2010-12-06 |
Thomas Egerer | Guarantee entry->other is set when calling put_connected_peers
|
commit | commitdiff | tree |
2010-11-18 |
Martin Willi | Do not query for CKA_ALWAYS_AUTHENTICATE if PKCS#11...
|
commit | commitdiff | tree |
2010-11-18 |
Martin Willi | Use static args for C_Initialize(), OpenSC does not...
|
commit | commitdiff | tree |
2010-11-17 |
Martin Willi | Added getter for arbitrary environment variables
|
commit | commitdiff | tree |
2010-11-16 |
Thomas Egerer | Do not checkin a previously destroyed SA
|
commit | commitdiff | tree |
2010-11-16 |
Martin Willi | Remove obsolete pool_size argument in processor_create()
|
commit | commitdiff | tree |
2010-11-12 |
Thomas Egerer | Extend connected peers by peer family
|
commit | commitdiff | tree |
2010-11-12 |
Martin Willi | Added a PKCS#11 module option to enforce OS Locking...
|
commit | commitdiff | tree |
2010-11-11 |
Martin Willi | Print full source route on DBG2 that gets installed
|
commit | commitdiff | tree |
2010-11-10 |
Martin Willi | Do not use CKA_TRUSTED attribute for Cryptoki version...
|
commit | commitdiff | tree |
2010-11-10 |
Martin Willi | Add flags for PKCS#11 libraries with reduced feature set
|
commit | commitdiff | tree |
2010-11-03 |
Martin Willi | Added a stroke rekey command to trigger IKE/CHILD_SA...
|
commit | commitdiff | tree |
2010-10-28 |
Martin Willi | Store proposal number in proposal_t to reuse it in...
|
commit | commitdiff | tree |
2010-10-28 |
Martin Willi | Migrated proposal_t to INIT/METHOD macros
|
commit | commitdiff | tree |
2010-10-28 |
Martin Willi | Migrated proposal_substructure to INIT/METHOD macros...
|
commit | commitdiff | tree |
2010-10-28 |
Martin Willi | Migrated sa_payload to INIT/METHOD macros, removed...
|
commit | commitdiff | tree |
2010-10-28 |
Martin Willi | Renamed mem_cred_t clear function internally to clear_...
|
commit | commitdiff | tree |
2010-10-20 |
Martin Willi | Set ownership of all HA ClusterIP control files
|
commit | commitdiff | tree |
2010-10-20 |
Martin Willi | Set ownership/permissions of HA control socket
|
commit | commitdiff | tree |
2010-10-18 |
Martin Willi | Prefer the 'server identifier' attribute address to...
|
commit | commitdiff | tree |
2010-10-15 |
Martin Willi | Added NEWS about multiple RADIUS servers, LED plugin
|
commit | commitdiff | tree |
2010-10-15 |
Martin Willi | Fixed IKEv2 RFC number in NEWS
|
commit | commitdiff | tree |
2010-10-07 |
Martin Willi | Show result of RADIUS authentication along with EAP...
|
commit | commitdiff | tree |
2010-10-04 |
Martin Willi | Fixed status_t enum names definition
|
commit | commitdiff | tree |
2010-09-09 |
Martin Willi | Compare subject against all key identifiers in has_subject()
|
commit | commitdiff | tree |
2010-09-09 |
Martin Willi | Do not change cipherspec while we have buffered handshake...
|
commit | commitdiff | tree |
2010-09-08 |
Martin Willi | Added a simple led plugin to control Linux LEDs based...
|
commit | commitdiff | tree |
2010-09-08 |
Martin Willi | Read the compression type byte for EC groups, only
|
commit | commitdiff | tree |
2010-09-07 |
Martin Willi | Fixed typos
|
commit | commitdiff | tree |
2010-09-07 |
Martin Willi | Build tls_test script only if TLS stack is enabled
|
commit | commitdiff | tree |
2010-09-07 |
Martin Willi | Added PKCS#11 NEWS
|
commit | commitdiff | tree |
2010-09-07 |
Martin Willi | Added (EAP-)TLS NEWS
|
commit | commitdiff | tree |
2010-09-06 |
Martin Willi | Include ec_point_format extension in ClientHello
|
commit | commitdiff | tree |
2010-09-06 |
Martin Willi | Added TLS specific EC point formats
|
commit | commitdiff | tree |
2010-09-06 |
Martin Willi | Renamed ecp_format to ansi_format, as point formats...
|
commit | commitdiff | tree |
2010-09-06 |
Martin Willi | Enable the random plugin for scripts
|
commit | commitdiff | tree |
2010-09-06 |
Martin Willi | Accept TLS records with zero-length plaintext
|
commit | commitdiff | tree |
2010-09-06 |
Martin Willi | Added strongswan.conf option to filter for specific...
|
commit | commitdiff | tree |
2010-09-06 |
Martin Willi | Added strongswan.conf options to filter cipher suites...
|
commit | commitdiff | tree |
2010-09-06 |
Martin Willi | Register missing AUTH_HMAC_SHA384 algorithm without...
|
commit | commitdiff | tree |
2010-09-06 |
Martin Willi | Fixed key type in TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
|
commit | commitdiff | tree |
2010-09-06 |
Martin Willi | Prepend point format to ECDH public key
|
commit | commitdiff | tree |
2010-09-06 |
Martin Willi | Log the selected (EC)DH group
|
commit | commitdiff | tree |
2010-09-06 |
Martin Willi | Parse unsupported TLS Hello extensions properly
|
commit | commitdiff | tree |
2010-09-06 |
Martin Willi | Added TLS extension identifiers from RFC 3546
|
commit | commitdiff | tree |
2010-09-03 |
Martin Willi | Do not propose (EC)DHE suites if we do not support...
|
commit | commitdiff | tree |
2010-09-03 |
Martin Willi | Offer only algorithms/suites we have a registered public...
|
commit | commitdiff | tree |
2010-09-03 |
Martin Willi | Added a final flag to builder registration to enumerate...
|
commit | commitdiff | tree |
2010-09-03 |
Martin Willi | Fixed key type of ECDHE_RSA groups
|
commit | commitdiff | tree |
2010-09-03 |
Martin Willi | Use a dynamic curve enumerator to list/convert TLS...
|
commit | commitdiff | tree |
2010-09-03 |
Martin Willi | Use ECDH group check where appropriate
|
commit | commitdiff | tree |
2010-09-03 |
Martin Willi | Added a generic function to check if a DH group is...
|
commit | commitdiff | tree |
2010-09-03 |
Martin Willi | Add ECDHE enabled cipher suites, including ECDSA variants
|
commit | commitdiff | tree |
2010-09-03 |
Martin Willi | Added support for a non-truncated SHA384 HMAC variant...
|
commit | commitdiff | tree |
2010-09-03 |
Martin Willi | Select private key based on received cipher suites
|
commit | commitdiff | tree |
2010-09-03 |
Martin Willi | Support for EC curve Hello extension, EC curve fallback
|
commit | commitdiff | tree |
2010-09-03 |
Martin Willi | Added server support for ECDHE key exchange
|
commit | commitdiff | tree |
2010-09-03 |
Martin Willi | Added client support for ECDHE key exchange
|
commit | commitdiff | tree |
2010-09-03 |
Martin Willi | Added TLS EC curve type and name identifiers
|
commit | commitdiff | tree |
2010-09-03 |
Martin Willi | Check for queued TLS alerts after each handshake part
|
commit | commitdiff | tree |
2010-09-03 |
Martin Willi | Added support for MODP_CUSTOM to gcrypt plugin
|
commit | commitdiff | tree |
2010-09-03 |
Martin Willi | Added support for MODP_CUSTOM to openssl plugin
|
commit | commitdiff | tree |
2010-09-02 |
Martin Willi | Add DHE enabled RSA variants to the supported TLS suites
|
commit | commitdiff | tree |
2010-09-02 |
Martin Willi | Added TLS server side support for DHE suites
|
commit | commitdiff | tree |
2010-09-02 |
Martin Willi | Added TLS client side support for DHE suites
|
commit | commitdiff | tree |
2010-09-02 |
Martin Willi | Store a MODP group we use for each TLS suite
|
commit | commitdiff | tree |
2010-09-02 |
Martin Willi | Added support for MODP_CUSTOM to gmp plugin
|
commit | commitdiff | tree |
2010-09-02 |
Martin Willi | Added a MODP_CUSTOM DH group which takes g and p as...
|
commit | commitdiff | tree |
2010-09-02 |
Martin Willi | Implemented "signature algorithm" hello extension
|
commit | commitdiff | tree |
2010-09-02 |
Martin Willi | Added TLS extension identifiers
|
commit | commitdiff | tree |
2010-09-02 |
Martin Willi | Added generic TLS data sign/verify, hash/sig algorithm...
|
commit | commitdiff | tree |
2010-09-02 |
Martin Willi | Continue with a randomized premaster if decryption...
|
commit | commitdiff | tree |
2010-09-02 |
Martin Willi | Support different hash/sig algorithms in handshake...
|
commit | commitdiff | tree |
2010-09-02 |
Martin Willi | Added TLS ClientCertificateType identifiers
|
commit | commitdiff | tree |
2010-09-02 |
Martin Willi | Added TLS specific Hash and Signature Algorithm identifiers
|
commit | commitdiff | tree |
2010-09-02 |
Martin Willi | Fixed typos in tls_writer method descriptions
|
commit | commitdiff | tree |
2010-09-02 |
Martin Willi | Respect key types in stroke key/certificate backend
|
commit | commitdiff | tree |
2010-09-02 |
Martin Willi | Added an enumerator for registered credential builders
|
commit | commitdiff | tree |
2010-09-02 |
Martin Willi | Migrated credential_factory to INIT/METHOD macros
|
commit | commitdiff | tree |
2010-08-31 |
Martin Willi | Do not process any more TLS handshake messages on fatal...
|
commit | commitdiff | tree |
2010-08-31 |
Martin Willi | Load a left/rightcert2 for EAP-TLS even if no left...
|
commit | commitdiff | tree |
2010-08-31 |
Martin Willi | Strictly check if the server certificate matches the...
|
commit | commitdiff | tree |
2010-08-31 |
Martin Willi | Use the AAA Identity for EAP authentication, if given
|
commit | commitdiff | tree |
2010-08-31 |
Martin Willi | Added support for the ipsec.conf aaa_identity keyword
|
commit | commitdiff | tree |
2010-08-31 |
Martin Willi | Added an AAA identity authentication config option
|
commit | commitdiff | tree |
2010-08-31 |
Martin Willi | Added strongswan.conf options for EAP-TLS/TTLS fragment...
|
commit | commitdiff | tree |
2010-08-31 |
Martin Willi | Support processing of partial TLS record headers
|
commit | commitdiff | tree |
2010-08-31 |
Martin Willi | Migrated EAP-TTLS to the generic TLS helper
|
commit | commitdiff | tree |
2010-08-31 |
Martin Willi | Migrated EAP-TLS to the generic TLS helper
|
commit | commitdiff | tree |
2010-08-31 |
Martin Willi | Implemented a generic TLS EAP helper to implement EAP...
|
commit | commitdiff | tree |
2010-08-31 |
Martin Willi | Support output fragmentation of TLS records
|
commit | commitdiff | tree |
2010-08-31 |
Martin Willi | Moved EAP type/code definitions to a seprate header...
|
commit | commitdiff | tree |
2010-08-31 |
Martin Willi | Implemented buffering of partial records in TLS stack
|
commit | commitdiff | tree |
2010-08-31 |
Martin Willi | Log TLS handshake subtypes as handshakes
|
commit | commitdiff | tree |
2010-08-31 |
Martin Willi | Added a TLS debug level option, use debugging hook
|
commit | commitdiff | tree |
2010-08-31 |
Martin Willi | Do not strdup() zero length strings in identification_create...
|
commit | commitdiff | tree |
2010-08-30 |
Martin Willi | Unwrap crlNumber INTEGER in openssl CRL parsing
|
commit | commitdiff | tree |
2010-08-30 |
Martin Willi | Added crl support to pki --print
|
commit | commitdiff | tree |
2010-08-30 |
Martin Willi | Fixed pluto smartcard support after introducing encryption...
|
commit | commitdiff | tree |
2010-08-25 |
Martin Willi | Prefer AES/Camellia suites over 3DES/NULL encryption
|
commit | commitdiff | tree |
next |