aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/plugins/stroke/stroke_cred.c
Commit message (Collapse)AuthorAgeFilesLines
* Moving charon to libcharon.Tobias Brunner2010-03-191-1175/+0
|
* Introduced ipsec.conf NTLM keyword for NT hashesMartin Willi2010-03-171-0/+1
|
* Separated the public interfaces of the threading primitives.Tobias Brunner2009-12-231-1/+1
|
* Moved mutex.c to a separate folder in order to cleanly wrap other threading ↵Tobias Brunner2009-12-231-1/+1
| | | | primitives (and utils/mutex.h is now threading.h).
* Passing other as NULL should not always result in a match if me matchesMartin Willi2009-11-121-2/+2
|
* Stroke plugin interprets NULL identities as ID_ANY in shared key lookupMartin Willi2009-10-121-3/+9
|
* certificate subject DNs are in double quotesAndreas Steffen2009-09-231-5/+5
|
* streamlining of credential loading debug outputAndreas Steffen2009-09-231-6/+6
|
* shortened file loading debug outputAndreas Steffen2009-09-221-23/+22
|
* Credential backends use has_fingerprint() methods to select keys/certificatesMartin Willi2009-09-211-6/+2
|
* Correctly serve certificates if CERT_ANY requestedMartin Willi2009-09-211-1/+1
|
* Return certificates of requested kind onlyMartin Willi2009-09-211-58/+4
|
* Implemented support for preinstalled PGP certificates in charonMartin Willi2009-09-151-4/+3
|
* removed trailing spaces ([[:space:]]+$)Martin Willi2009-09-041-51/+51
|
* fixed open failure debug message in load_secretsMarius Tomaschewski2009-09-041-1/+1
|
* Fixed load_secrets to acquire/release lock in level 0 onlyMarius Tomaschewski2009-09-031-2/+6
| | | | | The write_lock call fails with EDEADLK and unlocks in the next recursion level.
* use only KEY_ID_PUBKEY_SHA1 fingerprint charon internallyMartin Willi2009-08-261-17/+9
|
* updated stroke plugin to fingerprinting APIMartin Willi2009-08-261-36/+34
|
* added support for %prompt-ing private key passhprases in strokes "ipsec secrets"Martin Willi2009-08-261-10/+76
|
* make use of the pem helper plugin to load credentialsMartin Willi2009-08-261-18/+49
|
* OpenSolaris defines MUTEX_DEFAULT therefore we rename the members of the ↵Tobias Brunner2009-08-141-1/+1
| | | | enums mutex/condvar/rwlock_type_t.
* added support for ipsec.secrets "include" directiveMartin Willi2009-08-061-13/+81
|
* moved very stroke specific x509 flag handling out of core libraryMartin Willi2009-05-181-6/+35
|
* removing svn keyword $Id$ from all filesTobias Brunner2009-04-301-2/+0
|
* migrated write_chunk() to chunk_write()Andreas Steffen2009-04-201-10/+3
|
* merged multi-auth branch back into trunkMartin Willi2009-04-141-19/+6
|
* memleak fixed when reading smartcard secretsTobias Brunner2009-03-121-3/+4
|
* add support for smartcards in charon by using the ENGINE API provided by ↵Tobias Brunner2008-12-031-7/+83
| | | | OpenSSL, based on patches by Michael Roßberg.
* wrapped all pthread_rwlock_t in profilable rwlock_tMartin Willi2008-11-051-19/+18
|
* refactored credential builderMartin Willi2008-09-021-0/+1
| | | | | | | | | allow enumeration of matching builders try a second builder if the first one fails builder clones resources internally on demand caller frees added resources on failure and success stricter handling of non-supported build parts
* ported parts of two-sim branchMartin Willi2008-08-221-11/+18
| | | | | | eap_identity parameter to exchange in eap_identity some auth_info/peer_cfg refactorings fixed some bugs, introduced new ones
* using shared read locks in credential set enumerators to avoid deadlocksMartin Willi2008-07-301-22/+23
|
* changed ipsec.secrets keyword EC to ECDSATobias Brunner2008-06-241-1/+1
|
* ECDSA with OpenSSLTobias Brunner2008-06-101-11/+4
|
* implement basic listing of attribute certificatesAndreas Steffen2008-05-221-7/+40
|
* handle ID_KEY_ID as a ID_PUBKEY_SHA1 for authenticationMartin Willi2008-05-141-2/+10
|
* added _GNU_SOURCE and limits.h to build against glibc-2.8Martin Willi2008-04-241-0/+1
|
* replaced freeswan ttodata by own chunk_{to|from}_{hex|base64} functionsMartin Willi2008-04-241-19/+15
|
* changed logging of crl writing to old styleAndreas Steffen2008-04-171-4/+4
|
* respecting ipsec.conf cachecrls= optionMartin Willi2008-04-171-1/+20
|
* caching of CRLs to /etc/ipsec.d/crls Martin Willi2008-04-171-10/+41
|
* extended credential_set_t interface by a cache_cert() methodMartin Willi2008-04-171-0/+9
| | | | allows persistent or in-memory caching of fetched certificates
* added API for random number generators, served through credential factoryMartin Willi2008-04-151-3/+3
| | | | ported randomizer_t to a rng_t on top of /dev/(u)random (plugin random)
* log shared secret with debug level 4Andreas Steffen2008-04-061-1/+1
|
* workaround for parsing IPv6 PSKs requires extract_last_token()Andreas Steffen2008-04-011-1/+1
|
* fixed compile error if --enable-p2p is setMartin Willi2008-03-261-1/+1
|
* splitted stroke plugin to several files:Martin Willi2008-03-261-0/+887
socket: reads messages from socket, dispatching config: process add/del conn, serves configs through backend_t control: controlling of the daemon (up/down/route/...( cred: credential loading, serves creds through credential_set_t ca: ca sections from ipsec.conf, serves cdp's through credential_set_t list: log status information to stroke console (status/statusall/list*) shared_key: shared key implementation for keys read from ipsec.secrets plugin: registers stroke plugin and starts socket w/ thread
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-28 17:06:13 +0000