aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon
Commit message (Collapse)AuthorAgeFilesLines
...
* added API for random number generators, served through credential factoryMartin Willi2008-04-1513-115/+100
| | | | ported randomizer_t to a rng_t on top of /dev/(u)random (plugin random)
* implemented IKE_SA uniqueness using ipsec.conf uniqueids paramaterMartin Willi2008-04-147-8/+179
| | | | additionally supports a "keep" value to keep the old IKE_SA
* ike_sa_manager enumerable, not iterableMartin Willi2008-04-1410-113/+131
|
* added close_action as a seperate config option to dpd_actionMartin Willi2008-04-147-32/+72
|
* fixed jumping IKE_SA unique idsMartin Willi2008-04-141-28/+53
|
* fixed rightsourceip=%config scenariosMartin Willi2008-04-143-42/+67
|
* fixed disabling the sending of cert requestsAndreas Steffen2008-04-131-1/+1
|
* using dpd actions to enforce connection stateMartin Willi2008-04-1112-239/+264
| | | | dpd actions a per child-, not peer ike-sa
* enabling acquire for mediated connectionsTobias Brunner2008-04-106-146/+51
|
* enabling reauthentication on mediation connectionsTobias Brunner2008-04-102-3/+30
|
* fixing a problem if the mediation server initiates the rekeyingTobias Brunner2008-04-103-2/+18
|
* mediation connections should now properly rekeyTobias Brunner2008-04-093-11/+45
|
* implemented a simple attribute provider for strokeMartin Willi2008-04-094-0/+398
|
* implementation of an CFG attribute framework, currently supporting virtual IPsMartin Willi2008-04-0912-84/+387
| | | | | | updated ipsec.conf sourceip parameter to support CIDR notatation to serve from a pool %poolname to query a separate (database?) pool
* signature in connectivity checks is now built with the message id in network ↵Tobias Brunner2008-04-081-1/+4
| | | | byte order
* printing the checklist, two bugfixesTobias Brunner2008-04-081-2/+24
|
* connect manager: restart the sender if it is not running anymoreTobias Brunner2008-04-081-6/+19
|
* better logging for chunks in connect managerTobias Brunner2008-04-081-12/+12
|
* refactored callback data in connect managerTobias Brunner2008-04-081-48/+24
|
* fast finishing connectivity checks on the initiators sideTobias Brunner2008-04-071-53/+99
|
* corrected the logging for retransmissions of connectivity checksTobias Brunner2008-04-071-6/+8
|
* changed how retransmissions of connectivity checks are sentTobias Brunner2008-04-071-16/+10
|
* fixing another memory leakTobias Brunner2008-04-071-0/+1
|
* use cert->equals() to filter out equal certificates in seperate instancesMartin Willi2008-04-071-1/+1
|
* try to cache the same instance of equal certificatesMartin Willi2008-04-071-4/+17
|
* fixed bad cleanup which results in segfault if no issuer cert found, fixes #43Martin Willi2008-04-071-1/+0
|
* cosmeticsAndreas Steffen2008-04-071-2/+2
|
* added ./configure option --with-strongswan-conf=Martin Willi2008-04-071-1/+1
| | | | defaults to /etc/strongswan.conf
* log shared secret with debug level 4Andreas Steffen2008-04-061-1/+1
|
* default is hostaccess=noAndreas Steffen2008-04-062-2/+2
|
* and anotherTobias Brunner2008-04-031-0/+1
|
* fixed two other memory leaksTobias Brunner2008-04-034-8/+6
|
* replaced mutex in leak detective with thread schedulingTobias Brunner2008-04-031-1/+1
|
* thread locking for sender and processor optimizedTobias Brunner2008-04-033-22/+43
|
* configure option in strongswan.conf for thread countMartin Willi2008-04-032-3/+5
|
* updated test data to use correct encoding dataMartin Willi2008-04-031-3/+4
|
* demoted more notify debug messages to level 24.2.0Andreas Steffen2008-04-022-3/+3
|
* fixing some memory leaksTobias Brunner2008-04-024-4/+31
|
* securing total_threads with the mutex while destroying the processorTobias Brunner2008-04-021-0/+2
|
* generate debug output if ocsp response does not contain status information ↵Andreas Steffen2008-04-022-3/+4
| | | | for a given certificate
* fixed med_db testMartin Willi2008-04-021-1/+1
|
* updated mediation database to public key authenticationMartin Willi2008-04-0210-62/+409
| | | | | | added mysql table definition, test data testcase
* fixed compile warningsMartin Willi2008-04-021-1/+0
|
* additional debug line makes certificate status checking more understandableAndreas Steffen2008-04-021-3/+8
|
* workaround for parsing IPv6 PSKs requires extract_last_token()Andreas Steffen2008-04-011-1/+1
|
* demoted received notify debug message to level 2Andreas Steffen2008-04-011-1/+1
|
* loading of subjectPublicKeyInfo wrapped keys using KEY_ANY (openssl format)Martin Willi2008-04-012-2/+44
| | | | testcase
* minimal stroke_list_ocsp() implementationAndreas Steffen2008-04-011-2/+23
|
* stopping connectivity checks on the responders side after receiving an ↵Tobias Brunner2008-04-015-8/+132
| | | | IKE_SA_INIT request with the proper ME_CONNECTID
* some simplifications to trusted_enumerator_tMartin Willi2008-04-011-8/+7
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-05 00:21:06 +0000