Commit Graph

928 Commits

Author SHA1 Message Date
Andreas Steffen 0bc5a23023 renamed integrity check to integrity test 2007-08-29 10:36:08 +00:00
Andreas Steffen d3250f74af cosmetics 2007-08-29 10:31:37 +00:00
Andreas Steffen 32be2ec599 fixed 64 bit issue (size_t is 32 bit) 2007-08-29 10:30:17 +00:00
Andreas Steffen ab13376877 fips_verify_hmac_signature() now returns a boolean status 2007-08-29 09:43:02 +00:00
Andreas Steffen df29e8f745 SHA-1 HMAC signature is now computed over concatenation of TEXT and RODATA segments 2007-08-29 09:13:08 +00:00
Andreas Steffen fa50e4df48 compute SHA-1 HMAC over libstrongswan TEXT segment for the time being 2007-08-29 08:54:53 +00:00
Martin Willi dc5a849bf0 signers implemented with HMAC now support NULL output parameters
to feed signer with more than one block of data.
2007-08-29 07:52:49 +00:00
Andreas Steffen d8b45dcdd2 build fips_signer and fips_signature with USE_INTEGRITY_TEST condition only 2007-08-29 07:02:13 +00:00
Andreas Steffen 2fb15ac606 changed interface of fips_verify_hmac_signature 2007-08-29 05:43:45 +00:00
Andreas Steffen 90bcf8b286 free hmac_signature string after use 2007-08-29 05:43:05 +00:00
Andreas Steffen d64b48a80b beautification 2007-08-29 05:42:22 +00:00
Andreas Steffen 55434a1ba5 started implementation of libstrongswan code integrity check 2007-08-29 00:37:10 +00:00
Andreas Steffen 0e54968584 defined ietfAttr_create_from_string() 2007-08-29 00:35:51 +00:00
Martin Willi 69e56d9dec simple console support through pts devices 2007-08-28 07:53:46 +00:00
Andreas Steffen 12fe0e60df set ignore properties 2007-08-28 07:02:51 +00:00
Martin Willi 0739cca9d1 default routing table/prio: 220/220 (as 19530 was invalid)
added configure option --with-routing-table-prio=
2007-08-27 14:53:42 +00:00
Martin Willi 4e411c8361 added --with-routing-table= configure option 2007-08-27 11:15:35 +00:00
Martin Willi 98f97433af rerouting CHILD_SA if its IKE_SA gets deleted 2007-08-27 09:10:12 +00:00
Andreas Steffen 9a63ddd84d initiated support of caIssuers accessLocation 2007-08-17 08:01:10 +00:00
Andreas Steffen 2a48f47406 required CA is that.ca not this.ca 2007-08-17 07:22:04 +00:00
Andreas Steffen 2133593696 matching_request instead of matching_trust must go into the metric 2007-08-17 07:21:26 +00:00
Andreas Steffen 0f9f19f54e fixed maximum path length info in match_requested_ca() 2007-08-17 07:20:27 +00:00
Andreas Steffen 6a85215809 sort attributes alphabetically 2007-08-15 22:58:15 +00:00
Andreas Steffen cd15679122 added caIssuers OID 2007-08-15 09:46:40 +00:00
Andreas Steffen 1bce8ec70d corrected typo 2007-08-15 09:46:14 +00:00
Andreas Steffen 7cbe4a33e9 use symbolic shell variables in library paths 2007-08-15 08:40:16 +00:00
Andreas Steffen 96cc677c96 removed oid.txt and oid.pl in pluto subdir 2007-08-15 08:29:55 +00:00
Andreas Steffen 683d66fe93 aligned pluto/oid.txt to libstrongswan/asn1/oid.txt 2007-08-14 21:21:21 +00:00
Andreas Steffen 2d064166db added Microsof Encrypting File System Extended Key Usage OID 2007-08-14 21:13:53 +00:00
Andreas Steffen b086f62ca1 added Microsof Smartcard Logon Extended Key Usage OID 2007-08-14 21:05:40 +00:00
Andreas Steffen bb70071b26 finetuning of phase1 matching metrics 2007-08-14 19:15:01 +00:00
Andreas Steffen 929b9e367a append new attribute certs at the end 2007-08-14 13:04:36 +00:00
Andreas Steffen 06faefe43d adding attribute certficates to a chained list 2007-08-14 12:27:02 +00:00
Andreas Steffen efddbcb0b5 soft-limit treatment of unmatched certificate requests using a priority metric 2007-08-14 12:26:22 +00:00
Andreas Steffen 3c1100187f replaced hex_str() by fprintf(#B) for printing unknown OIDs 2007-08-14 12:24:35 +00:00
Andreas Steffen 9148e44b39 fixed bug occuring with multiple occurences of the same cacert on a smartcard 2007-08-13 07:47:47 +00:00
Andreas Steffen 8f687a7591 has_rsa_private_key() must also be protected by keys_mutex 2007-08-10 12:10:36 +00:00
Andreas Steffen c045d90a8e corrected debug output 2007-08-10 11:23:45 +00:00
Andreas Steffen 0dbc039ab5 added listaacerts,listacerts,rereadsecerts,rereadocspcerts,rereadaacerts,rereadacerts to stroke 2007-08-10 10:19:53 +00:00
Andreas Steffen 3f343ad67a fixed typo stroke keyword list 2007-08-10 10:00:59 +00:00
Andreas Steffen 8ff58b051c ipsec stroke rereadaacerts|rereadacerts supported 2007-08-10 09:17:34 +00:00
Martin Willi 7acfe286fd fixed build without --enable-uml 2007-08-10 09:14:20 +00:00
Martin Willi 4614d589c0 fixed build without --enable-uml 2007-08-10 08:58:37 +00:00
Andreas Steffen a74be4f7eb set STROKE_REREAD_FIRST to STROKE_REREAD_SECRETS 2007-08-10 08:49:20 +00:00
Andreas Steffen a027d51106 set STROKE_REREAD_FIRST to STROKE_REREAD_SECRETS 2007-08-10 08:49:03 +00:00
Andreas Steffen 138d7f9a79 added rereadsecrets keyword to stroke 2007-08-10 08:05:03 +00:00
Andreas Steffen 84db83336b support of ipsec rereadsecrets for stroke 2007-08-10 07:16:32 +00:00
Martin Willi f8ced47f5c reread notify socket when interrupted (EINTR) through sigchild 2007-08-10 06:01:03 +00:00
Martin Willi 567019c8d5 fixed libstrongswan linking for libdumm 2007-08-09 12:50:01 +00:00
Martin Willi 939e93787e made linked lists invoke() method consistent to clone_*() and destroy_*() methods 2007-08-09 12:43:11 +00:00