0e9ded6838
removed serpent and twofish plugins - use gcrypt instead
2009-06-18 07:27:40 +02:00
81811a9d8b
added a plugin providing crypto test vectors
2009-06-11 15:55:59 +02:00
3e8891667b
implemented a crypto_tester class to test crypto algorithms
...
libstrongswan.crypto.test.required to require at least one test vector to use an algorithm
libstrongswan.crypto.test.rng_true to run RNG tests on RNG_TRUE quality
2009-06-11 15:54:44 +02:00
4977018c23
added skeleton for libgcrypt based crypto plugin
2009-06-09 11:18:56 +02:00
8b799d55ce
pluto and scepclient use private and public key plugins of libstrongswan
2009-06-09 11:03:32 +02:00
433cb51bb9
moved IKEv2 proposals and transforms to libstrongswan
2009-05-15 22:43:48 +02:00
d36ae9e305
started migration to encryption plugins
2009-05-09 00:04:28 +02:00
d24a74c5b4
merging changes from portability branch back to trunk
...
important change for developers: %Y replaces %D to print identities!
2009-04-30 11:37:54 +00:00
be0a03be64
set default CFLAGS globally, including -Wno-format
2009-04-27 11:34:07 +00:00
4985ad6e4a
pluto and scepclient use the regular libstrongswan library
2009-04-21 12:26:04 +00:00
08b2d288a1
scepclient and pluto use asn1 from libstrongswan
2009-04-20 20:53:38 +00:00
d41071802d
support of the enum printf_hook
2009-04-20 09:32:59 +00:00
54c4de63c0
scepclient uses the optionsfrom parser from libstrongswan
2009-04-18 17:43:28 +00:00
a6e3ec1389
created pluto and scepclient now use libstrongswan-lite
2009-04-18 14:50:31 +00:00
d25ce3701e
printf hooks refactored to increase portability (i.e. support for platforms without glibc-compatible customizable printf - the Vstr string library is currently required on such platforms).
2009-03-12 18:07:32 +00:00
1e0d1ae213
support of MD4 hash
2009-02-19 10:06:58 +00:00
2d887e8e08
removed unused extract_last_token() and the required memrchr implementation
2009-02-18 09:45:54 +00:00
48032aed00
add a compatible memrchr() function if the platform does not support it (e.g. old glibc). Patch courtesy to Thomas Jarosch
2009-01-09 01:19:45 +00:00
0948edbbff
adding general purpose hash table
2008-12-03 09:32:16 +00:00
0214012508
threshhold and ./configure option for lock profiler
2008-11-05 14:36:57 +00:00
f7237cf37a
separated backtrace functionality from leak_detective, used in
...
leak_detective
mutex profiling
signal handler
2008-11-05 13:58:19 +00:00
104c28d603
fixed perl oid generation
2008-10-16 15:38:48 +00:00
1adaa02bb2
merging kernel_pfkey plugin back from kernel-interface branch
2008-10-14 08:46:31 +00:00
21c9546321
libstrongswan agent plugin to use ssh-agent for RSA signatures
2008-09-02 11:04:26 +00:00
af165431d2
fixed libstrongswan integrity test
2008-08-19 18:51:30 +00:00
eaa1399812
fixed the strongswan.conf path
2008-05-22 21:59:30 +00:00
affd7a90ba
moved RAW public key support to a separate plugin (pubkey)
2008-05-08 13:16:42 +00:00
27d04e055d
implemented XCBC algorithms (signer, prf) for IKE on top of a crypter
...
supporting ike=...-aesxcbc-... in ipsec.conf
added AUTH_AES_XCBC_96 and PRF_AES128_CBC to default IKE proposal
AES XCBC testcase
2008-04-30 14:26:24 +00:00
17353034f3
added a wrapper plugin for OpenSSL crypters (AES, 3DES, Blowfish etc.)
2008-04-28 14:25:19 +00:00
d3d7e46b8c
refactoring of the ASN.1 parser
2008-04-26 09:24:14 +00:00
9213ad27c2
replaced freeswan ttodata by own chunk_{to|from}_{hex|base64} functions
2008-04-24 13:26:22 +00:00
36d62fac65
experimental Padlock plugin supportin SHA1 and AES-128 for VIA C7 Esther
2008-04-22 08:44:56 +00:00
82d8368bd7
build plugins after daemon/libstrongswan
2008-04-15 07:57:01 +00:00
6a365f0740
added API for random number generators, served through credential factory
...
ported randomizer_t to a rng_t on top of /dev/(u)random (plugin random)
2008-04-15 05:56:35 +00:00
a9184df36b
do not build leak_detective.o if not enabled
2008-04-04 11:38:16 +00:00
1aad8bdfad
makeshift fix of --enable-integrity-test option
2008-03-26 20:16:42 +00:00
7b88a983d8
caching of ocsp responses (experimental), no crl caching yet
2008-03-26 15:21:50 +00:00
26930a8c3e
certificate factory can load certs from file
2008-03-25 22:28:27 +00:00
3e6ee16478
defined *_create_from_file() constructors in libstrongswan/credentials/certificates
2008-03-25 10:12:45 +00:00
bdec2e4f52
refactored openac and its attribute certificate factory
2008-03-20 15:23:52 +00:00
552cc11b1f
merged the modularization branch (credentials) back to trunk
2008-03-13 14:14:44 +00:00
e8bfe74289
extended and debugged PKCS#7 signedData support
2008-02-01 14:19:26 +00:00
5f854d7f95
added strneq(x,y,len) macro
2007-10-07 13:35:42 +00:00
d62a4526fd
moved enumerator from libappserv to libstrongswan
2007-10-04 08:21:53 +00:00
b4979ff724
removed some empty lines
2007-09-18 11:23:52 +00:00
15a9d460c0
peer_cfg now knows about group memberships
2007-09-13 15:33:17 +00:00
d8b45dcdd2
build fips_signer and fips_signature with USE_INTEGRITY_TEST condition only
2007-08-29 07:02:13 +00:00
55434a1ba5
started implementation of libstrongswan code integrity check
2007-08-29 00:37:10 +00:00
f880eb2dca
started support of X.509 attribute certificates
2007-04-12 17:49:33 +00:00
241d2ff3bc
support of ldap-based crl fetching
2007-04-06 09:44:06 +00:00
96567fc8a2
fixed compilation warnings and errors when not using curl
2007-03-13 14:52:18 +00:00
1bcb84605f
ocsp signer certificate and ocsp response signature can be verified
2007-03-08 23:29:04 +00:00
bdfff62db9
added fetcher.h and fetcher.c
2007-03-07 14:13:01 +00:00
05bda56556
added ocsp.h and ocsp.c
2007-02-28 20:31:07 +00:00
2ef41cdad9
support of ca info records
2007-02-23 15:14:59 +00:00
f27f6296e6
merged EAP framework from branch into trunk
...
includes a lot of other modifications
2007-02-12 15:56:47 +00:00
db7ef62494
better split up of library files "types.h" & "definitions.h"
...
centralized all printf specifier character definitions
reuse of arginfo handlers
more cleanups
fixed more AMD64 issues
added DEBUG_LEVEL compile flag to exclude DBGn() statements
2006-10-31 12:27:59 +00:00
60356f3375
introduced new logging subsystem using bus:
...
passive listeners can register on the bus
active listeners wait for signals actively
multiplexing allows multiple listeners to receive debug signals
a lot more...
2006-10-18 11:46:13 +00:00
b5cac6684d
added copyright notice to sha2_hasher
...
included SHA2 in build process
2006-09-19 14:54:01 +00:00
462129d332
added support for 3DES encryption algorithm in IKE
2006-09-19 11:18:35 +00:00
6f74bfd6ac
added X.509 trust chain verification
2006-06-27 08:48:28 +00:00
2f89902d07
applied new changes from NATT team
...
DPD only done when no IPsec and IKE traffic processed
minor changes here and there
2006-06-23 14:02:30 +00:00
307b4ded5e
added crl support
2006-06-16 05:52:52 +00:00
298b06c28c
- build gets perl and gperf from configure now
...
- moved built sources to maintainer-clean
2006-05-24 06:36:46 +00:00
de1584de40
- changed build order to fix build error after distclean
2006-05-23 09:41:18 +00:00
4acc8989ce
- fixed build when using --enable-leak-detective
2006-05-23 08:00:29 +00:00
d6c32b83de
- removed perl-generated oid.c/h from svn,
...
added them to "dist" and "distclean"
2006-05-19 14:16:58 +00:00
3e61d63a3a
- added ipsec.conf template and man page back
...
- removed old Makefiles
- added new strongswan KDevelop project & startup hack
2006-05-18 14:21:58 +00:00
b5e1560659
- applied andreas's patch
...
- logger output improvements
- testin gupdates
- and a lot more
2006-05-18 06:02:28 +00:00
f2c2d395ff
- introduced autotools
...
- first working version
- make dist should work
- things to do:
- UML testing!
- more cleanups
2006-05-16 14:24:03 +00:00
Andreas Steffen