aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon
Commit message (Collapse)AuthorAgeFilesLines
* demoted more notify debug messages to level 24.2.0Andreas Steffen2008-04-022-3/+3
|
* fixing some memory leaksTobias Brunner2008-04-024-4/+31
|
* securing total_threads with the mutex while destroying the processorTobias Brunner2008-04-021-0/+2
|
* generate debug output if ocsp response does not contain status information ↵Andreas Steffen2008-04-022-3/+4
| | | | for a given certificate
* fixed med_db testMartin Willi2008-04-021-1/+1
|
* updated mediation database to public key authenticationMartin Willi2008-04-0210-62/+409
| | | | | | added mysql table definition, test data testcase
* fixed compile warningsMartin Willi2008-04-021-1/+0
|
* additional debug line makes certificate status checking more understandableAndreas Steffen2008-04-021-3/+8
|
* workaround for parsing IPv6 PSKs requires extract_last_token()Andreas Steffen2008-04-011-1/+1
|
* demoted received notify debug message to level 2Andreas Steffen2008-04-011-1/+1
|
* loading of subjectPublicKeyInfo wrapped keys using KEY_ANY (openssl format)Martin Willi2008-04-012-2/+44
| | | | testcase
* minimal stroke_list_ocsp() implementationAndreas Steffen2008-04-011-2/+23
|
* stopping connectivity checks on the responders side after receiving an ↵Tobias Brunner2008-04-015-8/+132
| | | | IKE_SA_INIT request with the proper ME_CONNECTID
* some simplifications to trusted_enumerator_tMartin Willi2008-04-011-8/+7
|
* checking pretrusted but bad certificates only onceMartin Willi2008-04-011-13/+18
|
* stroke_list groups certificates by issuerAndreas Steffen2008-04-011-7/+18
|
* minor changes in debug outputAndreas Steffen2008-03-311-1/+3
|
* put DN in double quotesAndreas Steffen2008-03-311-1/+1
|
* output error message if maximum ca path length is reachedAndreas Steffen2008-03-311-0/+4
|
* ipsec list suppresses duplicatesAndreas Steffen2008-03-311-19/+79
|
* timing of connectivity checks adjustedTobias Brunner2008-03-311-28/+39
|
* defining ME globally, as we need it in pluginsMartin Willi2008-03-311-1/+0
|
* utc argument in %#T was missingAndreas Steffen2008-03-311-4/+6
|
* signal fixedTobias Brunner2008-03-311-2/+2
|
* changed order of server and peer reflexive endpoints (and also the priorities)Tobias Brunner2008-03-312-8/+8
|
* received certificates have least priorityMartin Willi2008-03-311-9/+5
| | | | | fixed manager unlocking
* fixed refcounting in certificate trustchain validationMartin Willi2008-03-311-3/+5
|
* changed error messageAndreas Steffen2008-03-291-1/+1
|
* output uptime in status in local timeAndreas Steffen2008-03-291-1/+1
|
* renamed xml plugin to smp to avoid confusionMartin Willi2008-03-287-40/+48
| | | | | | added some dependency checks to configure configure checks ClearSilver and fastcgi cleanups in the build system here and there
* fixed crash if crl fetching failsMartin Willi2008-03-281-6/+12
|
* reentrant save cert_cacheMartin Willi2008-03-281-12/+65
|
* caching of CRLsMartin Willi2008-03-282-127/+124
|
* replaced get_public() by create_public_enumerator() to try multiple public ↵Martin Willi2008-03-273-129/+231
| | | | keys for signature verification
* use trusted self-signed root CA certificates as trust anchor onlyMartin Willi2008-03-271-6/+16
|
* changed external interface to the mediation extension.Tobias Brunner2008-03-271-3/+3
|
* corrected ME_ENDPOINT length checkTobias Brunner2008-03-271-1/+2
|
* reusing generic shared_key_t implementation in med_dbMartin Willi2008-03-271-55/+1
|
* checking the size of ME_* notify payloadsTobias Brunner2008-03-272-9/+22
|
* replaced the COOKIE notify payload in connectivity checks with a ↵Tobias Brunner2008-03-273-17/+21
| | | | ME_CONNECTAUTH notify payload
* implemented cert cache flushing, ipsec purgeocspMartin Willi2008-03-275-4/+54
|
* fixed plugin/stroke MakefileAndreas Steffen2008-03-261-1/+2
|
* mediation extension adapted to the naming convention of the current version ↵Tobias Brunner2008-03-2630-482/+482
| | | | of the draft. note: the external interface (config, autotools) has not yet been changed
* added uptime statistics to statusallMartin Willi2008-03-261-0/+10
|
* caching of ocsp responses (experimental), no crl caching yetMartin Willi2008-03-262-173/+149
|
* fixed compile error if --enable-p2p is setMartin Willi2008-03-262-2/+2
|
* fixed rightca= constraint checkingMartin Willi2008-03-261-21/+58
| | | | implemented rightca= for intermediate CAs we do not have the certificate at config load
* fixed auth_info_t.equals()Martin Willi2008-03-261-1/+1
|
* splitted stroke plugin to several files:Martin Willi2008-03-2618-3285/+4155
| | | | | | | | | | | socket: reads messages from socket, dispatching config: process add/del conn, serves configs through backend_t control: controlling of the daemon (up/down/route/...( cred: credential loading, serves creds through credential_set_t ca: ca sections from ipsec.conf, serves cdp's through credential_set_t list: log status information to stroke console (status/statusall/list*) shared_key: shared key implementation for keys read from ipsec.secrets plugin: registers stroke plugin and starts socket w/ thread
* added equals() method to peer_cfg, ike_cfg, proposals, auth_infoMartin Willi2008-03-2618-261/+569
| | | | | | allows easier merging of ipsec.conf connections replaced some iterators through enumerators made proposals algorithm_t private using enumerator
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 05:58:16 +0000