aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* Give processor_t more control over the lifecycle of a jobTobias Brunner2012-06-2526-169/+236
| | | | | | | | | | | Jobs are now destroyed by the processor, but they are allowed to reschedule themselves. That is, parts of the reschedule functionality already provided by callback_job_t is moved to the processor. Not yet fully supported is JOB_REQUEUE_DIRECT and canceling jobs. Note: job_t.destroy() is now called not only for queued jobs but also after execution or cancellation of jobs. job_t.status can be used to decide what to do in said method.
* Added a method to plugin_loader_t to add 'static' plugin featuresTobias Brunner2012-06-252-0/+115
| | | | | | | | This allows daemons and other components to register plugin features like those provided by plugins (following the same lifecycle). The added features are internally handled like they were added by a plugin.
* Make sure that all features of critical plugins are loadedTobias Brunner2012-06-251-5/+64
|
* Added an option to rename the ipsec script during installationTobias Brunner2012-06-257-40/+64
| | | | | | | Also rename the man page and adjust all references in the script, the man page and other files. Closes #194.
* Removed -o argument when creating .../ipsec.d with installTobias Brunner2012-06-251-1/+1
| | | | This should have been removed with 2b52d5cb41.
* Updated ipsec script man page after removing plutoTobias Brunner2012-06-251-85/+71
|
* Use mac_t and PRF and signer wrappers in cmac pluginTobias Brunner2012-06-258-443/+82
|
* Use mac_t and PRF and signer wrappers in xcbc pluginTobias Brunner2012-06-258-452/+91
|
* Make the hmac_t interface a generic interface for message authentication codesTobias Brunner2012-06-2511-132/+131
|
* Simplified creation of PRFs and signers in openssl and hmac pluginsTobias Brunner2012-06-252-136/+10
|
* Function to convert PRFs to hash algorithms addedTobias Brunner2012-06-252-0/+39
|
* hasher_algorithm_from_integrity() optionally returns truncation lengthTobias Brunner2012-06-253-7/+45
|
* Use simple wrappers for HMAC based PRF and signer in openssl pluginTobias Brunner2012-06-258-562/+132
|
* Use simple wrappers for HMAC based PRF and signer in hmac pluginTobias Brunner2012-06-258-524/+127
|
* Simple wrappers for HMAC based prf_t and signer_t implementations addedTobias Brunner2012-06-256-0/+395
|
* Refactored OpenSSL based HMAC implementationTobias Brunner2012-06-255-173/+382
|
* Adding OpenSSL HMAC signer functions to openssl pluginAleksandr Grinberg2012-06-254-1/+322
|
* Adding OpenSSL HMAC pseudo random functions to openssl pluginAleksandr Grinberg2012-06-254-1/+245
|
* Adding OpenSSL random number functions to openssl pluginAleksandr Grinberg2012-06-254-1/+159
|
* Fixed IPv6 source address lookupTobias Brunner2012-06-251-5/+43
| | | | | | | | | | | | | Because Linux kernels prior to 3.0 do not support RTA_PREFSRC for IPv6 routes we didn't use NLM_F_DUMP to get all routes. Still routes installed with policies are installed also for IPv6. So since only one route is returned without DUMP, and we ignore all routes from our own routing table, no source address was found during roaming if DST of the installed route included the IKE peer. With newer kernels we can now use DUMP as we did for IPv4 already, for older kernels we do so if our own routes are installed in a separate routing table, otherwise we still use GET.
* updated default configuration of UML hosts to 5.0.0Andreas Steffen2012-06-2514-72/+19
|
* added charon.cisco_unity to strongswan.conf.5 man pageAndreas Steffen2012-06-251-0/+3
|
* support Cisco Unity VIDAndreas Steffen2012-06-252-3/+11
|
* Enable xauth-generic by default but don't build it if IKEv1 is disabledTobias Brunner2012-06-251-1/+5
|
* Remove CREDITS from distributionTobias Brunner2012-06-251-1/+1
|
* The AUTHORS file is required by automakeTobias Brunner2012-06-251-0/+0
|
* LICENSE file updatedTobias Brunner2012-06-251-21/+8
|
* ldaphost and ldapbase ca section keywords are deprecatedTobias Brunner2012-06-254-8/+2
|
* Removed pluto-specifics from ipsec scriptTobias Brunner2012-06-251-75/+1
|
* README file cleaned up and updatedTobias Brunner2012-06-251-2117/+481
|
* Enforce uniqueids=keep based on XAuth identityMartin Willi2012-06-251-0/+6
|
* Don't send XAUTH_OK if a hook prevents SA to establishMartin Willi2012-06-251-4/+14
|
* Enforce uniqueids=keep only for non-XAuth Main/Agressive ModesMartin Willi2012-06-252-28/+28
|
* Show EAP/XAuth identity in "ipsec status", if availableMartin Willi2012-06-251-1/+1
|
* Use XAuth/EAP remote identity for uniqueness checkMartin Willi2012-06-253-4/+6
|
* Add missing XAuth name variable when complaining about missing XAuth backendMartin Willi2012-06-251-1/+1
|
* removed AUTHORS and CREDITSAndreas Steffen2012-06-252-110/+0
|
* some copyright additionsAndreas Steffen2012-06-231-5/+8
|
* update copyrightAndreas Steffen2012-06-231-6/+4
|
* version bump to 5.0.0Andreas Steffen2012-06-231-1/+1
|
* Fix SIGSEGV if kernel install fails during Quick Mode as responder.Tobias Brunner2012-06-221-4/+8
|
* adapted description to IKEv2Andreas Steffen2012-06-223-6/+5
|
* Fixed compile error because of charon->name in certexpire plugin.Tobias Brunner2012-06-211-0/+1
|
* fixed typoAndreas Steffen2012-06-201-1/+1
|
* added ipv6/rw-ip6-in-ip4-ikev1 scenarioAndreas Steffen2012-06-2019-0/+504
|
* added ipv6/rw-ip6-in-ip4-ikev2 scenarioAndreas Steffen2012-06-2014-0/+440
|
* Select requested virtual IP family based on remote TS, if no local TS availableMartin Willi2012-06-201-1/+12
|
* upgraded UML options to 5.0.0Andreas Steffen2012-06-192-8/+9
|
* Doxygen fix in PKCS#7 wrapperTobias Brunner2012-06-191-1/+1
|
* sleep one second moreAndreas Steffen2012-06-191-1/+1
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-20 21:06:00 +0000