| 2010-08-04 |
Martin Willi | Register hmac/xcbc algorithms after potentially underly... |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Do initial slot enumeration manually |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Implemented hasher_t using PKCS#11 |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Defer certificate loading until all PKCS#11 modules... |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Destroy IKE_SA Managers crypto primitives during flush... |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Provide a public PKCS#11 mechanism enumerator |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Added PKCS#11 private key support to the pki tool |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | The pki tool uses a callback credential set to read... |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Pass type of requested key in the callback credential set |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Support PKCS#11 keys requiring reauthentication for... |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Do not try to log in if we already have a user session |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Obseleted BUILD_PASSPHRASE(_CALLBACK) for private key... |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Use a dedicated build part for challenge passwords... |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Use credential sets to load smartcard keys |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Handle PIN: as a magic keyword for prompt, use getpass... |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Implemented a callback based credential set, currently... |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Implemented a generic in-memory credential set, current... |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | mmap() ipsec.secrets instead malloc(), proper error... |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Splitted up the load_secrets() function |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Updated ipsec.secrets.5 regarding IKEv2 smartcard support |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | %prompt support for smartcard PIN via "ipsec secrets" |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Implemented callback PIN invocation for PKCS#11 login |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Implemented keyid discovery on all modules/slots |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Pass the PKCS11 keyid as chunk, not as string |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Reuse generic passphrase build part, not a dedicated... |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Implemented private key on top of a PKCS#11 token |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Extended the PKCS#11 object enumerator by attribute... |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Use the PKCS#11 object enumerator |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Implemented a generic PKCS#11 object enumerator |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Unload plugins in reverse order |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Support module names in %smartcard specifier, streamlin... |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Added enumerator for PKCS#11 tokens |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Handle NOT_SUPPORT return value from WaitForSlot |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Reenabled dlclose |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Implemented a credential set on top of a PKCS#11 token |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Added NSPR PR_CallOnce to leak detective whitelist |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Added buffer checking variants of syslog functions... |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Moved gmp plugin before users of it |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Added a token add/remove callback function to the manager |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Enumerate tokens and their mechanisms, wait for slot... |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Depend on libcharon until we have a thread pool to use |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Add enum names for CK_MECHANISM_TYPE constants |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Make the PKCS#11 padding string trimming public, add... |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Added a getter for the library alias |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Moved PKCS#11 library loading to dedicated manager |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Use locking, prefer our mutex abstraction layer |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Added enum names for PKCS#11 return values |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Load PKCS#11 modules defined in strongswan.conf |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Implemented an abstraction layer for PKCS#11 module... |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Imported the free pkcs11.h header form the Scute project |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Martin Willi | Added PKCS#11 token plugin stub |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Andreas Steffen | added ikev2/rw-eap-tls-only scenario |
commit | commitdiff | tree | snapshot |
| 2010-08-04 |
Andreas Steffen | --enable eap-tls and --disable-load-warning in uml... |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Tobias Brunner | test_cert adapted to extended signature of get_encoding(). |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Tobias Brunner | Fixed compiler warnings. |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | Moved TLS stack to its own library |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | Moved eap-tls plugin to libcharon, updated to 4.4.1... |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | Implemented EAP-TLS server functionality |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | TLS stack keeps a copy of server/peer identities |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | Limit the number of EAP-TLS packets allowed |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | Use stricter state handling while processing TLS messages |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | Cleaned up the public TLS interface |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | Refactored common used operations into TLS crypto helper |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | Properly send empty EAP-TLS messages |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | Derive MSK for EAP-TLS authentication |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | Verify Server Finished message |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | Implemented input record decryption and verification |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | Implemented key derivation, output record signing and... |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | Derive master secret, create Finished message |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | Implemented the TLS specific PRF in its TLSv1.0 and... |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | Implemented sending of Certificate, ClientKeyExchange... |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | Implemented a tls_writer class to simplify TLS data... |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | Implemented a tls_reader class to simplify TLS data... |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | Process ServerHello(Done), Certificate(Request) messages |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | Send a ClientHello to start TLS negotiation |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | Added TLS crypto helper, currently supports cipher... |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | Added support for AUTH_HMAC_SHA2_256_256, used in TLS |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | Added stubs for handshake handling, server and peer... |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | Accept follow-up fragments with a TLS message length |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | Added dummy/identity implementations of the different... |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | Pass TLS records to newly introduced TLS stack |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | Added some TLS constants |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | (De-)fragment EAP-TLS packets, pass TLS records to... |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Martin Willi | Added EAP-TLS plugin stub |
commit | commitdiff | tree | snapshot |
| 2010-08-03 |
Thomas Egerer | Do not touch child from collision if peer deleted it |
commit | commitdiff | tree | snapshot |
| 2010-08-01 |
Waldemar Brodkorb | substitute obsolete function calls(bzero/index) |
commit | commitdiff | tree | snapshot |
| 2010-07-30 |
Andreas Steffen | delete tarball files |
commit | commitdiff | tree | snapshot |
| 2010-07-30 |
Andreas Steffen | version bump to 4.4.2 |
commit | commitdiff | tree | snapshot |
| 2010-07-30 |
Martin Willi | The va_list trick does not seem to be portable, revert... 4.4.1 |
commit | commitdiff | tree | snapshot |
| 2010-07-29 |
Thomas Egerer | Fix segfault on 'ipsec stroke up ]' command |
commit | commitdiff | tree | snapshot |
| 2010-07-29 |
Martin Willi | Fixed settings lookup if the section/key contains dots |
commit | commitdiff | tree | snapshot |
| 2010-07-28 |
Martin Willi | Added NEWS for snprintf() fixes |
commit | commitdiff | tree | snapshot |
| 2010-07-28 |
Martin Willi | Fix use of snprintf() in pluto subjectAltName enumeration |
commit | commitdiff | tree | snapshot |
| 2010-07-28 |
Martin Willi | Fix use of snprintf() in IETF attributes to string... |
commit | commitdiff | tree | snapshot |
| 2010-07-28 |
Martin Willi | Fix use of snprintf() in identification DN to ASCII... |
commit | commitdiff | tree | snapshot |
| 2010-07-28 |
Martin Willi | More NEWS for HA functionality |
commit | commitdiff | tree | snapshot |
| 2010-07-28 |
Martin Willi | Implemented a HA enabled in-memory address pool |
commit | commitdiff | tree | snapshot |
| 2010-07-28 |
Martin Willi | Added a function to segmentate a generic integer |
commit | commitdiff | tree | snapshot |
| 2010-07-27 |
Andreas Steffen | added NETMAP rules for the reverse direction |
commit | commitdiff | tree | snapshot |
| 2010-07-27 |
Andreas Steffen | fixed description of ikev2/net2net-same-nets scenario |
commit | commitdiff | tree | snapshot |
| next |
projects / strongswan.git / shortlog