2013-03-19 Tobias BrunnerMerge branch 'tkm'
2013-03-19 Adrian-Ken... Various stylistic fixes
2013-03-19 Reto Buerki Add NEWS about TKM separation
2013-03-19 Adrian-Ken... Use network byte order for ESA SPIs
2013-03-19 Adrian-Ken... Provide MODP-2048 through TKM DH plugin
2013-03-19 Adrian-Ken... Add charon-tkm API documentation
2013-03-19 Reto BuerkiDo not hardwire keys to KEY_RSA
2013-03-19 Reto BuerkiProvide TKM credential encoder
2013-03-19 Reto BuerkiSwitch to openssl plugin
2013-03-19 Reto BuerkiImplement multiple-clients integration test
2013-03-19 Reto BuerkiImplement net2net-xfrmproxy integration test
2013-03-19 Reto BuerkiImplement net2net-initiator integration test
2013-03-19 Reto BuerkiAdd xfrm_proxy integration test
2013-03-19 Reto BuerkiProvide script to build Ada XFRM proxy
2013-03-19 Reto BuerkiAdd TKM responder integration test
2013-03-19 Reto BuerkiAdd initial TKM integration test
2013-03-19 Reto BuerkiAdd expect-file guest image script
2013-03-19 Reto BuerkiAdd /usr/local/lib/ipsec to linker cache
2013-03-19 Reto BuerkiProvide recipes to build tkm and required libraries
2013-03-19 Reto BuerkiAdd GNAT compiler and Ada libs to base image
2013-03-19 Reto BuerkiDon't manually register kernel_netlink_net
2013-03-19 Reto BuerkiMove stroke plugin to the end of PLUGINS list
2013-03-19 Reto BuerkiMake sure IP_XFRM_POLICY is defined
2013-03-19 Adrian-Ken... Call isa_skip_create_first when keeping IKE SA
2013-03-19 Adrian-Ken... Make IKE and EES sockets configurable
2013-03-19 Reto BuerkiImplement TKM-specific credential set
2013-03-19 Reto BuerkiInitialize libstrongswan in test_runner main()
2013-03-19 Adrian-Ken... Set ri_id to reqid when setting user certificate
2013-03-19 Adrian-Ken... Set sp_id to reqid when creating ESA
2013-03-19 Adrian-Ken... Call Esa_Select after creation of child SA
2013-03-19 Adrian-Ken... Check that chunk fits into sequence when converting
2013-03-19 Reto BuerkiRemove result out parameter from EES Init
2013-03-19 Adrian-Ken... Drop support for pre-shared key authentication
2013-03-19 Reto Buerkicharon-tkm: Register TKM private key on startup
2013-03-19 Reto BuerkiAdd TKM private key implementation
2013-03-19 Reto Buerkikeymat: Store signature info in auth octets
2013-03-19 Reto BuerkiAdd AUTH signature info data structure
2013-03-19 Adrian-Ken... charon-tkm: Register TKM public key on startup
2013-03-19 Adrian-Ken... Add TKM public key implementation
2013-03-19 Adrian-Ken... Authenticate ISA using certificates
2013-03-19 Adrian-Ken... Store peer IKE init message
2013-03-19 Adrian-Ken... Build cc context in tkm listener authorize hook
2013-03-19 Adrian-Ken... Add TKM_CTX_CC (Certificate chain context id)
2013-03-19 Adrian-Ken... Add typelen parameter to chunk_to_sequence function
2013-03-19 Reto BuerkiImplement Ada exception processing
2013-03-19 Reto BuerkiImplement Esa Event Service (EES)
2013-03-19 Adrian-Ken... Conditionally reset AE context in keymat destroy
2013-03-19 Adrian-Ken... Let tkm_keymat_t extend keymat_v2_t
2013-03-19 Adrian-Ken... Implement IKE SA rekeying
2013-03-19 Adrian-Ken... Add test for keymat derive_child_keys operation
2013-03-19 Adrian-Ken... Implement ESA rekeying with and without PFS
2013-03-19 Adrian-Ken... Extend esa_info_t struct
2013-03-19 Adrian-Ken... Use SAD to manage TKM ESA context information
2013-03-19 Adrian-Ken... Implement TKM kernel SA database (SAD)
2013-03-19 Adrian-Ken... Add TKM_CTX_ESA (ESP SA context id)
2013-03-19 Adrian-Ken... Use rng to generate local ESP SPIs
2013-03-19 Adrian-Ken... charon-tkm: Register kernel_netlink_net
2013-03-19 Adrian-Ken... Do not return shared secret in TKM Diffie-Hellman
2013-03-19 Adrian-Ken... Remove keymat proxy from TKM keymat
2013-03-19 Reto BuerkiRemove netlink proxy from TKM kernel interface
2013-03-19 Reto BuerkiAvoid proxy for bypass_socket, enable_udp_decap
2013-03-19 Adrian-Ken... Implement CHILD SA key derivation using TKM
2013-03-19 Adrian-Ken... Register TKM kernel ipsec interface in charon-tkm
2013-03-19 Adrian-Ken... Add TKM kernel ipsec skeleton
2013-03-19 Reto Buerkichunk_map: Store key, value pair in entry_t struct
2013-03-19 Reto BuerkiCall ike_isa_auth_psk in listener authorize hook
2013-03-19 Reto Buerkilistener: Register message hook
2013-03-19 Reto Buerkikeymat: Add AUTH payload setter/getter functions
2013-03-19 Reto BuerkiRegister TKM bus listener in charon-tkm
2013-03-19 Reto BuerkiAdd TKM specific bus listener skeleton
2013-03-19 Reto BuerkiAdd ISA context id getter to TKM keymat
2013-03-19 Reto Buerkikeymat: Acquire AE context ID on initialization
2013-03-19 Reto BuerkiAdd TKM_CTX_AE (Authenticated Endpoint context)
2013-03-19 Reto Buerkikeymat: Acquire ISA context ID on initialization
2013-03-19 Reto BuerkiAdd TKM_CTX_ISA (IKE SA context)
2013-03-19 Reto BuerkiUse remote PSK signature computed by TKM
2013-03-19 Reto Buerkikeymat: Check for aes256-sha512 in derive_ike_keys
2013-03-19 Adrian-Ken... keymat: Call ike_isa_sign_psk in get_psk_sig
2013-03-19 Reto BuerkiFactor out AEAD transform creation
2013-03-19 Reto BuerkiAdd keymat IKE key derivation test case
2013-03-19 Reto Buerkikeymat: Create inbound and outbound AEAD transforms
2013-03-19 Reto Buerkikeymat: Extract enc,inc algorithms from proposal
2013-03-19 Reto Buerkikeymat: Call TKM Isa_Create procedure
2013-03-19 Reto BuerkiImplement chunk_to_sequence function
2013-03-19 Reto BuerkiImplement sequence_to_chunk function
2013-03-19 Adrian-Ken... keymat: Log nonce and DH context ids
2013-03-19 Adrian-Ken... Add context id getter to TKM DH implementation
2013-03-19 Adrian-Ken... keymat: Get context id of local nonce
2013-03-19 Adrian-Ken... nonceg: Insert id mapping when allocating nonce
2013-03-19 Adrian-Ken... Add chunk map
2013-03-19 Adrian-Ken... Add context id getter to TKM nonce generator
2013-03-19 Reto Buerkiid_manager: Use calloc instead of malloc
2013-03-19 Reto BuerkiUse ikev2 keymat proxy
2013-03-19 Reto BuerkiAdd skeleton for TKM keymat variant
2013-03-19 Reto Buerkiid_manager: Use limits given by TKM
2013-03-19 Reto BuerkiPass context limits on to id manager
2013-03-19 Reto BuerkiRequest limits from TKM on init
2013-03-19 Reto Buerkiid_manager: Use array of bool instead of list
2013-03-19 Reto BuerkiUse id manager to acquire DH context id
2013-03-19 Reto BuerkiAdd TKM_CTX_DH (Diffie-Hellman context) to id manager