, 16 Jun 2009 12:53:16 +0000 (14:53 +0200)]
calculating plugin dependencies for eap-sim/aka

10 years agopluto does not depend on gmp anymore
Martin Willi [Tue, 16 Jun 2009 12:47:07 +0000 (14:47 +0200)]
pluto does not depend on gmp anymore

10 years agosupport older gcrypt libraries not defining the CAMELLIA cipher
Martin Willi [Tue, 16 Jun 2009 12:23:32 +0000 (14:23 +0200)]
support older gcrypt libraries not defining the CAMELLIA cipher

10 years agofixed compiler warning
Martin Willi [Tue, 16 Jun 2009 12:21:55 +0000 (14:21 +0200)]
fixed compiler warning

10 years agoload hmac/xcbc plugins after hash/crypter plugins to pass crypto tests
Martin Willi [Tue, 16 Jun 2009 11:04:50 +0000 (13:04 +0200)]
load hmac/xcbc plugins after hash/crypter plugins to pass crypto tests

10 years agopluto supports ECP DH groups and ECDSA authentication
Andreas Steffen [Tue, 16 Jun 2009 09:23:40 +0000 (11:23 +0200)]
pluto supports ECP DH groups and ECDSA authentication

10 years agoincreased verbosity of successful crypto tests
Martin Willi [Tue, 16 Jun 2009 07:54:28 +0000 (09:54 +0200)]
increased verbosity of successful crypto tests

10 years agoremoved one hierarchy level for crypto test options
Martin Willi [Tue, 16 Jun 2009 07:48:45 +0000 (09:48 +0200)]
removed one hierarchy level for crypto test options

10 years agoadded NEWS for 4.3.2
Martin Willi [Tue, 16 Jun 2009 07:39:56 +0000 (09:39 +0200)]
added NEWS for 4.3.2

10 years agoinitiator now checks for private key much earlier
Andreas Steffen [Tue, 16 Jun 2009 05:59:31 +0000 (07:59 +0200)]
initiator now checks for private key much earlier

10 years agoadaptations of UML scenarios to 4.3.2
Andreas Steffen [Tue, 16 Jun 2009 05:33:22 +0000 (07:33 +0200)]
adaptations of UML scenarios to 4.3.2

10 years agoremove whitespace
Andreas Steffen [Mon, 15 Jun 2009 17:30:44 +0000 (19:30 +0200)]
remove whitespace

10 years agogcrypt actually does not implement IDEA
Martin Willi [Mon, 15 Jun 2009 16:18:04 +0000 (18:18 +0200)]
gcrypt actually does not implement IDEA

10 years agoimplemented gcrypt RSA encrypt/decrypt operations
Martin Willi [Mon, 15 Jun 2009 16:07:57 +0000 (18:07 +0200)]
implemented gcrypt RSA encrypt/decrypt operations

10 years agoadded a gcrypt.quick_random option to generate weak testing keys faster
Martin Willi [Mon, 15 Jun 2009 16:06:16 +0000 (18:06 +0200)]
added a gcrypt.quick_random option to generate weak testing keys faster

10 years agoextended RSA tests by encrypt/decrypt operations
Martin Willi [Mon, 15 Jun 2009 16:05:34 +0000 (18:05 +0200)]
extended RSA tests by encrypt/decrypt operations

10 years agoimplemented IKEv1 specific SIGN_RSA_EMSA_PKCS1_NULL scheme in gcrypt
Martin Willi [Mon, 15 Jun 2009 12:47:39 +0000 (14:47 +0200)]
implemented IKEv1 specific SIGN_RSA_EMSA_PKCS1_NULL scheme in gcrypt

10 years agocheck if RSA key is large enough to sign a chunk of data
Martin Willi [Mon, 15 Jun 2009 11:49:30 +0000 (13:49 +0200)]
check if RSA key is large enough to sign a chunk of data

10 years agouse save chunk advancing, check signature length
Martin Willi [Mon, 15 Jun 2009 11:37:52 +0000 (13:37 +0200)]
use save chunk advancing, check signature length

10 years agoconsistent display of strongSwan version
Andreas Steffen [Sat, 13 Jun 2009 14:03:08 +0000 (16:03 +0200)]
consistent display of strongSwan version

10 years agotest_vectors.h is part of the distribution
Andreas Steffen [Sat, 13 Jun 2009 13:17:24 +0000 (15:17 +0200)]
test_vectors.h is part of the distribution

10 years agorenamed OAKLEY_ECDSA_512 to OAKLEY_ECDSA_512
Andreas Steffen [Sat, 13 Jun 2009 13:16:49 +0000 (15:16 +0200)]
renamed OAKLEY_ECDSA_512 to OAKLEY_ECDSA_512

10 years agoupdated pluto.load configuration in ikev1 scenarios
Andreas Steffen [Sat, 13 Jun 2009 06:56:05 +0000 (08:56 +0200)]
updated pluto.load configuration in ikev1 scenarios

10 years agofixed evaltest.dat
Andreas Steffen [Sat, 13 Jun 2009 06:49:03 +0000 (08:49 +0200)]
fixed evaltest.dat

10 years agoreduced debug level in ikev2/alg-blowfish scenario
Andreas Steffen [Sat, 13 Jun 2009 06:44:50 +0000 (08:44 +0200)]
reduced debug level in ikev2/alg-blowfish scenario

10 years agoadded openssl-ikev1/ecdsa-certs scenario
Andreas Steffen [Sat, 13 Jun 2009 06:43:34 +0000 (08:43 +0200)]
added openssl-ikev1/ecdsa-certs scenario

10 years agoECDSA 256 and 384 certificates for moon
Andreas Steffen [Sat, 13 Jun 2009 05:28:47 +0000 (07:28 +0200)]
ECDSA 256 and 384 certificates for moon

10 years agofixed broken XAUTH authentication
Andreas Steffen [Fri, 12 Jun 2009 19:04:48 +0000 (21:04 +0200)]
fixed broken XAUTH authentication

10 years agonot restricted to RSA public keys
Andreas Steffen [Fri, 12 Jun 2009 18:17:02 +0000 (20:17 +0200)]
not restricted to RSA public keys

10 years agoload_private_key() loads all kinds of keys
Andreas Steffen [Fri, 12 Jun 2009 18:09:00 +0000 (20:09 +0200)]
load_private_key() loads all kinds of keys

10 years agoASN.1 parsing of RSA public key not needed anymore
Andreas Steffen [Fri, 12 Jun 2009 18:06:39 +0000 (20:06 +0200)]
ASN.1 parsing of RSA public key not needed anymore

10 years agopluto supports ECDSA authentication
Andreas Steffen [Fri, 12 Jun 2009 17:59:35 +0000 (19:59 +0200)]
pluto supports ECDSA authentication

10 years agosplit openssl scenarios into openssl-ikev1 and openssl-ikev2
Andreas Steffen [Thu, 11 Jun 2009 09:37:21 +0000 (11:37 +0200)]
split openssl scenarios into openssl-ikev1 and openssl-ikev2

10 years agoadded SHA2 HMAC signer test vectors
Martin Willi [Fri, 12 Jun 2009 09:09:09 +0000 (11:09 +0200)]
added SHA2 HMAC signer test vectors

10 years agoremoved crypto tests form unit tester, all gone to test-vector plugin
Martin Willi [Fri, 12 Jun 2009 08:43:25 +0000 (10:43 +0200)]
removed crypto tests form unit tester, all gone to test-vector plugin

10 years agoTypo in configure script fixed.
Tobias Brunner [Fri, 12 Jun 2009 08:42:07 +0000 (10:42 +0200)]
Typo in configure script fixed.

10 years agoadded a FIPS_PRF test vector
Martin Willi [Fri, 12 Jun 2009 08:40:38 +0000 (10:40 +0200)]
added a FIPS_PRF test vector

10 years agoadded support for stateful PRFs (such as the FIPS_PRF)
Martin Willi [Fri, 12 Jun 2009 08:39:47 +0000 (10:39 +0200)]
added support for stateful PRFs (such as the FIPS_PRF)

10 years agoremoved pluto test vectors, --disable-self-test option
Martin Willi [Thu, 11 Jun 2009 18:27:32 +0000 (20:27 +0200)]
removed pluto test vectors, --disable-self-test option

10 years agoadded SHA2 HMAC PRF test vectors
Martin Willi [Thu, 11 Jun 2009 18:25:32 +0000 (20:25 +0200)]
added SHA2 HMAC PRF test vectors

10 years agoadded SHA2 test vectors
Martin Willi [Thu, 11 Jun 2009 16:14:30 +0000 (18:14 +0200)]
added SHA2 test vectors

10 years agoadded SHA1 test vectors
Martin Willi [Thu, 11 Jun 2009 15:17:33 +0000 (17:17 +0200)]
added SHA1 test vectors

10 years agoadded HMAC SHA1 test vectors
Martin Willi [Thu, 11 Jun 2009 15:05:56 +0000 (17:05 +0200)]
added HMAC SHA1 test vectors

10 years agoadded HMAC MD5 test vectors
Martin Willi [Thu, 11 Jun 2009 14:44:20 +0000 (16:44 +0200)]
added HMAC MD5 test vectors

10 years agoadded RNG test vectors
Martin Willi [Thu, 11 Jun 2009 13:49:05 +0000 (15:49 +0200)]
added RNG test vectors