Martin Willi
|
a2f1bb238e
|
enforce correct RSA signature lenght in gcrypt
|
2009-06-30 12:10:30 +02:00 |
Andreas Steffen
|
2ba6a53414
|
added missing header files
|
2009-06-24 00:07:36 +02:00 |
Martin Willi
|
d860a9b924
|
handle --disable-pluto/charon with --enable-integrity-test
|
2009-06-22 16:37:28 +02:00 |
Martin Willi
|
f0f420229a
|
deinit() library if integrity check fails
|
2009-06-22 16:18:53 +02:00 |
Martin Willi
|
4f2c48cd3d
|
build and verify on disk file integrity of pluto and charon executables
|
2009-06-22 15:47:18 +02:00 |
Martin Willi
|
da2834a280
|
removed functions from faked symbol list, not needed anymore with RTLD_LAZY
|
2009-06-22 15:47:18 +02:00 |
Martin Willi
|
cfe508d911
|
indicate use if integrity testing at startup
|
2009-06-22 15:47:18 +02:00 |
Martin Willi
|
67a7bb02ef
|
moved checksum_builder/libchechsum to top srcdir to respect build order
|
2009-06-22 15:47:18 +02:00 |
Martin Willi
|
e4e6a77a80
|
check for dladdr() and dl_iterate_phdr() if --enable-integrity-test set
|
2009-06-22 15:47:17 +02:00 |
Martin Willi
|
bef508755b
|
build integrity_checker.c only if --enable-integrity-test set
|
2009-06-22 15:47:17 +02:00 |
Martin Willi
|
6a8c8815fe
|
check on-disk and loaded segment integrity of libstrongswan
|
2009-06-22 15:47:17 +02:00 |
Martin Willi
|
d88bcee079
|
reduced verbosity of integrity checker
|
2009-06-22 15:47:17 +02:00 |
Martin Willi
|
e3b7be91e1
|
removed obsolete INTEGRITY_TEST and fips signer code
--enable-integrity-test now conditionally builds libchecksum
|
2009-06-22 15:47:17 +02:00 |
Martin Willi
|
f1f51395d5
|
build checksums for charon plugins
|
2009-06-22 15:47:17 +02:00 |
Martin Willi
|
a0fc89798a
|
library initialization fails if libstrongswan checksum is invalid
|
2009-06-22 15:47:17 +02:00 |
Martin Willi
|
70f59fab9b
|
checksum.c depends on all libraries
|
2009-06-22 15:47:17 +02:00 |
Martin Willi
|
12c68f1b3a
|
implemented a checksum_builder tool to build the checksum library
|
2009-06-22 15:47:17 +02:00 |
Martin Willi
|
0179d4684a
|
integrity checker accepts an option checksum library on construction
|
2009-06-22 15:47:17 +02:00 |
Martin Willi
|
059c479a2f
|
check integrity of libstrongswan
|
2009-06-22 15:47:17 +02:00 |
Martin Willi
|
960e0c1040
|
check integrity of plugins before loading
|
2009-06-22 15:47:17 +02:00 |
Martin Willi
|
20d4fc97cf
|
implemented an integrity checker class to build and check code integrity
|
2009-06-22 15:47:16 +02:00 |
Martin Willi
|
2927db377d
|
dist-hook to remove .svn folder not needed anymore
|
2009-06-22 15:45:24 +02:00 |
Martin Willi
|
31b9c10800
|
removed unneeded newline
|
2009-06-22 15:35:18 +02:00 |
Andreas Steffen
|
71e725d325
|
use get_proposal_token() for algorithm selection
|
2009-06-20 12:09:36 +02:00 |
Andreas Steffen
|
c4963c92ac
|
version bump to 4.3.3
|
2009-06-19 17:00:34 +02:00 |
Andreas Steffen
|
c7f76958d7
|
authby=pubkey is now the default authentication
|
2009-06-19 10:41:38 +02:00 |
Martin Willi
|
1694e82c7c
|
fixed another 64bit compiler warning
|
2009-06-19 10:19:55 +02:00 |
Martin Willi
|
aab814c793
|
fixed compiler warning
|
2009-06-19 10:05:27 +02:00 |
Martin Willi
|
f53b7e00c2
|
reverted rule_count back to size_t, as it is passed as pointer (fixes 64bit issues)
|
2009-06-19 10:01:04 +02:00 |
Andreas Steffen
|
126f2130fb
|
added info about two DoS fixes
|
2009-06-18 19:29:16 +02:00 |
Andreas Steffen
|
1ea31180a0
|
HASH_MD2 is not implemented yet in gcrypt
|
2009-06-18 10:03:05 +02:00 |
Andreas Steffen
|
3d7250d472
|
added test vector for NULL encryption
|
2009-06-18 09:59:24 +02:00 |
Andreas Steffen
|
c233bb932a
|
added test vector for NULL encryption
|
2009-06-18 09:42:05 +02:00 |
Andreas Steffen
|
21142d40d1
|
added md2 and md4 test vectors
|
2009-06-18 09:32:57 +02:00 |
Andreas Steffen
|
6561694796
|
added 2 des test vectors
|
2009-06-18 08:23:51 +02:00 |
Andreas Steffen
|
420bfb4fb5
|
added gcrypt-ikev2/alg-camellia scenario
|
2009-06-18 07:48:38 +02:00 |
Andreas Steffen
|
0e9ded6838
|
removed serpent and twofish plugins - use gcrypt instead
|
2009-06-18 07:27:40 +02:00 |
Andreas Steffen
|
9709520a84
|
moved alg-serpent and alg-twofish scenarios to gcrypt-ikev1
|
2009-06-18 07:15:51 +02:00 |
Andreas Steffen
|
8caf7711c9
|
fixed typo
|
2009-06-18 05:56:02 +02:00 |
Andreas Steffen
|
bfab805898
|
removed superfluous print argument
|
2009-06-17 22:54:57 +02:00 |
Andreas Steffen
|
e1101d5994
|
added 2 RC5 test vectors
|
2009-06-17 22:34:03 +02:00 |
Andreas Steffen
|
ed65740846
|
added 2 IDEA test vectors
|
2009-06-17 21:53:30 +02:00 |
Andreas Steffen
|
364786b69f
|
added 6 serpent test vectors
|
2009-06-17 21:37:26 +02:00 |
Andreas Steffen
|
142b7326a6
|
added 3 Twofish test vectors
|
2009-06-17 15:50:27 +02:00 |
Andreas Steffen
|
a36c082da6
|
added one CAST-128 test vector
|
2009-06-17 15:24:20 +02:00 |
Andreas Steffen
|
1db85f2cc7
|
corrected ASN.1 encoding of OID node
|
2009-06-17 15:08:03 +02:00 |
Andreas Steffen
|
46ec53098e
|
added Camellia encryption support to scepclient
|
2009-06-17 14:42:57 +02:00 |
Andreas Steffen
|
61bfc3acae
|
added 6 Camellia test vectors
|
2009-06-17 14:22:00 +02:00 |
Andreas Steffen
|
22511bbd34
|
added 6 Camellia test vectors
|
2009-06-17 14:21:34 +02:00 |
Martin Willi
|
80d3a187c5
|
double check that parsing a list consumes all bytes
|
2009-06-17 13:38:05 +02:00 |