aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon
Commit message (Collapse)AuthorAgeFilesLines
...
* renamed med_db plugin to medsrv, as we will introduce an additional medcli ↵Martin Willi2008-05-0813-112/+112
| | | | client plugin
* replaced --with-gid/uid by --with-group/user Martin Willi2008-05-084-13/+64
| | | | | using named users, groups fixed capability dropping in pluto
* prototype of sql pool administration utilityMartin Willi2008-05-072-1/+439
|
* using capset version 1 if a newer is availableMartin Willi2008-05-071-0/+6
|
* providing medation configuration through med_db pluginMartin Willi2008-05-064-1/+215
|
* returning reference pointer on get_ref()Martin Willi2008-05-066-29/+19
|
* implemented XCBC algorithms (signer, prf) for IKE on top of a crypterMartin Willi2008-04-303-2/+245
| | | | | | supporting ike=...-aesxcbc-... in ipsec.conf added AUTH_AES_XCBC_96 and PRF_AES128_CBC to default IKE proposal AES XCBC testcase
* made some stuff staticTobias Brunner2008-04-281-3/+3
|
* supporting multiple comma seperated subnets in left/rightsubnet definitionMartin Willi2008-04-252-30/+56
| | | | | e.g. leftsubnet=10.2.0.0/16,10.4.0.0/16
* added _GNU_SOURCE and limits.h to build against glibc-2.8Martin Willi2008-04-243-0/+7
|
* added missing base64 chunk testMartin Willi2008-04-241-0/+84
|
* replaced freeswan ttodata by own chunk_{to|from}_{hex|base64} functionsMartin Willi2008-04-244-26/+25
|
* some c-libs require _GNU_SOURCE for pthread_rwlockMartin Willi2008-04-231-1/+4
|
* fixed AES-128 testMartin Willi2008-04-221-2/+2
|
* added AES-128 unit testMartin Willi2008-04-223-2/+172
|
* removed status result from crypter interface to be consistent with other ↵Martin Willi2008-04-221-22/+10
| | | | crypto interfaces
* Hash and URL cosmeticsAndreas Steffen2008-04-185-28/+28
|
* sql pool prototypeMartin Willi2008-04-181-33/+87
|
* support for hash and URL encoded certificate payloads in charonTobias Brunner2008-04-1813-144/+705
|
* fixed peer config equality checkMartin Willi2008-04-181-1/+2
|
* type correctedTobias Brunner2008-04-182-3/+3
|
* changed logging of crl writing to old styleAndreas Steffen2008-04-171-4/+4
|
* fixed compiler warningMartin Willi2008-04-176-2/+331
|
* respecting ipsec.conf cachecrls= optionMartin Willi2008-04-174-14/+37
|
* added missing bits for credential cachingMartin Willi2008-04-171-29/+47
|
* caching of CRLs to /etc/ipsec.d/crls Martin Willi2008-04-171-10/+41
|
* added missing credential_set method to stroke_caMartin Willi2008-04-171-0/+1
|
* extended credential_set_t interface by a cache_cert() methodMartin Willi2008-04-1710-10/+70
| | | | allows persistent or in-memory caching of fetched certificates
* splitted IKE_SA manager destroy to allow plugin interactionMartin Willi2008-04-173-5/+28
|
* adding rightsourceip=%poolname properly to peer configMartin Willi2008-04-171-1/+2
|
* slightly optimized IKE_SA checkinMartin Willi2008-04-161-3/+7
|
* parallelized trust chain verificationMartin Willi2008-04-163-38/+148
| | | | | | temporary imported certificates are thread-local only read-write locking on credential manager credential sets must be thread-save now
* optimized half-open IKE_SA lookup (no checkout)Martin Willi2008-04-161-3/+13
|
* disable DPD if dpddelay is set but dpdaction=noneMartin Willi2008-04-161-0/+5
|
* updated sql plugin to respect config changesMartin Willi2008-04-153-32/+50
|
* disabled SQL logging by default, as tests scenarios do not have a logging tableMartin Willi2008-04-151-1/+1
|
* fixed build of smp pluginMartin Willi2008-04-151-5/+5
|
* build plugins after daemon/libstrongswanMartin Willi2008-04-151-1/+1
|
* added API for random number generators, served through credential factoryMartin Willi2008-04-1513-115/+100
| | | | ported randomizer_t to a rng_t on top of /dev/(u)random (plugin random)
* implemented IKE_SA uniqueness using ipsec.conf uniqueids paramaterMartin Willi2008-04-147-8/+179
| | | | additionally supports a "keep" value to keep the old IKE_SA
* ike_sa_manager enumerable, not iterableMartin Willi2008-04-1410-113/+131
|
* added close_action as a seperate config option to dpd_actionMartin Willi2008-04-147-32/+72
|
* fixed jumping IKE_SA unique idsMartin Willi2008-04-141-28/+53
|
* fixed rightsourceip=%config scenariosMartin Willi2008-04-143-42/+67
|
* fixed disabling the sending of cert requestsAndreas Steffen2008-04-131-1/+1
|
* using dpd actions to enforce connection stateMartin Willi2008-04-1112-239/+264
| | | | dpd actions a per child-, not peer ike-sa
* enabling acquire for mediated connectionsTobias Brunner2008-04-106-146/+51
|
* enabling reauthentication on mediation connectionsTobias Brunner2008-04-102-3/+30
|
* fixing a problem if the mediation server initiates the rekeyingTobias Brunner2008-04-103-2/+18
|
* mediation connections should now properly rekeyTobias Brunner2008-04-093-11/+45
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-11 10:46:32 +0000