aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* Added support for parsing NameConstraints in x509 pluginMartin Willi2011-01-051-0/+59
|
* Added name constraint enumerator to x509 interfaceMartin Willi2011-01-053-1/+38
|
* Migrated x509_cert_t to INIT/METHOD macrosMartin Willi2011-01-051-144/+88
|
* Moved X509 pathlen constraint checking to constraints pluginMartin Willi2011-01-052-17/+29
|
* Added plugin stub for advanced X509 constraint checkingMartin Willi2011-01-057-0/+242
|
* Added a hook to reset ESP sequence numbersMartin Willi2011-01-052-1/+159
|
* Accept a suffix to differentiate x509, crl, ecdsa and rsa filesMartin Willi2011-01-051-7/+7
|
* Use strncaseeq instead of strncasecmpMartin Willi2011-01-055-5/+5
|
* Added a strncaseeq variant to the string comparison macrosMartin Willi2011-01-051-1/+6
|
* Added tfc_padding option, changes signature to master changesMartin Willi2011-01-051-1/+5
|
* CRL/OCSP validation stores trustchain information in auth_cfgMartin Willi2011-01-051-17/+31
|
* Key strength checking stores all key sizes in auth_cfg, verifies all in ↵Martin Willi2011-01-052-75/+84
| | | | complies()
* Install "ipsec" script with tools or conftestMartin Willi2011-01-052-1/+6
|
* Use subject, not issuer, of CRL issuing certificateMartin Willi2011-01-051-1/+1
|
* CRLSign keyUsage or CA basicConstraint are sufficient for CRL validationMartin Willi2011-01-052-3/+3
|
* Parse and encode crlSign keyUsage flag in x509 pluginMartin Willi2011-01-051-10/+71
|
* pki tool shows and builds crlSign keyUsageMartin Willi2011-01-053-2/+14
|
* Added a flag for X509 CRLSign keyUsageMartin Willi2011-01-051-0/+2
|
* Remove x509_flag_names, flags do not work with ENUM()Martin Willi2011-01-053-35/+1
|
* Use certificate CRLIssuer information to look up cacched CRLs or CDPsMartin Willi2011-01-051-50/+88
|
* Added --crlissuer option to pki --issueMartin Willi2011-01-052-19/+26
|
* Added support for CRL Issuers to x509 and OpenSSL pluginsMartin Willi2011-01-058-70/+269
|
* Generate payload to rebuild_auth, works with injected unknown payloadsMartin Willi2011-01-051-13/+17
|
* Move rebuild_auth functionality to a standalone hookMartin Willi2011-01-053-215/+259
| | | | This reverts commit 3c12b239fd55aa36c59eb60224d27af8b8d915d1.
* Added key strength constraints support to conftestMartin Willi2011-01-051-0/+11
|
* Added key strength constraints for RSA or ECDSA trustchainsMartin Willi2011-01-053-0/+97
|
* Implemented hook to log traffic selectorsMartin Willi2011-01-052-1/+88
|
* The set_reserved() hook rebuilds AUTH if it mangles ID payload fieldsMartin Willi2011-01-051-33/+214
|
* Include the used reserved bytes from ID payloads in AUTH calculationMartin Willi2011-01-0512-40/+132
|
* Migrated psk/pubkey_authenticators to INIT/METHOD macrosMartin Willi2011-01-054-84/+83
|
* Extended set_reserved hook to mangle sa_payload substructuresMartin Willi2011-01-051-42/+121
|
* Added substructure enumerators to sa_payload, proposal_substructureMartin Willi2011-01-054-0/+28
|
* Moved check if packet already encoded to ike_sa, avoids message() hook ↵Martin Willi2011-01-053-17/+16
| | | | invocation twice
* The set_ike_version hook supports version flag manglingMartin Willi2011-01-051-0/+11
|
* Added a message method to set the "higher version supported" flagMartin Willi2011-01-054-0/+33
|
* Implemented hook to toggle initiator flag in IKE headerMartin Willi2011-01-052-1/+88
|
* Implemented a hook to set reserved bitsMartin Willi2011-01-052-1/+167
|
* Added reserved bit mangling wrapper functions to messageMartin Willi2011-01-052-1/+64
|
* Use payload_get_field() to look up payload fieldsMartin Willi2011-01-051-10/+4
|
* Implemented a generic payload field lookup functionMartin Willi2011-01-052-0/+30
|
* Reserved field get parsed/generated like any other bit/byte fieldMartin Willi2011-01-052-81/+12
|
* Added member fields for reserved bits and bytes in all payloadsMartin Willi2011-01-0519-141/+272
|
* Migrated vendor_id_payload to INIT/METHOD macrosMartin Willi2011-01-052-69/+56
|
* Migrated ts_payload to INIT/METHOD macrosMartin Willi2011-01-052-185/+110
|
* Use enumerator instead of deprecated iteratorMartin Willi2011-01-051-13/+9
|
* Migrated transform_substructure to INIT/METHOD macrosMartin Willi2011-01-052-254/+101
|
* Removed obsolete clone mehtod from proposal_substructureMartin Willi2011-01-052-37/+0
|
* Migrated transform_attribute to INIT/METHOD macrosMartin Willi2011-01-051-144/+77
|
* Migrated traffic_selector_substructre to INIT/METHOD macrosMartin Willi2011-01-051-97/+67
|
* Migrated notify_payload to INIT/METHOD macrosMartin Willi2011-01-051-121/+80
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-11 19:13:04 +0000