Martin Willi
4d18175997
removed status result from crypter interface to be consistent with other crypto interfaces
2008-04-22 07:14:24 +00:00
Tobias Brunner
6439267a8c
support for hash and URL encoded certificate payloads in charon
2008-04-18 11:24:45 +00:00
Martin Willi
f722fa31db
added error logging to sqlite plugin
2008-04-15 15:12:01 +00:00
Martin Willi
6a365f0740
added API for random number generators, served through credential factory
...
ported randomizer_t to a rng_t on top of /dev/(u)random (plugin random)
2008-04-15 05:56:35 +00:00
Martin Willi
b5dbcc6270
compare certificates against full encoding to allow equality check of untrusted certs
2008-04-07 08:28:35 +00:00
Martin Willi
4071ad1e5b
fixed segfault when opening a SQLite database fails
2008-04-07 06:49:13 +00:00
Martin Willi
67d147e888
removed unused gmp.h to build libstrongswan without libgmp
2008-04-04 11:13:14 +00:00
Martin Willi
e29ebcb1af
fixed compile warnings
2008-04-02 09:54:20 +00:00
Martin Willi
372b7ac7e2
added missing files for commit [3721]
2008-04-01 15:03:02 +00:00
Martin Willi
9d1c384b4b
loading of subjectPublicKeyInfo wrapped keys using KEY_ANY (openssl format)
...
testcase
2008-04-01 14:51:31 +00:00
Martin Willi
0ea70ca66e
removed unneded publicKeyInfo ASN1 structure
2008-04-01 13:39:12 +00:00
Andreas Steffen
c63dc50f15
demoted ldap debug output to level 2
2008-03-28 22:44:45 +00:00
Martin Willi
7b88a983d8
caching of ocsp responses (experimental), no crl caching yet
2008-03-26 15:21:50 +00:00
Andreas Steffen
5298777ad8
treat sig_alg and algorithm comparison in a consistent way over all certificate types
2008-03-26 13:10:36 +00:00
Martin Willi
a852928a6f
fixed compiler warnings
2008-03-26 09:29:30 +00:00
Andreas Steffen
26930a8c3e
certificate factory can load certs from file
2008-03-25 22:28:27 +00:00
Andreas Steffen
13bec89740
renamed certificate field in x509_cert.c to encoding
2008-03-25 12:22:12 +00:00
Andreas Steffen
63cb8a7fee
fixed refence counts before calling attribute certificate factory
2008-03-25 09:39:23 +00:00
Andreas Steffen
9bb8d23e17
corrected some doxygen entries
2008-03-22 08:15:18 +00:00
Andreas Steffen
855606efd4
optimized self-signed certificate detection
2008-03-21 20:37:08 +00:00
Andreas Steffen
ffce5db1b7
self-signed certificates were not marked by x509_cert.c
2008-03-21 19:07:12 +00:00
Andreas Steffen
c081a9bfe6
added ietf group attribute support to attibute certificate factory
2008-03-21 16:59:21 +00:00
Andreas Steffen
93da2684b6
fixed memory allocation problem in openac
2008-03-21 15:58:48 +00:00
Andreas Steffen
104c96a63c
added BUILD_SERIAL component and fixed several ac bugs
2008-03-21 12:44:15 +00:00
Andreas Steffen
6ac3a7acbb
added credential factory support for BULD_NOT_BEFORE_TIME and BUILD_NOT_AFTER_TIME
2008-03-21 11:32:33 +00:00
Andreas Steffen
b6377673e7
added x509_ac_builder plugin
2008-03-21 10:52:11 +00:00
Andreas Steffen
bdec2e4f52
refactored openac and its attribute certificate factory
2008-03-20 15:23:52 +00:00
Andreas Steffen
384ebaa57a
included utils/linked_list.h
2008-03-20 09:28:58 +00:00
Martin Willi
ca7663ece6
CA certificates are allowed to sign OCSP responsed without OCSP_SIGNER flag
2008-03-20 07:21:44 +00:00
Martin Willi
cfede7f6e2
The introduced SHA1_NOFINAL hasher was not sufficient for EAP-AKA,
...
as it requires to XOR the key into the hashers state.
A new SHA1 based keyed hash function, implemented as PRF, enables EAP-AKA
and the FIPS-PRF function to properly use the existing SHA1 implementation.
2008-03-19 14:02:52 +00:00
Andreas Steffen
ae8715f956
attempt to achieve consistent debugging output
2008-03-19 12:06:38 +00:00
Martin Willi
d7c529f5a6
creating public key from RSA private key
...
RSA key generation and signature test
2008-03-18 12:13:51 +00:00
Andreas Steffen
8d49b51f8b
made is_newer() a certificate_t method
2008-03-18 10:36:08 +00:00
Martin Willi
34e281ed32
enforcing x509_flags on certificate construction
2008-03-17 08:06:49 +00:00
Martin Willi
d4ba109c9c
fixed CRL revoked certs enumeration
2008-03-17 07:25:32 +00:00
Martin Willi
8d04f78d07
removed X509_PEER flag; flags are meant to read cert, not to store additional state in cert
...
removed x509_t.set_flags for the reason above
implemented a simple, generic shared_key_t
2008-03-14 15:11:29 +00:00
Martin Willi
dbcf4e7451
reduced mysql pool verbosity
2008-03-14 15:03:19 +00:00
Martin Willi
552cc11b1f
merged the modularization branch (credentials) back to trunk
2008-03-13 14:14:44 +00:00