strongswan.org
Wiki/Project Management
Downloads
Gitweb
projects
/
strongswan.git
/ search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
first ⋅ prev ⋅
next
cirrus: Use FreeBSD 12.2
2021-02-16
Fedor Korotkov
cirrus: Use FreeBSD 12.2
commit
|
commitdiff
|
tree
2021-02-15
Tobias Brunner
github: Fix emojis in templates
commit
|
commitdiff
|
tree
2021-02-15
Tobias Brunner
github: Add security policy
commit
|
commitdiff
|
tree
2021-02-15
Tobias Brunner
github: Add issue templates
commit
|
commitdiff
|
tree
2021-02-15
René Fischer
botan: Use strongSwan's RNG interface in Botan plugin
commit
|
commitdiff
|
tree
2021-02-15
Tobias Brunner
botan: Extract helper function to map RNG quality to...
commit
|
commitdiff
|
tree
2021-02-15
Tobias Brunner
botan: Look for Botan 3 in configure script
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
ike-sa: Avoid possible integer underflow when scheduling...
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
ha: Register new IKE_SAs before calling inherit_post()
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
ike-rekey: Register new IKE_SA before calling inherit_post()
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
ike-sa-manager: Add a method to register/check out...
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
ike-sa-manager: Rename checkout_new() to create_new()
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
Remove redundant calls to set peer config after checking...
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
ike-sa-manager: Make checkout_by_config() atomic
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
Merge branch 'tls13'
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-crypto: Simplify and extend cipher config filter
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
proposal: Add aliases for AES-GCM/CCM without explicit...
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-server: Support x25519/448 for TLS 1.2
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-crypto: Fallback to any supported ECDH group
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-crypto: Don't filter suites with specific ECDH...
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
diffie-hellman: Classify x25519 and x448 as ECDH methods
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-crypto: Add signature scheme config file filter
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-crypto: Rename DH group/key exchange method config...
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
libtls: Increase default min version to 1.2
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-peer: Verify server selects the same cipher suite...
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-server: Select cipher suite also when handling...
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-server: Remove unused variable
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
libtls: Add downgrade protection for TLS 1.3 and TLS 1.2
commit
|
commitdiff
|
tree
2021-02-12
Shmulik Ladkani
tls-server: Optionally omit CAs in CertificateRequest...
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-eap: Conclude EAP method also after processing...
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
libtls: Only run socket tests with EdDSA keys if they...
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-peer: Don't log anything if we are not sending...
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-crypto: Only log modified TLS versions if successfully set
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
libtls: Reduce default max version to 1.2
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
libtls: Make min/max TLS version configurable
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
test-hkdf: Add two test cases and restructure all tests
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-hkdf: Implement binder PSK generation
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-hkdf: Implement resumption key generation
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-peer: Mutual authentication support for TLS 1.3
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-peer: Derive application traffic keys after server...
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-peer: Use private key enumeration also in TLS versions...
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-crypto: Share private key search between client...
Co-authored-by:
Tobias Brunner
<tobias@strongswan.org>
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-test: Add support to require/verify client certificates
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-server: Mutual authentication support for TLS 1.3
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-server: Terminate connection if peer certificate...
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-server: Make CertificateRequest conditional in...
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-server: Share trusted public key search between...
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-crypto: Move AEAD ownership to the protection layer
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-hkdf: Always use correct base key to derive finished...
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
libtls: Add unit tests for Ed25519 and Ed448 keys
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-test: Load keys of any type
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-crypto: Support EdDSA keys with ECDSA cipher suites
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-server: Consider supported signature algorithms...
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-crypto: Distinguish between signing and verifying...
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-server: Check if peer sent hash and signature algorithms
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-crypto: Add missing signature scheme constants
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-server: Fix invalid signature algorithm and supported...
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-server: Support multiple client key shares
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
libtls: Add TLS version negotiation test cases
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-server: Support HelloRetryRequest (HRR)
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-crypto: Add support to configure DH groups to use
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
diffie-hellman: Add enum names that match proposal...
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-crypto: Generalizing DH group to TLS group mapping
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-server: Support KeyUpdate requests and answers
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-server: Refactor writing of key share extensions
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-server: TLS 1.3 support for TLS server implementation
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-crypto: Rename parameter to be more consistent
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-crypto: Fix invalid signature algorithm list building
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
libtls: Add missing cipher suite and TLS extension...
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-crypto: Rework cipher suite preference order
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-server: Determine supported/configured suites and...
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-crypto: Check if TLS versions and cipher suites...
commit
|
commitdiff
|
tree
2021-02-12
Pascal Knecht
tls-peer: Don't initiate TLS connection if no cipher...
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-test: Make plugin list configurable via environment...
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-peer: Return INVALID_STATE after changing TLS 1...
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-crypto: Generate MSK for TLS 1.3
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-hkdf: Add method that allows exporting key material
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-hkdf: Handle label expansion inside expand_label()
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-hkdf: Pass secret to derive_secret() explicitly
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-hkdf: Store OKM in local variables
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-crypto: Add support for RSA-PSS signatures
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-peer: Support answering KeyUpdate requests
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-socket: Change how EOF of the underlying socket...
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-peer: Add support to handle KeyUpdate message
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-crypto: Add method to update application traffic...
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-hkdf: Support updating client/server traffic secrets
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-socket: Don't fail reading if sending data failed
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-peer: Correctly handle classic ECDH key-share format
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-test: Add options to configure TLS versions
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-socket: Allow configuring both minimum and maximum...
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls: Allow setting both minimum and maximum TLS versions
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-peer: Handle HelloRetryRequest
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-crypto: Add method to hash handshake data and use...
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-crypto: Destroy HKDF instance if keys are derived...
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-peer: Refactor writing of extensions and use less...
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-peer: Refactor sending/processing finished message
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-peer: Simply ignore certificate request context
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-peer: Use existing code to verify certificate and...
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-peer: Refactor parsing of TLS extensions
commit
|
commitdiff
|
tree
2021-02-12
Tobias Brunner
tls-peer: Fix parsing of encrypted extensions
commit
|
commitdiff
|
tree
next
projects / strongswan.git / search