aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* Use wildcards to gather plugin source files.Tobias Brunner2010-03-193-178/+67
|
* Adding support for the build of libcharon (and charon) on Android.Tobias Brunner2010-03-193-6/+30
|
* Do not link libcharon to libstrongswan.Tobias Brunner2010-03-191-1/+1
| | | | | | Linking to libstrongswan breaks the integrity-tests because libtool relinks libcharon to libstrongswan on install, thus changing the checksum.
* Explicitly link charon to libstrongswan.Tobias Brunner2010-03-191-1/+1
| | | | Also fixed the reference to the pthread library.
* Don't indirectly link dependent libraries.Gerd von Egidy2010-03-193-3/+3
| | | | | | | | | | | | | | | The default behaviour for ld allows users to 'indirectly' link to required objects/libraries through intermediate objects/libraries. While this is convenient, it can also be dangerous because it makes your program's dependencies tied to the dependencies of other objects. Beginning with Fedora 13 this will be changed and you need to explicitly link all dependent libraries. More details can be found here: http://fedoraproject.org/wiki/UnderstandingDSOLinkChange This patch fixes all such cases in strongSwan.
* Make integrity tests compatible with libcharon.Tobias Brunner2010-03-192-1/+7
| | | | | This does currently not work because libtool relinks libcharon on install, thus changing the checksum.
* Replacing the original charon with a small wrapper around libcharon.Tobias Brunner2010-03-192-0/+427
|
* Convert charon into libcharon.Tobias Brunner2010-03-1940-508/+182
|
* Moving charon to libcharon.Tobias Brunner2010-03-19480-0/+0
|
* Removed strayed code fragmentMartin Willi2010-03-191-20/+4
|
* ipsec pool --batch commandHeiko Hund2010-03-191-60/+200
| | | | | | | | Introduce the --batch command which reads several ipsec pool commands and their arguments from a file or STDIN. Useful if you need to run serveral commands atomically from a configuration daemon or likewise. Signed-off-by: Heiko Hund <hhund@astaro.com>
* ipsec pool error return statusHeiko Hund2010-03-191-49/+51
| | | | | | | Fix the error return status of the ipsec pool command. Also make --del for attributes succeed if no --server option was given. Signed-off-by: Heiko Hund <hhund@astaro.com>
* ipsec pool --replace commandHeiko Hund2010-03-191-23/+61
| | | | | | | | | Introduce the pool --replace command as an alternative to --add. Also change the current behavior of allowing duplicate pool names so that, --add with an existing name fails and --replace removes the existing pool before adding the new one. Signed-off-by: Heiko Hund <hhund@astaro.com>
* --addresses option for ipsec pool --add commandHeiko Hund2010-03-191-5/+187
| | | | | | | | | Introduce the --addresses option for --add that can be used to add a pool containing non-contiguous addresses. Additionally it allows to preclaim certain addresses for certain roadwarrior IDs. See the second chunk of the patch for a more detailed description. Signed-off-by: Heiko Hund <hhund@astaro.com>
* Introduced ipsec.conf NTLM keyword for NT hashesMartin Willi2010-03-171-0/+1
|
* EAP-MSCHAPv2 can use stored NT hashes in addition to plaintext passwordsMartin Willi2010-03-172-40/+59
|
* lookup exclusion for several arbitrary routing tablesThomas Egerer2010-03-171-0/+70
|
* Fixing a compiler warning when building with -Wextra.Tobias Brunner2010-03-161-1/+1
|
* setting the two most significant bits assures an RSA modulus of maximum bit sizeAndreas Steffen2010-03-151-2/+2
|
* we don't accept a serial number with leading zeroesAndreas Steffen2010-03-142-0/+10
|
* Reordered the name and sname construction.Tobias Brunner2010-03-121-4/+4
|
* Fixed a bug in pluto's x509 handling.Tobias Brunner2010-03-121-2/+2
| | | | | This bug would have lead to a segmentation fault, if no public key could have been extracted from a certificate.
* deleted old strongSwan VIDsAndreas Steffen2010-03-122-86/+15
|
* enable build of socket-default pluginAndreas Steffen2010-03-112-0/+6
|
* mixed IKEv1/IKEv2 scenarios require socket-rawAndreas Steffen2010-03-112-2/+2
|
* Added a very minimalistic SMTP client to send mails via a local EximMartin Willi2010-03-113-1/+241
|
* Do not disable the default-socket if it was enabled explicitlyMartin Willi2010-03-111-2/+3
|
* Set a xy_given variable for a --enable/disable-xy optionMartin Willi2010-03-111-4/+8
| | | | | This additional variable allows a check if an option was explicitly given or implicitly set using the default.
* Add a getter for the HTTP refererMartin Willi2010-03-102-0/+16
|
* fix 64bit issue with time_t from databaseAndreas Steffen2010-03-101-2/+8
|
* Adding socket-default to the plugin list in all test cases.Tobias Brunner2010-03-09343-343/+343
|
* Provide the Diffie Hellman parameters from a central location, so that we do ↵Tobias Brunner2010-03-095-733/+380
| | | | | | | | not have to replicate them in every plugin that implements the DH interface. The main reason for this change is that Android's libcrypto does not include the get_rfcX_prime_Y functions by default. Therefore we would have had to replicate the primes a third time.
* Adding the OpenSSL plugin to the Android build.Tobias Brunner2010-03-083-2/+20
|
* Fixing integrity tests after renaming the plugin constructors.Tobias Brunner2010-03-081-2/+12
|
* Adding a helper function that translates single characters in a string.Tobias Brunner2010-03-083-19/+32
|
* Replaced the deprecated RSA_generate_key with RSA_generate_key_ex.Tobias Brunner2010-03-081-2/+25
|
* Implemented the PRF_KEYED_SHA1 algorithm in the openssl pluginMartin Willi2010-03-086-12/+208
|
* Removed accidentally commited files from tree, ignore tarballs and patchesMartin Willi2010-03-083-542/+4
|
* removed unwanted commitsAndreas Steffen2010-03-071-1/+1
|
* critical keyUsage extension must be parsedAndreas Steffen2010-03-074-1/+546
|
* recognize strongSwan VIDAndreas Steffen2010-03-071-47/+53
|
* set Certificate Sign and CRL Sign flags in keyUsage extension if CA is trueAndreas Steffen2010-03-072-5/+14
|
* Make Android.mk depend on configure.in, so it gets rebuilt if the version ↵Tobias Brunner2010-03-051-1/+1
| | | | number got changed.
* parser.l includes y.tab.h, so it must be built firstTobias Brunner2010-03-051-1/+1
|
* Ignore the generated y.output.Tobias Brunner2010-03-052-351/+1
|
* Do not hardcode the path to the strongSwan sources.Tobias Brunner2010-03-052-4/+5
|
* Ignore the generated Android.mkTobias Brunner2010-03-051-0/+1
|
* Generate the main Android.mk, so the version number is not hardcoded.Tobias Brunner2010-03-052-2/+9
| | | | | We include the generated file in the distribution, so users won't have run configure if they are building for Android.
* Build libstrongswan before building any plugins during the non-monolithic ↵Tobias Brunner2010-03-051-0/+4
| | | | build (as it was before).
* scepclient still depends on libfreeswanMartin Willi2010-03-051-1/+1
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 18:55:13 +0000