aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/plugins/stroke
Commit message (Collapse)AuthorAgeFilesLines
...
* dynamic logging configuration through strongswan.confMartin Willi2008-11-111-3/+16
| | | | fallback to existing ipsec.conf/stroke loglevel configuration
* renamed proxy to proxy_mode in stroke_msg.hAndreas Steffen2008-11-111-1/+1
|
* preliminary support of Mobile IPv6Andreas Steffen2008-11-111-1/+2
|
* wrapped all pthread_rwlock_t in profilable rwlock_tMartin Willi2008-11-052-35/+32
|
* got rid of deprecated create_iterator_locked()Martin Willi2008-11-052-0/+3
|
* added hooks for IKE and CHILD keymatMartin Willi2008-10-301-3/+1
|
* moved CHILD_SA key derivation to keymat_tMartin Willi2008-10-291-37/+27
| | | | passing key chunks to CHILD_SA, not the PRF
* moved key derivation and management into keymat objectMartin Willi2008-10-281-6/+10
| | | | | | allows secured implementation of key management (e.g. in kernel or HW) only IKE keys for now
* store IKE proposal implicitly during derive_keysMartin Willi2008-10-281-2/+5
|
* fixed reauthentication time in statusallMartin Willi2008-10-281-1/+1
|
* use more generic stats getter, introducing new statsMartin Willi2008-10-271-3/+8
|
* fixed some compiler warningsMartin Willi2008-10-271-0/+1
|
* additional getters for ipcomp and UDP encapMartin Willi2008-10-241-7/+5
|
* more CHILD_SA refactoringsMartin Willi2008-10-241-8/+8
|
* cache keys for in and outbound ESP SAsMartin Willi2008-10-151-3/+3
| | | | | removed redundant storing of traffic selectors in CHILD_SA (sa_policy_t) creating TS pairs dynamically using create_policy_enumerator()
* store ESP keys in CHILD_SAMartin Willi2008-10-151-19/+29
|
* reintegrated bus-refactoring branchMartin Willi2008-10-142-11/+13
|
* implemented ipsec listalgs as a stroke commandAndreas Steffen2008-10-081-0/+54
|
* use dpd_action also for remotely closed tunnelsMartin Willi2008-10-021-1/+1
|
* merging renaming of mode_t to ipsec_mode_t back to trunkTobias Brunner2008-09-251-2/+2
|
* merging modularized kernel interface back to trunkTobias Brunner2008-09-251-5/+4
|
* stroke parses and lists AC groupsAndreas Steffen2008-09-172-8/+63
|
* refactored credential builderMartin Willi2008-09-021-0/+1
| | | | | | | | | allow enumeration of matching builders try a second builder if the first one fails builder clones resources internally on demand caller frees added resources on failure and success stricter handling of non-supported build parts
* streamlined ipsec listalgs outputAndreas Steffen2008-08-291-2/+3
|
* crypto_factory algorithm enumeration APIMartin Willi2008-08-281-0/+56
| | | | implementation of "ipsec listalgs"
* ipsec statusall lists eap_type and eap_identityAndreas Steffen2008-08-261-1/+19
|
* completed support of AUTHZ_CA_CERT and AUTHZ_CA_CERT_NAME attributesAndreas Steffen2008-08-262-16/+62
|
* list CA restrictions in ipsec statusallAndreas Steffen2008-08-251-9/+43
|
* ported parts of two-sim branchMartin Willi2008-08-224-22/+66
| | | | | | eap_identity parameter to exchange in eap_identity some auth_info/peer_cfg refactorings fixed some bugs, introduced new ones
* increased stroke socket backlog to 10Martin Willi2008-07-301-1/+1
|
* using shared read locks in credential set enumerators to avoid deadlocksMartin Willi2008-07-302-37/+40
|
* cosmeticsAndreas Steffen2008-07-221-1/+1
|
* ipsec status lists IPCOMP CPIsAndreas Steffen2008-07-221-1/+11
|
* consistent logging of SPIs and CPIsAndreas Steffen2008-07-221-2/+2
|
* introduced an additional bus->signal parameter for signal specific dataMartin Willi2008-07-181-1/+1
| | | | added SIG_IKE/SIG_CHD macros for signal emitting
* update_peerid() does not accept %any as a certificate's subjectAltNameAndreas Steffen2008-07-091-1/+1
|
* ipsec statusall displays dpd optionsAndreas Steffen2008-07-021-2/+18
|
* added a "ipsec down-srcip <start> [<end>]" command to terminate IKE_SAs by ↵Martin Willi2008-07-013-0/+95
| | | | remote virtual ip
* show authentication method in ipsec statusallAndreas Steffen2008-06-301-1/+9
|
* enumerating loaded plugins in "ipsec statusall"Martin Willi2008-06-241-1/+10
|
* changed ipsec.secrets keyword EC to ECDSATobias Brunner2008-06-241-1/+1
|
* cosmeticsAndreas Steffen2008-06-231-5/+5
|
* fixed "double-close" of stroke fd resulting in "bad fd" errors if multiple ↵Martin Willi2008-06-231-15/+9
| | | | threads are active
* display selected IKE proposal in ipsec statusallAndreas Steffen2008-06-221-13/+26
|
* ECDSA with OpenSSLTobias Brunner2008-06-101-11/+4
|
* DNS resolving of ike_cfg hosts dynamically on demandMartin Willi2008-06-062-62/+48
|
* do not list empty certuribase strings4.2.3Andreas Steffen2008-05-241-1/+4
|
* added display of holderIssuer, holderSerial, and authorityKeyIdentifierAndreas Steffen2008-05-231-1/+27
|
* implement basic listing of attribute certificatesAndreas Steffen2008-05-222-9/+82
|
* suppress listing of integrity algorithm if it is undefinedAndreas Steffen2008-05-171-4/+10
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 18:55:01 +0000