aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/plugins/stroke
Commit message (Collapse)AuthorAgeFilesLines
...
* disable DPD if dpddelay is set but dpdaction=noneMartin Willi2008-04-161-0/+5
|
* added API for random number generators, served through credential factoryMartin Willi2008-04-151-3/+3
| | | | ported randomizer_t to a rng_t on top of /dev/(u)random (plugin random)
* implemented IKE_SA uniqueness using ipsec.conf uniqueids paramaterMartin Willi2008-04-141-1/+15
| | | | additionally supports a "keep" value to keep the old IKE_SA
* ike_sa_manager enumerable, not iterableMartin Willi2008-04-143-21/+32
|
* added close_action as a seperate config option to dpd_actionMartin Willi2008-04-141-5/+5
|
* fixed rightsourceip=%config scenariosMartin Willi2008-04-142-40/+62
|
* using dpd actions to enforce connection stateMartin Willi2008-04-111-2/+15
| | | | dpd actions a per child-, not peer ike-sa
* implemented a simple attribute provider for strokeMartin Willi2008-04-094-0/+398
|
* implementation of an CFG attribute framework, currently supporting virtual IPsMartin Willi2008-04-091-8/+30
| | | | | | updated ipsec.conf sourceip parameter to support CIDR notatation to serve from a pool %poolname to query a separate (database?) pool
* use cert->equals() to filter out equal certificates in seperate instancesMartin Willi2008-04-071-1/+1
|
* log shared secret with debug level 4Andreas Steffen2008-04-061-1/+1
|
* fixed compile warningsMartin Willi2008-04-021-1/+0
|
* workaround for parsing IPv6 PSKs requires extract_last_token()Andreas Steffen2008-04-011-1/+1
|
* minimal stroke_list_ocsp() implementationAndreas Steffen2008-04-011-2/+23
|
* stroke_list groups certificates by issuerAndreas Steffen2008-04-011-7/+18
|
* put DN in double quotesAndreas Steffen2008-03-311-1/+1
|
* ipsec list suppresses duplicatesAndreas Steffen2008-03-311-19/+79
|
* output uptime in status in local timeAndreas Steffen2008-03-291-1/+1
|
* changed external interface to the mediation extension.Tobias Brunner2008-03-271-3/+3
|
* implemented cert cache flushing, ipsec purgeocspMartin Willi2008-03-271-4/+6
|
* fixed plugin/stroke MakefileAndreas Steffen2008-03-261-1/+2
|
* mediation extension adapted to the naming convention of the current version ↵Tobias Brunner2008-03-262-16/+16
| | | | of the draft. note: the external interface (config, autotools) has not yet been changed
* added uptime statistics to statusallMartin Willi2008-03-261-0/+10
|
* fixed compile error if --enable-p2p is setMartin Willi2008-03-262-2/+2
|
* splitted stroke plugin to several files:Martin Willi2008-03-2618-3285/+4155
| | | | | | | | | | | socket: reads messages from socket, dispatching config: process add/del conn, serves configs through backend_t control: controlling of the daemon (up/down/route/...( cred: credential loading, serves creds through credential_set_t ca: ca sections from ipsec.conf, serves cdp's through credential_set_t list: log status information to stroke console (status/statusall/list*) shared_key: shared key implementation for keys read from ipsec.secrets plugin: registers stroke plugin and starts socket w/ thread
* certificate factory can load certs from fileAndreas Steffen2008-03-251-52/+54
|
* defined *_create_from_file() constructors in ↵Andreas Steffen2008-03-251-103/+60
| | | | libstrongswan/credentials/certificates
* modified debug textAndreas Steffen2008-03-201-1/+1
|
* fixed shared key lookup in strokeMartin Willi2008-03-191-1/+1
|
* fixed peer_cfg lookup when omitting IDrMartin Willi2008-03-191-3/+13
|
* fixed CRL check return value on revoked certificatesMartin Willi2008-03-191-8/+0
| | | | | fixed possible refcounting bugs generic return_null() implementation
* fixed ike_cfg lookup in strokeMartin Willi2008-03-181-1/+1
|
* made is_newer() a certificate_t methodAndreas Steffen2008-03-181-1/+1
|
* enforcing x509_flags on certificate constructionMartin Willi2008-03-171-23/+12
|
* removed X509_PEER flag; flags are meant to read cert, not to store ↵Martin Willi2008-03-141-21/+12
| | | | | | | additional state in cert removed x509_t.set_flags for the reason above implemented a simple, generic shared_key_t
* merged the modularization branch (credentials) back to trunkMartin Willi2008-03-133-0/+3397
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-08 09:27:43 +0000