aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/config
Commit message (Collapse)AuthorAgeFilesLines
...
* restructured file layoutMartin Willi2007-04-1022-2622/+2579
| | | | | | | | | new configuration structure: peer_cfg: configuration related to a peer (authenitcation, ...= ike_cfg: config to use for IKE setup (proposals) child_Cfg: config for CHILD_SA (proposals, traffic selectors) a peer_cfg has one ike_cfg and multiple child_cfg's stroke now uses fixed count of threads
* removed list_crls() and list_ocsp() methodsAndreas Steffen2007-04-061-57/+2
|
* support cachecrls=yesAndreas Steffen2007-04-051-5/+13
|
* implemented dynamic http-based CRL fetchingAndreas Steffen2007-04-031-8/+3
|
* merged changes from eap-aka trunkMartin Willi2007-03-281-15/+48
|
* is_trusted() adds cert_status to cert_to_be_trustedAndreas Steffen2007-03-281-3/+37
|
* implemented ipsec listocsp functionAndreas Steffen2007-03-271-5/+32
|
* adjusted rekey-retry delay and jitterMartin Willi2007-03-211-2/+2
|
* fixed some rekey collision issuesMartin Willi2007-03-212-2/+32
| | | | added retry with jitter when rekeying fails
* renamed keyingtries attributeMartin Willi2007-03-202-13/+10
|
* added AES-192/256 proposals to IKEMartin Willi2007-03-131-0/+2
|
* results from the single responses is stored in the corresponding certinfo_t ↵Andreas Steffen2007-03-121-2/+2
| | | | structs
* moved credential_store.h from charon/config/credentials to libstrongswanAndreas Steffen2007-03-092-286/+1
|
* fixed a certinfo_t memory leak in verify()Andreas Steffen2007-03-091-1/+4
|
* ocsp signer certificate and ocsp response signature can be verifiedAndreas Steffen2007-03-082-3/+69
|
* fixed call of add_auth_certificate()Andreas Steffen2007-03-082-7/+9
|
* generalized get_ca_certificate() to get_auth_certificate(auth_flags)Andreas Steffen2007-03-082-7/+9
|
* support if ocsp signing certificatesAndreas Steffen2007-03-082-61/+97
|
* removed SHA2 kernel proposals from default, the kernel doesn't support them yetMartin Willi2007-03-081-6/+0
|
* added more debugging output for policy lookupMartin Willi2007-03-081-3/+17
| | | | | returning a (dummy) policy even when TS does not match, so we can properly send a TS_UNACCEPTABLE
* added SHA2 MAC and PRF to default proposalMartin Willi2007-03-081-23/+58
|
* fixed traffic selector redundancy removal code (not completely tested)Martin Willi2007-03-062-7/+17
|
* add crl and ocsp uris to linked list after partial verificationAndreas Steffen2007-03-061-22/+35
|
* some cleanupsMartin Willi2007-03-051-5/+1
| | | | | | not assigning %any virtual IPs to peer anymore
* fixed double free bugMartin Willi2007-03-055-4/+77
|
* refactored ca_info_tAndreas Steffen2007-03-032-166/+115
|
* added support for 0.0.0.0/0 traffic selectorsMartin Willi2007-03-014-31/+86
| | | | fixed routing to make correct 0.0.0.0/0 routes
* merged tasking branch into trunkMartin Willi2007-02-286-68/+136
|
* added support of OCSP accessLocationsAndreas Steffen2007-02-251-5/+17
|
* full support of ca info recordsAndreas Steffen2007-02-242-22/+111
|
* support of ca info recordsAndreas Steffen2007-02-232-0/+45
|
* merged EAP framework from branch into trunkMartin Willi2007-02-124-15/+37
| | | | | includes a lot of other modifications
* %T requires time_t ptrAndreas Steffen2007-02-081-1/+1
|
* added support for NULL encryption in ESPMartin Willi2007-02-081-1/+5
|
* include NO_EXT_SEQUENCE_NUMBER in default proposalMartin Willi2007-02-081-0/+6
|
* support for transport in create_child_saMartin Willi2007-01-082-2/+15
| | | | include TRANSPORT/TUNNEL information in statusall
* added support for transport mode and (experimental!) BEET modeMartin Willi2006-12-214-13/+65
| | | | | support for the type=transport/tunnel parameter in charon
* implemented reauthentication using the new reauth=yes|no parameter Martin Willi2006-12-192-3/+28
|
* fixed output of proto/port selectorsAndreas Steffen2006-11-021-33/+38
|
* cosmeticsAndreas Steffen2006-11-011-3/+3
|
* better split up of library files "types.h" & "definitions.h"Martin Willi2006-10-3116-47/+23
| | | | | | | | | centralized all printf specifier character definitions reuse of arginfo handlers more cleanups fixed more AMD64 issues added DEBUG_LEVEL compile flag to exclude DBGn() statements
* preparations to include certreqs in policy decisionsAndreas Steffen2006-10-312-15/+19
|
* moved typedefs to beginning of files to solve some include problemsMartin Willi2006-10-3013-100/+46
| | | | | | | splitted authenticator to have a separate implementation for each auth_method_t using va_copy to clone va_lists, should fix proplems on AMD64 some other cleanups
* support of certreq payload in IKE_AUTH messagesAndreas Steffen2006-10-282-0/+39
|
* added method get_ca_certificate()Andreas Steffen2006-10-282-10/+54
|
* added methods get_my_ca() and get_other_ca()Andreas Steffen2006-10-281-0/+18
|
* added methods get_my_ca() and get_other_ca()Andreas Steffen2006-10-281-2/+22
|
* improved signal handling and emittingMartin Willi2006-10-265-59/+59
|
* removed deprecated iterator methods (has_next & current)Martin Willi2006-10-246-88/+50
| | | | added iterator hook to manipulate iterator the clean way
* linked list cleanupsMartin Willi2006-10-246-122/+19
| | | | | added list methods invoke(), destroy_offset(), destroy_function() simplified list destruction when destroying its items
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 18:31:47 +0000