aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* scepclient: Fixed Makefile after removing enable-smartcard configure option.Tobias Brunner2012-06-131-6/+0
|
* Use proper defines for IPV6_PKTINFO on Mac OS X Lion and newer.Tobias Brunner2012-06-131-0/+2
|
* Some updates to the INSTALL document.Tobias Brunner2012-06-131-85/+58
|
* Removed remaining pluto related configure options.Tobias Brunner2012-06-131-21/+3
|
* starter: Print additional help texts for selected deprecated keywords.Tobias Brunner2012-06-124-6/+25
|
* starter: Improved how deprecated keywords are handled.Tobias Brunner2012-06-124-7/+99
| | | | We only throw a warning now instead of rejecting the config.
* Revert "starter: Don't treat unsupported keywords as fatal errors just ↵Tobias Brunner2012-06-121-3/+3
| | | | | | report them." This reverts commit e55876a657ae9d4bbf14320e5a14f86cc5c31c7f.
* NEWS about specifying trustchain HASH algorithm requirementsMartin Willi2012-06-121-0/+7
|
* Add documentation for signature hash algorithm enforcing to man ipsec.confMartin Willi2012-06-121-4/+11
|
* Added signature scheme options left/rightauthMartin Willi2012-06-121-11/+99
|
* Support multiple different public key strength types in constraintsMartin Willi2012-06-121-41/+38
|
* Add signature schemes to auth_cfg during trustchain validationMartin Willi2012-06-125-19/+45
|
* certificate_t->issued_by takes an argument to receive signature schemeMartin Willi2012-06-1216-24/+68
|
* Define auth_cfg rules for signature schemesMartin Willi2012-06-122-0/+53
|
* starter: Fixed parsing of left|right=%any.Tobias Brunner2012-06-121-1/+3
|
* deleted IKEv1 charon-pluto interoperability scenariosAndreas Steffen2012-06-12730-9777/+0
|
* starter: Fix comparison of connections.Tobias Brunner2012-06-111-3/+4
|
* starter: Removed all unsupported keywords.Tobias Brunner2012-06-117-203/+26
|
* starter: Don't treat unsupported keywords as fatal errors just report them.Tobias Brunner2012-06-111-3/+3
|
* Bye bye Pluto!Tobias Brunner2012-06-11180-69881/+41
| | | | | Charon will take over IKEv1 duties from here. This also removes libfreeswan and whack.
* _copyright: Replicate copyright text here instead of calling libfreeswan.Tobias Brunner2012-06-112-4/+34
|
* starter: Remove all ties to pluto/libfreeswan.Tobias Brunner2012-06-1110-46/+25
| | | | Moved some types/constants in the process.
* starter: Use custom type for SA specific options (flags).Tobias Brunner2012-06-114-22/+36
|
* starter: Parse left|rightprotoport directly in confread.c.Tobias Brunner2012-06-113-6/+53
|
* starter: No special handling for left|rightsubnet, just pass it on as string.Tobias Brunner2012-06-114-39/+1
|
* starter: Use host_t to parse left|rightsourceip.Tobias Brunner2012-06-111-18/+17
| | | | Also for the yet unused natip option.
* starter: Remove left|rightsubnetwithin option (charon narrows ↵Tobias Brunner2012-06-116-25/+0
| | | | left|rightsubnet down accordingly).
* starter: Don't resolve any addresses in starter.Tobias Brunner2012-06-116-129/+10
| | | | Also removed remains of some unknown iface option.
* starter: Removed pfs and pfsgroup options (handled via esp option).Tobias Brunner2012-06-115-28/+2
|
* starter: Store mode of the IPsec SA/policy in a separate member.Tobias Brunner2012-06-114-51/+32
|
* starter: Use custom type to mark seen keywords.Tobias Brunner2012-06-113-23/+27
|
* starter: Remove left|rightnexthop option.Tobias Brunner2012-06-116-26/+0
| | | | Charon does this lookup dynamically.
* Implement strdupnull() macro as static inline function.Tobias Brunner2012-06-111-1/+4
| | | | This avoids compiler warnings if the argument is a const char*.
* starter: Replaced all usages of clone_str() with strdupnull().Tobias Brunner2012-06-113-19/+19
|
* starter: Parse authby as string.Tobias Brunner2012-06-114-61/+29
|
* starter: Remove main parts of pluto support (invoke, whack).Tobias Brunner2012-06-117-966/+47
|
* starter: Drop support for %defaultroute.Tobias Brunner2012-06-1110-352/+16
|
* starter: Migrated logging to libstrongswan.Tobias Brunner2012-06-1114-550/+285
|
* starter: Remove unneeded starter_exec function.Tobias Brunner2012-06-115-78/+4
|
* scepclient: Option added to read PKCS#10 certificate request from a file.Tobias Brunner2012-06-112-11/+30
|
* scepclient: Option added to read self-signed certificate from a file.Tobias Brunner2012-06-112-21/+53
|
* scepclient: Generate uppercase transaction ID.Tobias Brunner2012-06-111-1/+1
|
* scepclient: Use HTTP 1.0 for all requests.Tobias Brunner2012-06-111-0/+2
|
* scepclient: Options added to specify digest/signature algorithms.Tobias Brunner2012-06-112-27/+92
| | | | | Also changed the defaults to DES/MD5 as that's what should be used if GetCACaps is not used to learn the issuers capabilities.
* Added function to convert integrity algorithms to hash algorithms (if based ↵Tobias Brunner2012-06-112-4/+50
| | | | on one).
* Properly encode 0 in ASN.1.Tobias Brunner2012-06-111-10/+7
| | | | | According to X.690 an INTEGER object always has at least one content octet.
* Don't use chunk_skip() in asn1_length().Tobias Brunner2012-06-111-1/+2
| | | | | | | | chunk_skip() returns chunk_empty if the length of the chunk is equal to the number of bytes to skip, this is problematic as asn1_length() modifies the original chunk. asn1_parser_t for instance uses the modified chunk to later calculate the length of the resulting ASN.1 object which produces incorrect results if it is based on chunk_empty.
* Changed memory management and call logic in PKCS#7 parser/generator.Tobias Brunner2012-06-112-85/+86
|
* Changed memory management and attribute handling in PKCS#9 wrapper.Tobias Brunner2012-06-113-112/+40
|
* scepclient: Also number CA certificates in case there is more than one.Tobias Brunner2012-06-112-14/+51
| | | | Also, only number them if there are multiple certificates.
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-21 18:21:44 +0000