aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/credentials
Commit message (Collapse)AuthorAgeFilesLines
...
* reentrant save cert_cacheMartin Willi2008-03-281-12/+65
|
* caching of CRLsMartin Willi2008-03-282-127/+124
|
* replaced get_public() by create_public_enumerator() to try multiple public ↵Martin Willi2008-03-272-120/+219
| | | | keys for signature verification
* use trusted self-signed root CA certificates as trust anchor onlyMartin Willi2008-03-271-6/+16
|
* implemented cert cache flushing, ipsec purgeocspMartin Willi2008-03-274-0/+48
|
* caching of ocsp responses (experimental), no crl caching yetMartin Willi2008-03-262-173/+149
|
* fixed rightca= constraint checkingMartin Willi2008-03-261-21/+58
| | | | implemented rightca= for intermediate CAs we do not have the certificate at config load
* fixed auth_info_t.equals()Martin Willi2008-03-261-1/+1
|
* added equals() method to peer_cfg, ike_cfg, proposals, auth_infoMartin Willi2008-03-262-0/+112
| | | | | | allows easier merging of ipsec.conf connections replaced some iterators through enumerators made proposals algorithm_t private using enumerator
* shortened debug outputAndreas Steffen2008-03-211-2/+2
|
* detect trusted self-signed before trust chain verificationAndreas Steffen2008-03-211-4/+14
|
* optimized debug output of credential_manager.cAndreas Steffen2008-03-211-21/+21
|
* cert_cache_t caches subject-issuer relations and subject certificatesMartin Willi2008-03-203-3/+292
| | | | ocsp/crl do not benefit yet due missing lookup function
* fallback to random end entity certificate if trustchain building failsMartin Willi2008-03-201-3/+18
|
* added support for certificate requests for not yet known CAsMartin Willi2008-03-203-0/+25
|
* fixed verification of preinstalled certificatesMartin Willi2008-03-201-1/+1
|
* more trustchain verification improvementsMartin Willi2008-03-201-99/+103
| | | | should fix crl-revoked and two-certs scenarios
* refactored trustchain verification, this should fix #33Martin Willi2008-03-195-329/+526
| | | | moved auth_info/ocsp_response credset wrapper to separate files
* increased debug level in trust chain verification for auditing purposesAndreas Steffen2008-03-191-31/+50
|
* log nextUpdate of crls and ocsp responsesAndreas Steffen2008-03-191-12/+36
|
* fixed stupid bug in fetch_ocsp()Andreas Steffen2008-03-191-1/+1
|
* attempt to achieve consistent debugging outputAndreas Steffen2008-03-191-31/+41
|
* fixed CRL check return value on revoked certificatesMartin Willi2008-03-191-29/+19
| | | | | fixed possible refcounting bugs generic return_null() implementation
* fixed compiler warningMartin Willi2008-03-181-0/+1
|
* made is_newer() a certificate_t methodAndreas Steffen2008-03-181-77/+120
|
* refactored buggy trustchain building, fixed refcount bugMartin Willi2008-03-141-105/+91
|
* merged the modularization branch (credentials) back to trunkMartin Willi2008-03-135-0/+2179
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-03 09:44:46 +0000