aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/plugins/stroke
Commit message (Collapse)AuthorAgeFilesLines
...
* changed ipsec.secrets keyword EC to ECDSATobias Brunner2008-06-241-1/+1
|
* cosmeticsAndreas Steffen2008-06-231-5/+5
|
* fixed "double-close" of stroke fd resulting in "bad fd" errors if multiple ↵Martin Willi2008-06-231-15/+9
| | | | threads are active
* display selected IKE proposal in ipsec statusallAndreas Steffen2008-06-221-13/+26
|
* ECDSA with OpenSSLTobias Brunner2008-06-101-11/+4
|
* DNS resolving of ike_cfg hosts dynamically on demandMartin Willi2008-06-062-62/+48
|
* do not list empty certuribase strings4.2.3Andreas Steffen2008-05-241-1/+4
|
* added display of holderIssuer, holderSerial, and authorityKeyIdentifierAndreas Steffen2008-05-231-1/+27
|
* implement basic listing of attribute certificatesAndreas Steffen2008-05-222-9/+82
|
* suppress listing of integrity algorithm if it is undefinedAndreas Steffen2008-05-171-4/+10
|
* plugin load configuration in strongswan.confMartin Willi2008-05-151-3/+3
| | | | | | some components accept a "component.load" option with a space separated list of plugins to load libcharon- plugins are now handled the same way as libstrongswan- plugins
* handle ID_KEY_ID as a ID_PUBKEY_SHA1 for authenticationMartin Willi2008-05-141-2/+10
|
* fixed typosAndreas Steffen2008-05-111-1/+1
|
* IPComp for IKEv2Tobias Brunner2008-05-081-1/+1
|
* replaced --with-gid/uid by --with-group/user Martin Willi2008-05-081-1/+1
| | | | | using named users, groups fixed capability dropping in pluto
* supporting multiple comma seperated subnets in left/rightsubnet definitionMartin Willi2008-04-252-30/+56
| | | | | e.g. leftsubnet=10.2.0.0/16,10.4.0.0/16
* added _GNU_SOURCE and limits.h to build against glibc-2.8Martin Willi2008-04-241-0/+1
|
* replaced freeswan ttodata by own chunk_{to|from}_{hex|base64} functionsMartin Willi2008-04-242-24/+21
|
* Hash and URL cosmeticsAndreas Steffen2008-04-181-8/+8
|
* support for hash and URL encoded certificate payloads in charonTobias Brunner2008-04-185-17/+127
|
* changed logging of crl writing to old styleAndreas Steffen2008-04-171-4/+4
|
* respecting ipsec.conf cachecrls= optionMartin Willi2008-04-173-1/+37
|
* caching of CRLs to /etc/ipsec.d/crls Martin Willi2008-04-171-10/+41
|
* added missing credential_set method to stroke_caMartin Willi2008-04-171-0/+1
|
* extended credential_set_t interface by a cache_cert() methodMartin Willi2008-04-171-0/+9
| | | | allows persistent or in-memory caching of fetched certificates
* adding rightsourceip=%poolname properly to peer configMartin Willi2008-04-171-1/+2
|
* disable DPD if dpddelay is set but dpdaction=noneMartin Willi2008-04-161-0/+5
|
* added API for random number generators, served through credential factoryMartin Willi2008-04-151-3/+3
| | | | ported randomizer_t to a rng_t on top of /dev/(u)random (plugin random)
* implemented IKE_SA uniqueness using ipsec.conf uniqueids paramaterMartin Willi2008-04-141-1/+15
| | | | additionally supports a "keep" value to keep the old IKE_SA
* ike_sa_manager enumerable, not iterableMartin Willi2008-04-143-21/+32
|
* added close_action as a seperate config option to dpd_actionMartin Willi2008-04-141-5/+5
|
* fixed rightsourceip=%config scenariosMartin Willi2008-04-142-40/+62
|
* using dpd actions to enforce connection stateMartin Willi2008-04-111-2/+15
| | | | dpd actions a per child-, not peer ike-sa
* implemented a simple attribute provider for strokeMartin Willi2008-04-094-0/+398
|
* implementation of an CFG attribute framework, currently supporting virtual IPsMartin Willi2008-04-091-8/+30
| | | | | | updated ipsec.conf sourceip parameter to support CIDR notatation to serve from a pool %poolname to query a separate (database?) pool
* use cert->equals() to filter out equal certificates in seperate instancesMartin Willi2008-04-071-1/+1
|
* log shared secret with debug level 4Andreas Steffen2008-04-061-1/+1
|
* fixed compile warningsMartin Willi2008-04-021-1/+0
|
* workaround for parsing IPv6 PSKs requires extract_last_token()Andreas Steffen2008-04-011-1/+1
|
* minimal stroke_list_ocsp() implementationAndreas Steffen2008-04-011-2/+23
|
* stroke_list groups certificates by issuerAndreas Steffen2008-04-011-7/+18
|
* put DN in double quotesAndreas Steffen2008-03-311-1/+1
|
* ipsec list suppresses duplicatesAndreas Steffen2008-03-311-19/+79
|
* output uptime in status in local timeAndreas Steffen2008-03-291-1/+1
|
* changed external interface to the mediation extension.Tobias Brunner2008-03-271-3/+3
|
* implemented cert cache flushing, ipsec purgeocspMartin Willi2008-03-271-4/+6
|
* fixed plugin/stroke MakefileAndreas Steffen2008-03-261-1/+2
|
* mediation extension adapted to the naming convention of the current version ↵Tobias Brunner2008-03-262-16/+16
| | | | of the draft. note: the external interface (config, autotools) has not yet been changed
* added uptime statistics to statusallMartin Willi2008-03-261-0/+10
|
* fixed compile error if --enable-p2p is setMartin Willi2008-03-262-2/+2
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-03 13:23:59 +0000