Version 3 - History - libstrongswan - strongSwan

libstrongswan » History » Version 3

Martin Willi, 23.06.2008 09:29
updated libstrongswan plugin list

 Martin Willi
-Martin Willi
+h1. libstrongswan
 Martin Willi
-Martin Willi
+libstrongswan is the foundation library of the IKEv2 keying daemon. It is the base of all newer strongSwan components.
 Martin Willi
 Martin Willi
-Martin Willi
+h2. Plugins
 Martin Willi
-Martin Willi
+libstrongswan itself also supports plugins to provide modular cryptographic algorithms, database support or transport protocol implementations. Each plugin implements the [browser:trunk/src/libstrongswan/plugins/plugin.h plugin_t] interface and registers itself at one of the factories:
-Martin Willi
+||[browser:trunk/src/libstrongswan/credentials/credential_factory.h credentials]||Credential implementations, e.g. certificates or keys.||
-Martin Willi
+||[browser:trunk/src/libstrongswan/crypto/crypto_factory.h crypto]||Crypto implementations, e.g. encryption algorithms or hashers.||
-Martin Willi
+||[browser:trunk/src/libstrongswan/database/database_factory.h database]||Database wrappers to access different databases transparently.||
-Martin Willi
+||[browser:trunk/src/libstrongswan/fetcher/fetcher_manager.h fetcher]||Transport helpers to fetch files, e.g. via HTTP/FTP.||
-Martin Willi
+<pre>
-Martin Willi
+  +-------------------------------------+
-Martin Willi
+  | libstrongswan           +---+ +-----+------+
-Martin Willi
+  |                         |   | |    aes     |
-Martin Willi
+  |                         |   | +-----+------+
-Martin Willi
+  | +-------------+         |   | +-----+------+
-Martin Willi
+  | | credentials |  ---->  | p | |    curl    |
-Martin Willi
+  | +-------------+         | l | +-----+------+
-Martin Willi
+  | +-------------+  <----  | u | +-----+------+
-Martin Willi
+  | | crypto      |         | g | |    des     |
-Martin Willi
+  | +-------------+  ---->  | i | +-----+------+
-Martin Willi
+  | +-------------+         | n | +-----+------+
-Martin Willi
+  | | database    |  <----  |   | |  fips_prf  |
-Martin Willi
+  | +-------------+         | l | +-----+------+
-Martin Willi
+  | +-------------+  ---->  | o | +-----+------+
-Martin Willi
+  | | fetcher     |         | a | |    gmp     |
-Martin Willi
+  | +-------------+  <----  | d | +-----+------+
-Martin Willi
+  |                         | e | +-----+------+
-Martin Willi
+  |                         | r | |    hmac    |
-Martin Willi
+  |                         |   | +-----+------+
-Martin Willi
+  |                         |   | +-----+------+
-Martin Willi
+  |                         |   | |    ...     |
-Martin Willi
+  |                         +---+ +-----+------+
-Martin Willi
+  +-------------------------------------+
-Martin Willi
+</pre>
-Martin Willi
+Currently libstrongswan ships with the following plugins:
-Martin Willi
+||[browser:trunk/src/libstrongswan/plugins/aes aes]||AES-128/192/256 implementation in software, non-US code.||
-Martin Willi
+||[browser:trunk/src/libstrongswan/plugins/des des]||Single- and Triple-DES implementation in software, non-US code.||
-Martin Willi
+||[browser:trunk/src/libstrongswan/plugins/md5 md5]||MD5 hasher software implementation.||
-Martin Willi
+||[browser:trunk/src/libstrongswan/plugins/sha1 sha1]||SHA1 hasher software implementation.||
-Martin Willi
+||[browser:trunk/src/libstrongswan/plugins/sha2 sha2]||SHA-256/384/512 hasher software implementation.||
-Martin Willi
+||[browser:trunk/src/libstrongswan/plugins/hmac hmac]||HMAC implementation to prived MAC/PRF functionality using hashers.||
-Martin Willi
+||[browser:trunk/src/libstrongswan/plugins/xcbc xcbc]||XCBC implementation to prived MAC/PRF functionality using crypters.||
-Martin Willi
+||[browser:trunk/src/libstrongswan/plugins/fips_prf fips_prf]||Pseudo random function implementing the FIPS PRF function.||
-Martin Willi
+||[browser:trunk/src/libstrongswan/plugins/gmp gmp]||Implementation of RSA private/public keys using the GNU Multi Precision library libgmp.||
-Martin Willi
+||[browser:trunk/src/libstrongswan/plugins/x509 x509]||Implementation of X509 certificates, CRLs, OCSP and attribute certificates.||
-Martin Willi
+||[browser:trunk/src/libstrongswan/plugins/pubkey pubkey]||Generic public key loader plugin.||
-Martin Willi
+||[browser:trunk/src/libstrongswan/plugins/openssl openssl]||Wrapper to use [[OpenSSL]] to provide crypto services.||
-Martin Willi
+||[browser:trunk/src/libstrongswan/plugins/padlock padlock]||Experimental plugin to provide hardware accelerated AES/SHA1 on VIA padlock.||
-Martin Willi
+||[browser:trunk/src/libstrongswan/plugins/random random]||Source of random data implemented on top of /dev/(u)random.||
-Martin Willi
+||[browser:trunk/src/libstrongswan/plugins/mysql mysql]||Database wrapper to access [[MySQL]] databases, uses libmysqlcleint_r.||
-Martin Willi
+||[browser:trunk/src/libstrongswan/plugins/sqlite sqlite]||Database wrapper to access SQLite databases, uses libsqlite3.||
-Martin Willi
+||[browser:trunk/src/libstrongswan/plugins/curl curl]||Fetching of HTTP and other URLs using libcurl.||
-Martin Willi
+||[browser:trunk/src/libstrongswan/plugins/ldap ldap]||Fetching from LDAP servers using [[OpenLDAP]].||

Project

General

Profile

strongSwan

libstrongswan » History » Version 3