aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon
Commit message (Collapse)AuthorAgeFilesLines
...
* The introduced SHA1_NOFINAL hasher was not sufficient for EAP-AKA, Martin Willi2008-03-192-38/+25
| | | | | | as it requires to XOR the key into the hashers state. A new SHA1 based keyed hash function, implemented as PRF, enables EAP-AKA and the FIPS-PRF function to properly use the existing SHA1 implementation.
* log nextUpdate of crls and ocsp responsesAndreas Steffen2008-03-191-12/+36
|
* fixed stupid bug in fetch_ocsp()Andreas Steffen2008-03-191-1/+1
|
* attempt to achieve consistent debugging outputAndreas Steffen2008-03-195-62/+72
|
* fixed shared key lookup in strokeMartin Willi2008-03-191-1/+1
|
* fixed peer_cfg lookup when omitting IDrMartin Willi2008-03-192-3/+18
|
* fixed CRL check return value on revoked certificatesMartin Willi2008-03-194-53/+19
| | | | | fixed possible refcounting bugs generic return_null() implementation
* fixed compiler warningMartin Willi2008-03-181-0/+1
|
* added generic payload order rules for notifiesMartin Willi2008-03-181-0/+6
|
* fixed ike_cfg lookup in strokeMartin Willi2008-03-181-1/+1
|
* added false positive signature check Martin Willi2008-03-181-0/+6
|
* added missing test case file ([3607])Martin Willi2008-03-181-0/+61
|
* creating public key from RSA private keyMartin Willi2008-03-182-2/+4
| | | | RSA key generation and signature test
* made is_newer() a certificate_t methodAndreas Steffen2008-03-182-78/+121
|
* better normalized tables for SQL plugin (IDs)Martin Willi2008-03-186-286/+453
|
* enforcing x509_flags on certificate constructionMartin Willi2008-03-171-23/+12
|
* logging to SQL databaseMartin Willi2008-03-156-1/+255
|
* correctly unregister IKE_SA at the bus Martin Willi2008-03-151-1/+1
|
* removed X509_PEER flag; flags are meant to read cert, not to store ↵Martin Willi2008-03-141-21/+12
| | | | | | | additional state in cert removed x509_t.set_flags for the reason above implemented a simple, generic shared_key_t
* credential lookup in mysql/sqlite databaseMartin Willi2008-03-147-2/+493
|
* refactored buggy trustchain building, fixed refcount bugMartin Willi2008-03-141-105/+91
|
* SQL schema for MySQL and SQLite, test dataMartin Willi2008-03-144-89/+165
|
* two small fixesTobias Brunner2008-03-133-5/+5
|
* fixed apidoc groupingMartin Willi2008-03-132-2/+2
|
* added NetworkManager prototype DBUS policy, applet configMartin Willi2008-03-132-0/+29
|
* added old and unmaintained prototype of NetworkManager applet and authenticatorMartin Willi2008-03-133-0/+244
|
* merged the modularization branch (credentials) back to trunkMartin Willi2008-03-13250-10583/+12994
|
* improved P2P_NAT debuggingAndreas Steffen2008-02-272-4/+7
|
* refactored connect_manager_t to use the find functions on linked listsTobias Brunner2008-02-141-157/+65
|
* split connections with different virtual IPs in different peer_cfgsMartin Willi2008-02-054-31/+49
| | | | respect different peer_cfg's when initiating a CHILD_SA within an existing IKE_SA
* implemented IKEV2 EAP-SIM server and client test module that use triplets ↵Andreas Steffen2008-02-044-141/+725
| | | | stored in a file. For details see the scenario 'ikev2/rw-eap-sim-rsa'
* use identifiers in EAP_SUCCESS/EAP_FAILURE payloadsMartin Willi2008-02-043-15/+19
|
* next_payload must be of type u_int8_tAndreas Steffen2008-02-011-1/+2
|
* NAT-T conditions were not inherited during IKE_SA rekeyingAndreas Steffen2008-01-291-1/+8
|
* added missing hasher includeMartin Willi2008-01-031-0/+1
|
* fixed EAP-MD5 to accept Name attribute in challengeMartin Willi2007-12-181-1/+2
|
* implemented Expanded EAP types to support vendor specific methodsMartin Willi2007-12-1314-66/+185
|
* fixed actual ID length when AT_IDENTITY gets paddedMartin Willi2007-12-131-1/+2
|
* ported EAP-AKA branch into trunkMartin Willi2007-12-133-4/+1588
|
* merged EAP-MD5 into trunkMartin Willi2007-12-123-0/+345
|
* accept unknown attributes in config payloadsMartin Willi2007-12-091-1/+1
|
* removed c++ style comments4.1.9Martin Willi2007-12-0410-128/+123
| | | | | fixed compiler warnings
* fixed mobike/auth_lifetime in conjunction with p2p-nattMartin Willi2007-12-042-6/+6
|
* removed redundant server reflexive endpoint debug messageAndreas Steffen2007-12-041-1/+0
|
* improved P2P_ENDPOINT debuggingAndreas Steffen2007-12-035-3/+31
|
* added more ./configure build options forMartin Willi2007-12-031-17/+24
| | | | | | | | EAP-Identity module ipsec tools (openac, scepclient) optional charon/pluto build charon stroke interface
* moved AUTH_LIFETIME handling in its own task (cleaner separation, proper ↵Martin Willi2007-12-038-34/+294
| | | | payload order)
* added a "libcharon-" prefix to plugins to avoid conflictsMartin Willi2007-12-031-24/+24
|
* socket_t implementation withouth raw socketsMartin Willi2007-11-265-323/+917
| | | | | | --disable-raw-socket configure option prevents charon/pluto to run in parallel
* improving [3361]: moved one of the added return valuesTobias Brunner2007-11-221-1/+2
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-05 05:15:56 +0000