aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/plugins/stroke
Commit message (Collapse)AuthorAgeFilesLines
* stroke parses and lists AC groupsAndreas Steffen2008-09-172-8/+63
|
* refactored credential builderMartin Willi2008-09-021-0/+1
| | | | | | | | | allow enumeration of matching builders try a second builder if the first one fails builder clones resources internally on demand caller frees added resources on failure and success stricter handling of non-supported build parts
* streamlined ipsec listalgs outputAndreas Steffen2008-08-291-2/+3
|
* crypto_factory algorithm enumeration APIMartin Willi2008-08-281-0/+56
| | | | implementation of "ipsec listalgs"
* ipsec statusall lists eap_type and eap_identityAndreas Steffen2008-08-261-1/+19
|
* completed support of AUTHZ_CA_CERT and AUTHZ_CA_CERT_NAME attributesAndreas Steffen2008-08-262-16/+62
|
* list CA restrictions in ipsec statusallAndreas Steffen2008-08-251-9/+43
|
* ported parts of two-sim branchMartin Willi2008-08-224-22/+66
| | | | | | eap_identity parameter to exchange in eap_identity some auth_info/peer_cfg refactorings fixed some bugs, introduced new ones
* increased stroke socket backlog to 10Martin Willi2008-07-301-1/+1
|
* using shared read locks in credential set enumerators to avoid deadlocksMartin Willi2008-07-302-37/+40
|
* cosmeticsAndreas Steffen2008-07-221-1/+1
|
* ipsec status lists IPCOMP CPIsAndreas Steffen2008-07-221-1/+11
|
* consistent logging of SPIs and CPIsAndreas Steffen2008-07-221-2/+2
|
* introduced an additional bus->signal parameter for signal specific dataMartin Willi2008-07-181-1/+1
| | | | added SIG_IKE/SIG_CHD macros for signal emitting
* update_peerid() does not accept %any as a certificate's subjectAltNameAndreas Steffen2008-07-091-1/+1
|
* ipsec statusall displays dpd optionsAndreas Steffen2008-07-021-2/+18
|
* added a "ipsec down-srcip <start> [<end>]" command to terminate IKE_SAs by ↵Martin Willi2008-07-013-0/+95
| | | | remote virtual ip
* show authentication method in ipsec statusallAndreas Steffen2008-06-301-1/+9
|
* enumerating loaded plugins in "ipsec statusall"Martin Willi2008-06-241-1/+10
|
* changed ipsec.secrets keyword EC to ECDSATobias Brunner2008-06-241-1/+1
|
* cosmeticsAndreas Steffen2008-06-231-5/+5
|
* fixed "double-close" of stroke fd resulting in "bad fd" errors if multiple ↵Martin Willi2008-06-231-15/+9
| | | | threads are active
* display selected IKE proposal in ipsec statusallAndreas Steffen2008-06-221-13/+26
|
* ECDSA with OpenSSLTobias Brunner2008-06-101-11/+4
|
* DNS resolving of ike_cfg hosts dynamically on demandMartin Willi2008-06-062-62/+48
|
* do not list empty certuribase strings4.2.3Andreas Steffen2008-05-241-1/+4
|
* added display of holderIssuer, holderSerial, and authorityKeyIdentifierAndreas Steffen2008-05-231-1/+27
|
* implement basic listing of attribute certificatesAndreas Steffen2008-05-222-9/+82
|
* suppress listing of integrity algorithm if it is undefinedAndreas Steffen2008-05-171-4/+10
|
* plugin load configuration in strongswan.confMartin Willi2008-05-151-3/+3
| | | | | | some components accept a "component.load" option with a space separated list of plugins to load libcharon- plugins are now handled the same way as libstrongswan- plugins
* handle ID_KEY_ID as a ID_PUBKEY_SHA1 for authenticationMartin Willi2008-05-141-2/+10
|
* fixed typosAndreas Steffen2008-05-111-1/+1
|
* IPComp for IKEv2Tobias Brunner2008-05-081-1/+1
|
* replaced --with-gid/uid by --with-group/user Martin Willi2008-05-081-1/+1
| | | | | using named users, groups fixed capability dropping in pluto
* supporting multiple comma seperated subnets in left/rightsubnet definitionMartin Willi2008-04-252-30/+56
| | | | | e.g. leftsubnet=10.2.0.0/16,10.4.0.0/16
* added _GNU_SOURCE and limits.h to build against glibc-2.8Martin Willi2008-04-241-0/+1
|
* replaced freeswan ttodata by own chunk_{to|from}_{hex|base64} functionsMartin Willi2008-04-242-24/+21
|
* Hash and URL cosmeticsAndreas Steffen2008-04-181-8/+8
|
* support for hash and URL encoded certificate payloads in charonTobias Brunner2008-04-185-17/+127
|
* changed logging of crl writing to old styleAndreas Steffen2008-04-171-4/+4
|
* respecting ipsec.conf cachecrls= optionMartin Willi2008-04-173-1/+37
|
* caching of CRLs to /etc/ipsec.d/crls Martin Willi2008-04-171-10/+41
|
* added missing credential_set method to stroke_caMartin Willi2008-04-171-0/+1
|
* extended credential_set_t interface by a cache_cert() methodMartin Willi2008-04-171-0/+9
| | | | allows persistent or in-memory caching of fetched certificates
* adding rightsourceip=%poolname properly to peer configMartin Willi2008-04-171-1/+2
|
* disable DPD if dpddelay is set but dpdaction=noneMartin Willi2008-04-161-0/+5
|
* added API for random number generators, served through credential factoryMartin Willi2008-04-151-3/+3
| | | | ported randomizer_t to a rng_t on top of /dev/(u)random (plugin random)
* implemented IKE_SA uniqueness using ipsec.conf uniqueids paramaterMartin Willi2008-04-141-1/+15
| | | | additionally supports a "keep" value to keep the old IKE_SA
* ike_sa_manager enumerable, not iterableMartin Willi2008-04-143-21/+32
|
* added close_action as a seperate config option to dpd_actionMartin Willi2008-04-141-5/+5
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-17 06:00:05 +0000