summaryrefslogtreecommitdiffstats
path: root/sbin/iked/crypto.c (follow)
Commit message (Expand)AuthorAgeFilesLines
* Constify cipher API.tobhe2021-02-251-5/+5
* Upgrade to OpenSSL 1.1 compatible crypto API. Add additionaltobhe2021-02-041-29/+27
* Add support for RSA-PSS PKCS1 signatures. Don't enable them bytobhe2021-01-261-18/+21
* Add support for RSASSA-PSS signature verification (RFC 7427).tobhe2020-12-061-12/+110
* Fix type mismatch. auth_method should be uint8_t.tobhe2020-12-031-4/+4
* Use a counter instead of random IV for AES-GCM. Security depends ontobhe2020-11-261-3/+17
* Add AES-GCM mode ciphers (IANA IDs 19 and 20) for IKEv2.tobhe2020-05-261-5/+100
* Stricter return value checking for EVP_Cipher* calls.tobhe2020-05-141-18/+23
* Fix leaks in signature validation.tobhe2020-04-221-1/+5
* Remove unused 'dsa_cert' variable.tobhe2020-04-201-6/+1
* Prevent multiple ibuf leaks. Clean up on proccess shutdown.tobhe2020-04-081-1/+2
* Switch from EVP_SignInit_ex() to the newer EVP_DigestSignInit()tobhe2020-02-141-32/+40
* fix char ** to const char ** conversion warning; ok mikeb@otto2017-08-281-2/+4
* spacingreyk2017-03-271-2/+2
* Add support for RFC4754 (ECDSA) and RFC7427 authentication.reyk2017-03-271-46/+217
* RFC4754 specifies ECDSA-521 (sic), not -512. ok reyk@naddy2015-10-311-2/+2
* Switch iked to C99-style fixed-width integer types.reyk2015-08-211-26/+26
* spacing (no binary change, verified with checksums)reyk2015-08-191-6/+10
* initial support for RFC 7427 signatures, so we are no longermarkus2015-03-261-7/+134
* Replace <sys/param.h> with <limits.h> and other less dirty headers wherederaadt2015-01-161-2/+2
* add additional includes required to build with -DOPENSSL_NO_DEPRECATEDjsg2014-07-101-1/+2
* Fix compiler warnings in the format strings: use %zd for ssize_t andreyk2014-02-171-2/+2
* don't leak prv RSA key for each signature; ok mikebmarkus2014-01-241-1/+2
* Use EVP_sha1 directly instead of doing the EVP_get_digestbyname lookup.mikeb2013-12-041-10/+3
* pass caller to ca_sslerror for better error messages; ok mikebmarkus2013-11-141-5/+5
* Remove private CVS tag from an obsolete repository and bump copyrightreyk2013-01-081-3/+2
* Plug two memory leaks when cleaning up the dh/dsa crypto structures.reyk2012-12-151-1/+2
* update email addresses to match reality.reyk2012-09-181-2/+2
* Under certain circumstances iked can be tricked to bypass a signaturemikeb2011-08-271-10/+13
* fixup log_warn and log_debug arguments; ok reykmikeb2010-12-211-8/+8
* fixup number rounding; ok reykmikeb2010-11-081-2/+2
* disable padding correctly. therefore we no longer need to supplymikeb2010-09-301-4/+8
* fix block length for AESreyk2010-06-141-2/+2
* Import iked, a new implementation of the IKEv2 protocol.reyk2010-06-031-0/+686
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.