Andreas Steffen
|
c5dfb88ab8
|
_updown removed from distribution
|
2007-08-29 11:59:52 +00:00 |
Andreas Steffen
|
bdc0b55b72
|
included the FIPS integrity test in LICENSE, CREDITS and NEWs
|
2007-08-29 11:04:55 +00:00 |
Andreas Steffen
|
0bc5a23023
|
renamed integrity check to integrity test
|
2007-08-29 10:36:08 +00:00 |
Andreas Steffen
|
d3250f74af
|
cosmetics
|
2007-08-29 10:31:37 +00:00 |
Andreas Steffen
|
32be2ec599
|
fixed 64 bit issue (size_t is 32 bit)
|
2007-08-29 10:30:17 +00:00 |
Andreas Steffen
|
ab13376877
|
fips_verify_hmac_signature() now returns a boolean status
|
2007-08-29 09:43:02 +00:00 |
Andreas Steffen
|
df29e8f745
|
SHA-1 HMAC signature is now computed over concatenation of TEXT and RODATA segments
|
2007-08-29 09:13:08 +00:00 |
Andreas Steffen
|
fa50e4df48
|
compute SHA-1 HMAC over libstrongswan TEXT segment for the time being
|
2007-08-29 08:54:53 +00:00 |
Martin Willi
|
dc5a849bf0
|
signers implemented with HMAC now support NULL output parameters
to feed signer with more than one block of data.
|
2007-08-29 07:52:49 +00:00 |
Andreas Steffen
|
ef5f65626f
|
change self_test to self-test
|
2007-08-29 07:03:47 +00:00 |
Andreas Steffen
|
d8b45dcdd2
|
build fips_signer and fips_signature with USE_INTEGRITY_TEST condition only
|
2007-08-29 07:02:13 +00:00 |
Andreas Steffen
|
2fb15ac606
|
changed interface of fips_verify_hmac_signature
|
2007-08-29 05:43:45 +00:00 |
Andreas Steffen
|
90bcf8b286
|
free hmac_signature string after use
|
2007-08-29 05:43:05 +00:00 |
Andreas Steffen
|
d64b48a80b
|
beautification
|
2007-08-29 05:42:22 +00:00 |
Andreas Steffen
|
55434a1ba5
|
started implementation of libstrongswan code integrity check
|
2007-08-29 00:37:10 +00:00 |
Andreas Steffen
|
0e54968584
|
defined ietfAttr_create_from_string()
|
2007-08-29 00:35:51 +00:00 |
Andreas Steffen
|
bf422b1664
|
fixed typo
|
2007-08-28 09:59:53 +00:00 |
Martin Willi
|
69e56d9dec
|
simple console support through pts devices
|
2007-08-28 07:53:46 +00:00 |
Andreas Steffen
|
12fe0e60df
|
set ignore properties
|
2007-08-28 07:02:51 +00:00 |
Andreas Steffen
|
52d39feb81
|
set ignore properties
|
2007-08-28 07:02:23 +00:00 |
Andreas Steffen
|
8234dd1216
|
testing/do-tests is made from do-tests.in by inserting actual routing table
|
2007-08-28 06:40:39 +00:00 |
Andreas Steffen
|
35800a11ee
|
testing/do-tests is made from do-tests.in by inserting actual routing table
|
2007-08-28 06:38:04 +00:00 |
Andreas Steffen
|
9ee1111d8b
|
added --enable-integrity-test and --disable-self-test options
|
2007-08-28 06:36:31 +00:00 |
Martin Willi
|
0739cca9d1
|
default routing table/prio: 220/220 (as 19530 was invalid)
added configure option --with-routing-table-prio=
|
2007-08-27 14:53:42 +00:00 |
Martin Willi
|
ad9613226b
|
using default routing table 19530 for ipsec routes
|
2007-08-27 11:30:21 +00:00 |
Martin Willi
|
4e411c8361
|
added --with-routing-table= configure option
|
2007-08-27 11:15:35 +00:00 |
Martin Willi
|
98f97433af
|
rerouting CHILD_SA if its IKE_SA gets deleted
|
2007-08-27 09:10:12 +00:00 |
Andreas Steffen
|
9a63ddd84d
|
initiated support of caIssuers accessLocation
|
2007-08-17 08:01:10 +00:00 |
Andreas Steffen
|
2a48f47406
|
required CA is that.ca not this.ca
|
2007-08-17 07:22:04 +00:00 |
Andreas Steffen
|
2133593696
|
matching_request instead of matching_trust must go into the metric
|
2007-08-17 07:21:26 +00:00 |
Andreas Steffen
|
0f9f19f54e
|
fixed maximum path length info in match_requested_ca()
|
2007-08-17 07:20:27 +00:00 |
Andreas Steffen
|
6a85215809
|
sort attributes alphabetically
|
2007-08-15 22:58:15 +00:00 |
Andreas Steffen
|
cd15679122
|
added caIssuers OID
|
2007-08-15 09:46:40 +00:00 |
Andreas Steffen
|
1bce8ec70d
|
corrected typo
|
2007-08-15 09:46:14 +00:00 |
Andreas Steffen
|
7cbe4a33e9
|
use symbolic shell variables in library paths
|
2007-08-15 08:40:16 +00:00 |
Andreas Steffen
|
96cc677c96
|
removed oid.txt and oid.pl in pluto subdir
|
2007-08-15 08:29:55 +00:00 |
Andreas Steffen
|
683d66fe93
|
aligned pluto/oid.txt to libstrongswan/asn1/oid.txt
|
2007-08-14 21:21:21 +00:00 |
Andreas Steffen
|
2d064166db
|
added Microsof Encrypting File System Extended Key Usage OID
|
2007-08-14 21:13:53 +00:00 |
Andreas Steffen
|
b086f62ca1
|
added Microsof Smartcard Logon Extended Key Usage OID
|
2007-08-14 21:05:40 +00:00 |
Andreas Steffen
|
bb70071b26
|
finetuning of phase1 matching metrics
|
2007-08-14 19:15:01 +00:00 |
Andreas Steffen
|
929b9e367a
|
append new attribute certs at the end
|
2007-08-14 13:04:36 +00:00 |
Andreas Steffen
|
06faefe43d
|
adding attribute certficates to a chained list
|
2007-08-14 12:27:02 +00:00 |
Andreas Steffen
|
efddbcb0b5
|
soft-limit treatment of unmatched certificate requests using a priority metric
|
2007-08-14 12:26:22 +00:00 |
Andreas Steffen
|
3c1100187f
|
replaced hex_str() by fprintf(#B) for printing unknown OIDs
|
2007-08-14 12:24:35 +00:00 |
Andreas Steffen
|
9148e44b39
|
fixed bug occuring with multiple occurences of the same cacert on a smartcard
|
2007-08-13 07:47:47 +00:00 |
Andreas Steffen
|
8f687a7591
|
has_rsa_private_key() must also be protected by keys_mutex
|
2007-08-10 12:10:36 +00:00 |
Andreas Steffen
|
c045d90a8e
|
corrected debug output
|
2007-08-10 11:23:45 +00:00 |
Andreas Steffen
|
dc481855bb
|
set default to uml=false
|
2007-08-10 10:47:48 +00:00 |
Andreas Steffen
|
0dbc039ab5
|
added listaacerts,listacerts,rereadsecerts,rereadocspcerts,rereadaacerts,rereadacerts to stroke
|
2007-08-10 10:19:53 +00:00 |
Andreas Steffen
|
3f343ad67a
|
fixed typo stroke keyword list
|
2007-08-10 10:00:59 +00:00 |