aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* | build libstrongswan if libimcv is builtAndreas Steffen2012-02-161-1/+1
| |
* | version bump to 4.6.2Andreas Steffen2012-02-161-1/+1
| |
* | fixed attest sql query in list_measurements()Andreas Steffen2012-02-151-1/+1
| |
* | Compiler warnings fixed.Tobias Brunner2012-02-142-2/+2
| |
* | pluto: Print expiry time more properly.Tobias Brunner2012-02-141-2/+3
| |
* | pluto: Drop support for legacy PSK format.Tobias Brunner2012-02-081-15/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Any line in ipsec.secrets starting with " or ' was treated as PSK without ID selectors by pluto. This prevented it from supporting DNs like "C=CH, O=Linux strongSwan, OU=Sales, CN=alice@strongswan.org" as ID selectors. PSKs defined in this legacy format can easily be updated by changing "thisIsASecret" into : PSK "thisIsASecret"
* | completed imc/imv-attestation settingsAndreas Steffen2012-02-071-1/+20
| |
* | adapted debug output check in openssl-ikev2/rw-eap-tls-only scenarioAndreas Steffen2012-02-071-1/+1
| |
* | Double check if a cached suite is available, overwrite any old suite stateMartin Willi2012-02-071-2/+3
| |
* | Some Doxygen fixes.Tobias Brunner2012-02-073-11/+11
| |
* | Fix TLS EAP-MSK derivation, uses different order of randoms than key expansionMartin Willi2012-02-071-0/+1
| |
* | Filter TLS suite MAC by HMAC algorithm, as the hash is not necessarily the sameMartin Willi2012-02-071-4/+4
| |
* | open RADIUS accounting port in firewallAndreas Steffen2012-02-061-0/+4
| |
* | added ikev2/rw-radius-accounting scenarioAndreas Steffen2012-02-0618-0/+406
| |
* | Update usage for all children in RADIUS accounting just before sending StopMartin Willi2012-02-061-1/+12
| |
* | Check if ClusterIP directory could be opened before enumerating itMartin Willi2012-02-061-17/+26
| |
* | version bump to 4.6.2rc1Andreas Steffen2012-02-051-1/+1
| |
* | ipsec attest adds and deletes key/component pairsAndreas Steffen2012-02-051-4/+21
| |
* | check if TNC client has a valid and registered AIKAndreas Steffen2012-02-055-25/+62
| |
* | reformulated some NEWS entriesAndreas Steffen2012-02-031-4/+6
| |
* | added openssl-ikev2/ecdsa-pkcs8 scenarioAndreas Steffen2012-02-0323-0/+286
| |
* | added ikev2/rw-pkcs8 scenarioAndreas Steffen2012-02-0318-0/+238
| |
* | version bump to 4.6.2dr4Andreas Steffen2012-02-021-1/+1
| |
* | Trigger DPD not before IKE_SA state gets updatedMartin Willi2012-02-021-6/+8
| |
* | Don't retransmit, rekey, reauth or DPD check SAs when in PASSIVE stateMartin Willi2012-02-021-0/+26
| |
* | Moved and clarified NEWS about PKCS#8 plugin.Tobias Brunner2012-02-011-3/+3
| |
* | Moved log message for unexpected ASN.1 objects to level 2.Tobias Brunner2012-02-011-1/+1
| | | | | | | | This avoids error messages if later builders can successfully decode something.
* | Added support for PKCS#5 v2 schemes when decrypting PKCS#8 files.Tobias Brunner2012-02-013-61/+323
| |
* | NEWS about pkcs8 plugin added.Tobias Brunner2012-02-011-0/+3
| |
* | Added support for encrypted PKCS#8 files (for some PKCS#5 v1.5 schemes).Tobias Brunner2012-02-013-4/+261
| |
* | Added support to parse PKCS#8 encoded ECDSA private keys.Tobias Brunner2012-02-013-12/+28
| |
* | OpenSSL plugin parses ECDSA private keys with explicitly specified EC ↵Tobias Brunner2012-02-011-9/+30
| | | | | | | | | | | | | | parameters. This is needed in case the key itself does not contain the parameters, which is the case for PKCS#8.
* | Add builder part for parameters from algorithmIdentifier.Tobias Brunner2012-02-012-1/+4
| |
* | Return parsed parameters from algorithmIdentifier if they are an OID (aka EC ↵Tobias Brunner2012-02-011-1/+1
| | | | | | | | | | | | | | named curve). Explicit EC parameters are not supported with this function, but before this change no parameters were actually ever returned.
* | Parse RSA private keys from PKCS#8 encoded blobs.Tobias Brunner2012-02-014-1/+151
| |
* | Added PKCS#8 stub plugin.Tobias Brunner2012-02-015-0/+143
| |
* | Added an option to load CA certificates without CA basic constraint.Tobias Brunner2012-02-012-4/+38
| | | | | | | | | | | | Enabling this option treats all certificates in ipsec.d/cacerts and ipsec.conf ca sections as CA certificates even if they do not contain a CA basic constraint.
* | Added TLS session resumption NEWSMartin Willi2012-02-011-0/+2
| |
* | Added RADIUS accounting NEWSMartin Willi2012-02-011-0/+3
| |
* | Added RADIUS accounting option to strongswan.conf manualMartin Willi2012-02-011-0/+3
| |
* | Support RADIUS accounting messages containing Framed-IP and ↵Martin Willi2012-01-304-0/+376
| | | | | | | | Inbound/Outbound-Octets
* | Open RADIUS accounting sockets to exchange accounting messagesMartin Willi2012-01-305-46/+91
| |
* | Support signing of RADIUS accounting messagesMartin Willi2012-01-303-10/+26
| |
* | RADIUS message constructor accepts a message code parameterMartin Willi2012-01-303-7/+8
| |
* | Disable crypto benchmarking if CLOCK_THREAD_CPUTIME_ID is not available.Tobias Brunner2012-01-301-0/+10
| |
* | Build libstrongswan if libfast gets builtMartin Willi2012-01-241-1/+1
| |
* | Cache list of plugin names to further simplify its usage.Tobias Brunner2012-01-198-73/+62
| | | | | | | | Also helpful for ipsec statusall to avoid having to enumerate plugins.
* | Log list of loaded plugins in main PKI help output.Tobias Brunner2012-01-191-0/+8
| |
* | Simplified logging of list of loaded plugins.Tobias Brunner2012-01-195-59/+22
| |
* | Function added to plugin_loader to get a list of the names of loaded plugins.Tobias Brunner2012-01-192-1/+34
| |
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-29 05:17:05 +0000