Martin Willi
|
7b3814f75d
|
remove spaces before tabs at the beginning of lines (^( )+\t)
|
2009-09-04 15:02:11 +02:00 |
Martin Willi
|
b9b8a98f47
|
remove spaces within tabs (\t( )+\t)
|
2009-09-04 15:00:19 +02:00 |
Martin Willi
|
323f9f990f
|
replaces four spaces by tabs, where appropriate
|
2009-09-04 14:50:23 +02:00 |
Martin Willi
|
7daf5226b7
|
removed trailing spaces ([[:space:]]+$)
|
2009-09-04 13:46:09 +02:00 |
Martin Willi
|
3e15f99189
|
accept octet strings in is_asn1() check
|
2009-09-03 15:35:05 +02:00 |
Martin Willi
|
12a230ddb4
|
Complain about rw(un)lock errors
|
2009-09-03 14:46:28 +02:00 |
Martin Willi
|
d6a45127dc
|
plugins marked with a '!' are handled as critical: cancel if loading fails
|
2009-09-01 16:08:28 +02:00 |
Tobias Brunner
|
e822fc576a
|
Added side effect free min and max macros.
|
2009-09-01 12:50:50 +02:00 |
Martin Willi
|
ad31f98a74
|
fixed certificate_t enum names
|
2009-09-01 11:28:05 +02:00 |
Andreas Steffen
|
f561d6f2e9
|
changed prefix of crl_reason_t values from CRL_ to CRL_REASON_
|
2009-08-31 23:21:50 +02:00 |
Martin Willi
|
de5784452b
|
use time_monotonic() instead of gettimeofday() for time difference calculations
|
2009-08-31 15:25:03 +02:00 |
Martin Willi
|
3d5818ec38
|
use monotonic time source in convar->timed_wait, and in the scheduler using it
|
2009-08-31 15:13:48 +02:00 |
Martin Willi
|
3f310c0d1f
|
implemented a monotonic timestamping function, unaffected from system time changes
|
2009-08-31 15:03:35 +02:00 |
Martin Willi
|
1d39663f7a
|
do not depend on gcrypt autoconf macros
|
2009-08-31 13:14:54 +02:00 |
Martin Willi
|
8706a151ff
|
added ECGDSA specific OIDs
|
2009-08-31 10:34:00 +02:00 |
Andreas Steffen
|
735628f3e3
|
removed position debug output
|
2009-08-30 17:37:27 +02:00 |
Martin Willi
|
bf3b8c90d0
|
added workaround to parse PEM encoded PGP key with KEY_RSA
|
2009-08-28 17:25:07 +02:00 |
Martin Willi
|
4593ef51fd
|
implemented PGP Secret-Key Packet parsing
|
2009-08-28 17:23:58 +02:00 |
Martin Willi
|
caf1af1d9f
|
fixed memleak
|
2009-08-28 16:16:39 +02:00 |
Andreas Steffen
|
2aa67d2636
|
.., but a comment might be helpful
|
2009-08-28 09:28:39 +02:00 |
Andreas Steffen
|
6be3f0f1d0
|
removed TODO reminder
|
2009-08-28 09:26:46 +02:00 |
Andreas Steffen
|
be04eef270
|
allow choice of digest algorithm in certificate generation
|
2009-08-28 09:08:03 +02:00 |
Andreas Steffen
|
e201f53e93
|
build_curve_signature() processes hash not data
|
2009-08-27 20:41:29 +02:00 |
Andreas Steffen
|
1dbaec2177
|
NID_hash and NID_ec_curve were interchanged
|
2009-08-27 20:28:41 +02:00 |
Andreas Steffen
|
ac6a0d5038
|
verify_signature() now processes hash not data
|
2009-08-27 20:18:22 +02:00 |
Andreas Steffen
|
c812802482
|
NID_hash and NID_ec_curver were interchanged
|
2009-08-27 20:11:49 +02:00 |
Martin Willi
|
10b2898d3c
|
verify that the ECDSA auth signature was done with the correct curve
|
2009-08-27 17:58:02 +02:00 |
Martin Willi
|
472cb4ce77
|
distinguish between RFC 4754 (concatenated) and RFC 3279 (DER encoded) ECDSA signatures
|
2009-08-27 17:37:42 +02:00 |
Andreas Steffen
|
78aa4ebd62
|
OID_EC_PUBLICKEY has a parameters field, defining the elliptic curve
|
2009-08-27 16:34:16 +02:00 |
Andreas Steffen
|
263872c47d
|
added OID_EC_PUBLIC_KEY algorithmIdentifier
|
2009-08-27 16:07:59 +02:00 |
Martin Willi
|
7ef310f5b4
|
do not append a NULL paramter to ECDSA algorithmIdentifiers
|
2009-08-27 15:28:21 +02:00 |
Martin Willi
|
ed75a4dd69
|
do not flush cached encodings, keys are responsible for it
|
2009-08-27 13:59:30 +02:00 |
Martin Willi
|
85fd609ed6
|
whitelist openssl ecdsa_check function
|
2009-08-27 13:59:30 +02:00 |
Martin Willi
|
8b10355c84
|
support generation of EC certificates
|
2009-08-27 13:59:30 +02:00 |
Martin Willi
|
82749537e2
|
added support for SIGN_ECDSA_WITH_SHA1 signature scheme in openssl
|
2009-08-27 13:59:30 +02:00 |
Martin Willi
|
eb73685dac
|
create algorithmIdentifier dynamically from OID database
|
2009-08-27 13:59:30 +02:00 |
Martin Willi
|
09fe3c7e4c
|
pkcs1 encoder supports subjectPublicKeyInfo encoding
|
2009-08-27 13:59:30 +02:00 |
Martin Willi
|
1a8ef8aabc
|
fixed memleak in openssl fingerprinting
|
2009-08-27 10:40:49 +02:00 |
Martin Willi
|
b12c6d163d
|
do openssl fingerprinting/encoding directly, openssl provides all functions
|
2009-08-27 09:58:38 +02:00 |
Martin Willi
|
2ee8cd04bd
|
key encoding gained a cache() method, allows caching of externally created encodings
|
2009-08-27 09:57:49 +02:00 |
Martin Willi
|
083142c4a0
|
encoding public EC keys is not really possible without subjectPublicKeyInfo
|
2009-08-26 16:15:38 +02:00 |
Martin Willi
|
6a8791cd1f
|
complain about build errors in non-recursive cases only
|
2009-08-26 14:44:05 +02:00 |
Martin Willi
|
500f515a64
|
moved chunk_increment() function to libstrongswan
|
2009-08-26 14:07:26 +02:00 |
Martin Willi
|
df5c60bc5d
|
added a BUILD_FROM_FD option, supporting credential parsing from stdin
|
2009-08-26 13:03:23 +02:00 |
Martin Willi
|
7c577c8ea2
|
started implementation of a PKI tool, currently supporting RSA|ECDSA key generation
|
2009-08-26 11:23:55 +02:00 |
Martin Willi
|
08ed551ce0
|
implemented openssl EC key generation
|
2009-08-26 11:23:55 +02:00 |
Martin Willi
|
a0b850450f
|
fixed openssl RSA private key encoding
|
2009-08-26 11:23:55 +02:00 |
Martin Willi
|
cb4f09eff3
|
updated agent plugin to new fingerprint/encoding API
|
2009-08-26 11:23:53 +02:00 |
Martin Willi
|
8d09681559
|
updated pubkey plugin to new fingerprinting API
|
2009-08-26 11:23:52 +02:00 |
Martin Willi
|
6b6ece636c
|
updated x509 plugin to public key/x509 API changes
|
2009-08-26 11:23:52 +02:00 |
Martin Willi
|
a5e3153a36
|
updated x509/CRL/AC API to align with public key, authKeyIdentifier is a chunk
|
2009-08-26 11:23:52 +02:00 |
Martin Willi
|
e35c3e2a03
|
updated openssl plugin to new private/public key API, use encoder framework
|
2009-08-26 11:23:52 +02:00 |
Martin Willi
|
cbd5138948
|
updated gcrypt plugin to new private/public key API, use encoder framework
|
2009-08-26 11:23:52 +02:00 |
Martin Willi
|
741680d179
|
updated gmp plugin to new private/public key API, use encoder framework
|
2009-08-26 11:23:52 +02:00 |
Martin Willi
|
1384a42e1b
|
changed get_id/get_encoding API of private/public key to use new encoding framework
|
2009-08-26 11:23:52 +02:00 |
Martin Willi
|
1ef69b01ab
|
removed obsolete fingerprint identification types
|
2009-08-26 11:23:52 +02:00 |
Martin Willi
|
edd354db6f
|
added generic implementation helpers for private_key_t.equals/belongs_to, public_key_t.equals
|
2009-08-26 11:23:52 +02:00 |
Martin Willi
|
0dd2defc5a
|
added a seperate chache lookup, as encode() requires arguments expensive to build
|
2009-08-26 11:23:52 +02:00 |
Martin Willi
|
64e77e8fbb
|
use credential builder API to parse trusted public keys
|
2009-08-26 11:23:52 +02:00 |
Martin Willi
|
d1b3e8607e
|
implemented PGP fingerprinting
|
2009-08-26 11:23:51 +02:00 |
Martin Willi
|
e773fe4cab
|
implemented pkcs1 private/public key encoding and fingerprinting
|
2009-08-26 11:23:51 +02:00 |
Martin Willi
|
934d49a4f9
|
chunk_cat/cata/create_cat/length accept the sensitive data clearing mode 's'
|
2009-08-26 11:23:51 +02:00 |
Martin Willi
|
957d116328
|
in addition to 'm'/'c' mode, asn1_wrap accepts a 's' mode clearing sensitive information
|
2009-08-26 11:23:51 +02:00 |
Martin Willi
|
d9b24887a4
|
added a facility to hand out fingerprinting/key encoding to the pkcs1/pgp/... plugins
|
2009-08-26 11:23:51 +02:00 |
Martin Willi
|
831520d895
|
gmp uses component builder to build public- from private-key
|
2009-08-26 11:23:51 +02:00 |
Martin Willi
|
8380503168
|
gcrypt uses component builder to build public- from private-key
|
2009-08-26 11:23:51 +02:00 |
Martin Willi
|
b457e08fca
|
moved PGP code to pluto and gpg plugin
|
2009-08-26 11:23:51 +02:00 |
Martin Willi
|
7033a70fd0
|
gmp plugin makes use of pkcs1/pgp/dnskey plugins
|
2009-08-26 11:23:51 +02:00 |
Martin Willi
|
cbfafc1125
|
enforce RSA_PRIME1 > RSA_PRIME2 (p > q) in PGP
|
2009-08-26 11:23:51 +02:00 |
Martin Willi
|
5ef478aaee
|
implemented RFC3110 key builder in a plugin, added generic DNSKEY RR parsing
|
2009-08-26 11:23:51 +02:00 |
Martin Willi
|
3addf4e937
|
renamed BUILD_BLOB_RFC_3110 to BUILD_BLOB_DNSKEY, we potentially support other key types
|
2009-08-26 11:23:51 +02:00 |
Martin Willi
|
9493dd2ce0
|
implemented a pgp plugin providing PGP key parsing builders
|
2009-08-26 11:23:50 +02:00 |
Martin Willi
|
4e3d1e804e
|
make use of the pkcs1 plugin in gcrypt rsa key parsing
|
2009-08-26 11:23:50 +02:00 |
Martin Willi
|
3044774323
|
removed subjectPublicKeyInfo parsing, provided by pkcs1 plugin
|
2009-08-26 11:23:50 +02:00 |
Martin Willi
|
1e0f69373a
|
implemented a pkcs1 plugin providing PKCS#1 key parsing builders
|
2009-08-26 11:23:50 +02:00 |
Martin Willi
|
7c2d883af7
|
show more information if building a credential fails
|
2009-08-26 11:23:50 +02:00 |
Martin Willi
|
3f9ec06f6f
|
added getnetbyname/gethostbyname2 to leak detective whitelist, used by pluto
|
2009-08-26 11:23:50 +02:00 |
Martin Willi
|
ddf7c6ac7b
|
do not enumerate builders returning NULL
|
2009-08-26 11:23:50 +02:00 |
Martin Willi
|
cbb62e8f4c
|
handle pluto specific certificates under CRED_CERTIFICATE, not as own credential kind
|
2009-08-26 11:23:49 +02:00 |
Martin Willi
|
94463a33b4
|
removed obsolete PEM code in pluto/libstrongswan
|
2009-08-26 11:23:49 +02:00 |
Martin Willi
|
11aa7e7869
|
use a pluto specific credential builder to build pluto cert_t's
|
2009-08-26 11:23:49 +02:00 |
Martin Willi
|
4d15129160
|
pass along X509 flags when loading PEM encoded data
|
2009-08-26 11:23:49 +02:00 |
Martin Willi
|
280469923d
|
make use of the pem helper plugin to load credentials
|
2009-08-26 11:23:49 +02:00 |
Martin Willi
|
c9db16b7dd
|
added file loading support to pem plugin, using mmap()
|
2009-08-26 11:23:48 +02:00 |
Martin Willi
|
160f4c225d
|
moved PEM parsing functionality to its own plugin
|
2009-08-26 11:23:48 +02:00 |
Andreas Steffen
|
fc0ed07c1f
|
pruned OID tree
|
2009-08-18 18:24:26 +02:00 |
Andreas Steffen
|
c8b543a6fc
|
fixed wrong emailAddress OID introduced by revision c31687da
|
2009-08-18 17:52:00 +02:00 |
Tobias Brunner
|
f1777dff59
|
Replacing gethostbyname, gethostbyname2 and their _r variants with getaddrinfo to increase portability.
|
2009-08-14 16:14:32 +02:00 |
Tobias Brunner
|
26965b4ef3
|
OpenSolaris needs libsocket and libnsl for socket().
|
2009-08-14 14:50:53 +02:00 |
Tobias Brunner
|
cc396286e8
|
Defined some missing fixed-width int types on OpenSolaris.
|
2009-08-14 14:50:22 +02:00 |
Tobias Brunner
|
3901937d14
|
OpenSolaris defines MUTEX_DEFAULT therefore we rename the members of the enums mutex/condvar/rwlock_type_t.
|
2009-08-14 13:30:59 +02:00 |
Tobias Brunner
|
8b6a5ce5ba
|
We need to include alloca.h on OpenSolaris.
|
2009-08-14 13:25:22 +02:00 |
Tobias Brunner
|
3974b2fb07
|
FreeBSD's libc does not support backtrace(), but libexecinfo optionally replicates this function (and the other defined in execinfo.h).
|
2009-08-07 18:46:25 +02:00 |
Andreas Steffen
|
5d8306de68
|
use SS_RC_FIRST and SS_RC_LAST
|
2009-08-06 16:42:44 +02:00 |
Andreas Steffen
|
3646c8a159
|
abort pluto or charon if initialization fails
|
2009-08-06 16:32:52 +02:00 |
Andreas Steffen
|
994b80b513
|
activated CAMELLIA_CBC cipher in openssl plugin
|
2009-08-05 22:46:53 +02:00 |
Andreas Steffen
|
b6f739c13b
|
support of SHA224-based certificate signatures
|
2009-08-05 22:01:44 +02:00 |
Martin Willi
|
3d2f73b92f
|
parse RDNs in multiple SEQUENCEs in all SETs of a DN
|
2009-08-03 15:24:48 +02:00 |
Tobias Brunner
|
b2117eee20
|
Make accept(2) and recvfrom(2) cancellation points on Mac OS X.
|
2009-07-30 14:06:26 +02:00 |
Andreas Steffen
|
e1089f5906
|
added file and segment lengths to checksum.c
|
2009-07-21 22:23:51 +02:00 |
Martin Willi
|
fcac8f6571
|
filter objects for segment checksumming by dlpi_name, excludes rare false positives
|
2009-07-21 15:10:24 +02:00 |
Martin Willi
|
7655843ab5
|
enumerate executable sections only to build checksum
|
2009-07-21 15:00:18 +02:00 |
Martin Willi
|
acd4afc997
|
announce integrity testing only once
|
2009-07-21 14:58:14 +02:00 |
Andreas Steffen
|
def1777eca
|
streamlined integrity test output some more
|
2009-07-18 11:23:27 +02:00 |
Andreas Steffen
|
e3f3b004e2
|
fix test vector error output
|
2009-07-17 20:36:21 +02:00 |
Andreas Steffen
|
eab241fb56
|
stop strongswan if integrity check of libstrongswan or daemon fails
|
2009-07-17 20:33:19 +02:00 |
Andreas Steffen
|
6b04ba288d
|
streamlined debug output of integrity tests
|
2009-07-17 17:00:17 +02:00 |
Andreas Steffen
|
521aa00fb1
|
shortened cypto test output
|
2009-07-17 16:36:01 +02:00 |
Tobias Brunner
|
599d2bcea8
|
Revert "gperf under FreeBSD does not know the -m option."
This reverts commit 0ead254919 .
|
2009-07-16 15:15:09 +02:00 |
Tobias Brunner
|
233a132634
|
Removed an unnecessary include of a header that is not available on Mac OS X.
|
2009-07-15 22:42:22 +02:00 |
Andreas Steffen
|
225bb2b810
|
conversion from ECDSA_WITH_SHAxxx OIDs to signature schemes
|
2009-07-15 18:12:40 +02:00 |
Martin Willi
|
74b14b4008
|
cast pointers to uintptr_t for alignement check
|
2009-07-15 10:39:45 +02:00 |
Tobias Brunner
|
0ead254919
|
gperf under FreeBSD does not know the -m option.
We could use AC_PATH_PROGS_FEATURE_CHECK (added in Autoconf 2.62) to check for this option.
|
2009-07-14 12:09:22 +02:00 |
Tobias Brunner
|
fd0df7ec75
|
Corrected check for valid ASN1 types in rdn_enumerate.
Because of the range of u_char the comparison was always TRUE before.
|
2009-07-14 12:09:22 +02:00 |
Andreas Steffen
|
75682462fc
|
added SHA224_WITH_RSA and ECDSA_WITH_SHAxxx OIDs
|
2009-07-14 05:35:01 +02:00 |
Andreas Steffen
|
d44b03563a
|
double free caused strange side effects
|
2009-07-13 20:28:36 +02:00 |
Andreas Steffen
|
5c49289e27
|
great, I got my comma back
|
2009-07-12 21:08:37 +02:00 |
Martin Willi
|
01e43e3183
|
memxor does not access unaligned words anymore, but still uses words if possible
|
2009-07-08 17:19:49 +02:00 |
Martin Willi
|
751a65f9da
|
fixed doxygen section pgp
|
2009-07-08 10:29:12 +02:00 |
Martin Willi
|
d7b965e931
|
fixed two doxygen warnings
|
2009-07-08 10:28:54 +02:00 |
Martin Willi
|
2d00984d73
|
added missing equals() method assignment for ID_ANY identities
|
2009-07-07 13:42:22 +02:00 |
Martin Willi
|
92a65c506a
|
use architecture specific Elf header
|
2009-07-06 16:36:01 +02:00 |
Martin Willi
|
0c31b9db84
|
centralized ID type specific method assignement in generic constructor
|
2009-07-06 13:15:29 +02:00 |
Martin Willi
|
bbf6a4c0ff
|
removed obsolete init_rdn()/get_next_rdn() functions
|
2009-07-06 13:15:29 +02:00 |
Martin Willi
|
8309798fae
|
reimplemented dnota() using RDN enumerator
|
2009-07-06 13:15:29 +02:00 |
Martin Willi
|
f48c3c72f4
|
added a chunk_printable() function (replaces sanitize_chunk)
|
2009-07-06 13:15:29 +02:00 |
Martin Willi
|
d692557298
|
replaced {same,match}_dn() by compare_dn(), using the RDN enumerator
|
2009-07-06 13:15:29 +02:00 |
Martin Willi
|
ed680e33c0
|
fixed memleak if RND parsing fails
|
2009-07-06 13:15:29 +02:00 |
Martin Willi
|
01da687f78
|
contains_wildcard() for DNs uses RDN enumerator
|
2009-07-06 13:15:28 +02:00 |
Martin Willi
|
2147da40a5
|
simplified identification_t.clone() using memcpy
|
2009-07-06 13:15:28 +02:00 |
Martin Willi
|
6bdd79d86c
|
use an enumerator to parse RDNs, based on asn1_unwrap() function
|
2009-07-06 13:15:28 +02:00 |
Martin Willi
|
5dd492efff
|
make filter enumerator methods static
|
2009-07-06 13:15:28 +02:00 |
Martin Willi
|
596e0540a5
|
asn1_unwrap() function to parse ASN.1 objects with length/type
|
2009-07-06 13:15:28 +02:00 |
Andreas Steffen
|
eebecebead
|
make ecp_x_coordinate_only = yes the default
|
2009-07-06 11:47:38 +02:00 |
Andreas Steffen
|
21863d6361
|
ecp_x_coordinate only option allows ECP interoperability with MS Windows
|
2009-07-06 08:47:18 +02:00 |
Andreas Steffen
|
876a6d737f
|
corrected comment
|
2009-07-04 09:26:36 +02:00 |
Martin Willi
|
90855e965a
|
added additional sanity checks to asn1_length() parsing
|
2009-07-03 09:26:48 +02:00 |
Martin Willi
|
00fcc0f8f3
|
added -avoid-version to LDFLAGS, plugins are not versioned
|
2009-07-03 08:57:11 +02:00 |
Martin Willi
|
a2f1bb238e
|
enforce correct RSA signature lenght in gcrypt
|
2009-06-30 12:10:30 +02:00 |
Martin Willi
|
cfe508d911
|
indicate use if integrity testing at startup
|
2009-06-22 15:47:18 +02:00 |
Martin Willi
|
67a7bb02ef
|
moved checksum_builder/libchechsum to top srcdir to respect build order
|
2009-06-22 15:47:18 +02:00 |
Martin Willi
|
bef508755b
|
build integrity_checker.c only if --enable-integrity-test set
|
2009-06-22 15:47:17 +02:00 |
Martin Willi
|
6a8c8815fe
|
check on-disk and loaded segment integrity of libstrongswan
|
2009-06-22 15:47:17 +02:00 |
Martin Willi
|
d88bcee079
|
reduced verbosity of integrity checker
|
2009-06-22 15:47:17 +02:00 |
Martin Willi
|
e3b7be91e1
|
removed obsolete INTEGRITY_TEST and fips signer code
--enable-integrity-test now conditionally builds libchecksum
|
2009-06-22 15:47:17 +02:00 |
Martin Willi
|
f1f51395d5
|
build checksums for charon plugins
|
2009-06-22 15:47:17 +02:00 |
Martin Willi
|
a0fc89798a
|
library initialization fails if libstrongswan checksum is invalid
|
2009-06-22 15:47:17 +02:00 |
Martin Willi
|
70f59fab9b
|
checksum.c depends on all libraries
|
2009-06-22 15:47:17 +02:00 |
Martin Willi
|
12c68f1b3a
|
implemented a checksum_builder tool to build the checksum library
|
2009-06-22 15:47:17 +02:00 |
Martin Willi
|
0179d4684a
|
integrity checker accepts an option checksum library on construction
|
2009-06-22 15:47:17 +02:00 |
Martin Willi
|
059c479a2f
|
check integrity of libstrongswan
|
2009-06-22 15:47:17 +02:00 |
Martin Willi
|
960e0c1040
|
check integrity of plugins before loading
|
2009-06-22 15:47:17 +02:00 |
Martin Willi
|
20d4fc97cf
|
implemented an integrity checker class to build and check code integrity
|
2009-06-22 15:47:16 +02:00 |
Martin Willi
|
31b9c10800
|
removed unneeded newline
|
2009-06-22 15:35:18 +02:00 |
Andreas Steffen
|
1ea31180a0
|
HASH_MD2 is not implemented yet in gcrypt
|
2009-06-18 10:03:05 +02:00 |
Andreas Steffen
|
3d7250d472
|
added test vector for NULL encryption
|
2009-06-18 09:59:24 +02:00 |
Andreas Steffen
|
c233bb932a
|
added test vector for NULL encryption
|
2009-06-18 09:42:05 +02:00 |
Andreas Steffen
|
21142d40d1
|
added md2 and md4 test vectors
|
2009-06-18 09:32:57 +02:00 |
Andreas Steffen
|
6561694796
|
added 2 des test vectors
|
2009-06-18 08:23:51 +02:00 |
Andreas Steffen
|
0e9ded6838
|
removed serpent and twofish plugins - use gcrypt instead
|
2009-06-18 07:27:40 +02:00 |
Andreas Steffen
|
bfab805898
|
removed superfluous print argument
|
2009-06-17 22:54:57 +02:00 |
Andreas Steffen
|
e1101d5994
|
added 2 RC5 test vectors
|
2009-06-17 22:34:03 +02:00 |
Andreas Steffen
|
ed65740846
|
added 2 IDEA test vectors
|
2009-06-17 21:53:30 +02:00 |
Andreas Steffen
|
364786b69f
|
added 6 serpent test vectors
|
2009-06-17 21:37:26 +02:00 |
Andreas Steffen
|
142b7326a6
|
added 3 Twofish test vectors
|
2009-06-17 15:50:27 +02:00 |
Andreas Steffen
|
a36c082da6
|
added one CAST-128 test vector
|
2009-06-17 15:24:20 +02:00 |
Andreas Steffen
|
1db85f2cc7
|
corrected ASN.1 encoding of OID node
|
2009-06-17 15:08:03 +02:00 |
Andreas Steffen
|
61bfc3acae
|
added 6 Camellia test vectors
|
2009-06-17 14:22:00 +02:00 |
Andreas Steffen
|
22511bbd34
|
added 6 Camellia test vectors
|
2009-06-17 14:21:34 +02:00 |
Andreas Steffen
|
53095480af
|
conversion from CAMELLIA OIDs to encryption_algorithm
|
2009-06-17 13:12:48 +02:00 |
Andreas Steffen
|
7417d35ee0
|
fixed tabs
|
2009-06-17 13:08:19 +02:00 |
Andreas Steffen
|
688705eec2
|
added camellia-cbc OIDs
|
2009-06-17 13:07:07 +02:00 |
Andreas Steffen
|
942127a602
|
fixed 64 bit warning
|
2009-06-17 12:32:28 +02:00 |
Andreas Steffen
|
c3fcdd9322
|
added 2 3DES-CBC and 3 AES-CBC test vectors
|
2009-06-17 00:08:44 +02:00 |
Andreas Steffen
|
b07ffa2490
|
reformatted crypto_test output
|
2009-06-16 14:58:49 +02:00 |
Martin Willi
|
62d6da67dd
|
support older gcrypt libraries not defining the CAMELLIA cipher
|
2009-06-16 14:23:32 +02:00 |
Martin Willi
|
24d7b25d21
|
fixed compiler warning
|
2009-06-16 14:21:55 +02:00 |
Martin Willi
|
26999f2511
|
increased verbosity of successful crypto tests
|
2009-06-16 09:54:28 +02:00 |
Martin Willi
|
72e174f966
|
removed one hierarchy level for crypto test options
|
2009-06-16 09:48:45 +02:00 |
Andreas Steffen
|
cd312fcc43
|
remove whitespace
|
2009-06-15 19:30:44 +02:00 |
Martin Willi
|
25ecb8dafa
|
gcrypt actually does not implement IDEA
|
2009-06-15 18:18:04 +02:00 |
Martin Willi
|
d32b14db5e
|
implemented gcrypt RSA encrypt/decrypt operations
|
2009-06-15 18:07:57 +02:00 |
Martin Willi
|
810ce1f336
|
added a gcrypt.quick_random option to generate weak testing keys faster
|
2009-06-15 18:06:16 +02:00 |
Martin Willi
|
04b348f61a
|
implemented IKEv1 specific SIGN_RSA_EMSA_PKCS1_NULL scheme in gcrypt
|
2009-06-15 14:47:39 +02:00 |
Martin Willi
|
3176e4421f
|
check if RSA key is large enough to sign a chunk of data
|
2009-06-15 13:49:30 +02:00 |
Martin Willi
|
e7227f0ba0
|
use save chunk advancing, check signature length
|
2009-06-15 13:37:52 +02:00 |
Andreas Steffen
|
2b92fc9880
|
test_vectors.h is part of the distribution
|
2009-06-13 15:17:24 +02:00 |
Andreas Steffen
|
11e6d28533
|
pluto supports ECDSA authentication
|
2009-06-12 19:59:49 +02:00 |
Martin Willi
|
b59e239335
|
added SHA2 HMAC signer test vectors
|
2009-06-12 11:09:09 +02:00 |
Martin Willi
|
095f971c10
|
added a FIPS_PRF test vector
|
2009-06-12 10:40:38 +02:00 |
Martin Willi
|
371a54c7a9
|
added support for stateful PRFs (such as the FIPS_PRF)
|
2009-06-12 10:39:47 +02:00 |
Martin Willi
|
701381ceb8
|
added SHA2 HMAC PRF test vectors
|
2009-06-11 20:26:01 +02:00 |
Martin Willi
|
d94d68e404
|
added SHA2 test vectors
|
2009-06-11 18:14:30 +02:00 |
Martin Willi
|
f02d144095
|
added SHA1 test vectors
|
2009-06-11 17:17:33 +02:00 |
Martin Willi
|
2df93f467b
|
added HMAC SHA1 test vectors
|
2009-06-11 17:05:56 +02:00 |
Martin Willi
|
764708b4e0
|
added HMAC MD5 test vectors
|
2009-06-11 16:44:20 +02:00 |
Martin Willi
|
c698da8cb4
|
added RNG test vectors
|
2009-06-11 15:56:00 +02:00 |
Martin Willi
|
e091d5100f
|
added MD5 test vectors
|
2009-06-11 15:56:00 +02:00 |
Martin Willi
|
54916d79d6
|
added AES-XCBC test vectors for signer/prf
|
2009-06-11 15:56:00 +02:00 |
Martin Willi
|
005163805d
|
added test vectors for AES128 CBC
|
2009-06-11 15:56:00 +02:00 |