aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/Makefile.am
Commit message (Collapse)AuthorAgeFilesLines
* Report test coverage of libcharon and starterTobias Brunner2016-06-171-0/+3
|
* configure: Check for and explicitly link against -latomicMartin Willi2016-06-141-1/+1
| | | | | Some C libraries, such as uClibc, require an explicit link for some atomic functions. Check for any libatomic, and explcily link it.
* p-cscf: Add plugin stubTobias Brunner2016-03-101-0/+7
|
* ikev2: Add task that verifies a peer's certificateTobias Brunner2016-03-101-1/+2
| | | | | | On failure the SA is deleted and reestablished as configured. The task is activated after the REAUTH_COMPLETE task so a make-before-break reauth is completed before the new SA might get torn down.
* redirect-job: Add job to redirect an active IKE_SATobias Brunner2016-03-041-0/+1
|
* ike-redirect: Add task to redirect active IKE_SAsTobias Brunner2016-03-041-0/+1
|
* redirect-manager: Add manager for redirect providersTobias Brunner2016-03-041-1/+1
|
* redirect-provider: Add interface to redirect clients during initial messagesTobias Brunner2016-03-041-0/+1
| | | | | This will allow e.g. plugins to decide whether a connecting client is redirected to a different gateway using RFC 5685.
* libhydra: Remove empty unused libraryTobias Brunner2016-03-031-2/+0
|
* libhydra: Move kernel interface to libcharonTobias Brunner2016-03-031-1/+4
| | | | This moves hydra->kernel_interface to charon->kernel.
* libhydra: Move all kernel plugins to libcharonTobias Brunner2016-03-031-0/+21
|
* charon: Add custom logger to daemonThomas Egerer2016-03-011-0/+1
| | | | | | | | | | | This logger can be used to easily register custom logging instances using __attribute__((constructor)) benefiting from the global reload mechanism (with reset of log levels). Note that this is not intended to be used from plugins, which are loaded after loggers have already been initialized. Signed-off-by: Thomas Egerer <thomas.egerer@secunet.com>
* ikev2: Immediately initiate queued tasks after establishing rekeyed IKE_SAMartin Willi2015-03-181-0/+1
| | | | | | If additional tasks get queued before/while rekeying an IKE_SA, these get migrated to the new IKE_SA. We previously did not trigger initiation of these tasks, though, leaving the task unexecuted until a new task gets queued.
* forecast: Add the broadcast/multicast forwarding plugin called forecastMartin Willi2015-02-201-0/+7
|
* connmark: Add a plugin stubMartin Willi2015-02-201-0/+7
|
* ikev2: Schedule a make-before-break completion task to delete old IKE_SAMartin Willi2015-02-201-0/+1
|
* unit-tester: Drop the old unit-tester libcharon pluginMartin Willi2015-02-201-7/+0
| | | | | | While it has some tests that we don't directly cover with the new unit tests, most of them require special infrastructure and therefore have not been used for a long time.
* attributes: Move the configuration attributes framework to libcharonMartin Willi2015-02-201-0/+4
|
* libcharon: Add a test runnerMartin Willi2015-02-201-0/+5
|
* attr-sql: Move plugin to libcharonMartin Willi2015-02-201-0/+7
|
* attr: Move plugin to libcharonMartin Willi2015-02-201-0/+7
|
* resolve: Move plugin back to libcharonMartin Willi2015-02-201-0/+7
| | | | Since pluto is gone, all existing users build upon libcharon.
* child-sa-manager: Add a global manager storing CHILD_SA relationsMartin Willi2015-02-201-0/+1
| | | | | | To quickly check out IKE_SAs and find associated CHILD_SAs, the child_sa_manager stores relations between CHILD_SAs and IKE_SAs. It provides CHILD_SA specific IKE_SA checkout functions wrapping the ike_sa_manager.
* ikev2: Add encrypted fragment payloadTobias Brunner2014-10-101-0/+1
|
* ike: Rename encryption_payload to encrypted_payloadTobias Brunner2014-10-101-1/+1
|
* ext-auth: Add an ext-auth plugin invoking an external authorization scriptMartin Willi2014-10-061-0/+7
| | | | Original patch courtesy of Vyronas Tsingaras.
* kernel-iph: Add a stub for a Windows IP Helper based networking backendMartin Willi2014-06-041-0/+7
|
* kernel-wfp: Add a stub for a Windows Filtering Platform based IPsec backendMartin Willi2014-06-041-0/+7
|
* socket-win: Implement a Windows socket plugin using Winsock2Martin Willi2014-06-041-0/+7
|
* bus: Build syslog logger depending on syslog() availabilityMartin Willi2014-06-041-3/+4
|
* libcharon: Link against Winsock2 on WindowsMartin Willi2014-06-041-0/+1
|
* charon: Don't use syslog() if not supportedMartin Willi2014-06-041-1/+6
|
* vici: Add a plugin stub for the "Versatile IKE Control Interface" pluginMartin Willi2014-05-071-0/+7
|
* dnscert: Add DNS CERT support for pubkey authenticationRuslan N. Marchenko2013-10-111-0/+7
| | | | | | | | | | | Add DNSSEC protected CERT RR delivered certificate authentication. The new dnscert plugin is based on the ipseckey plugin and relies on the existing PEM decoder as well as x509 and PGP parsers. As such the plugin expects PEM encoded PKIX(x509) or PGP(GPG) certificate payloads. The plugin is targeted to improve interoperability with Racoon, which supports this type of authentication, ignoring in-stream certificates and using only DNS provided certificates for FQDN IDs.
* Build all shared libraries with -no-undefined and link them properlyTobias Brunner2013-09-121-1/+7
| | | | | | | | | | The flag is required to convince libtool on Cygwin to build DLLs. But on Windows these shared libraries can not have undefined symbols, so we have to link them explicitly to the libraries they reference. For plugins this is currently not done, so only the monolithic build is supported. The plugin loader wouldn't be able to load DLLs anyway, as it tries to load files that don't exist on Cygwin.
* moved tnc_imv plugin to libtnccs thanks to recommendation callback functionAndreas Steffen2013-08-151-7/+0
|
* Moved tnc-tnccs, tnc-imc, tnccs-11, tnccs-20 and tnccs-dynamic libcharon ↵Andreas Steffen2013-08-151-35/+0
| | | | plugins to libtnccs
* automake: replace INCLUDES by AM_CPPFLAGSMartin Willi2013-07-181-4/+2
| | | | | | INCLUDES are now deprecated and throw warnings when using automake 1.13. We now also differentiate AM_CPPFLAGS and AM_CFLAGS, where includes and defines are passed to AM_CPPFLAGS only.
* osx-attr: add plugin installing config attributes using SystemConfigurationMartin Willi2013-06-211-0/+7
| | | | | Currently installs DNS servers only, by prepending IP addresses to the DNS configuration of the primary networking service.
* kernel-libipsec: Add plugin that implements kernel_ipsec_t using libipsecTobias Brunner2013-06-211-0/+7
|
* renamed tnc_ifmap2 plugin to tnc_ifmapAndreas Steffen2013-03-311-3/+3
|
* removed obsoleted tnc_ifmap pluginAndreas Steffen2013-03-311-7/+0
|
* set up a new IF-MAP sessionAndreas Steffen2013-03-291-0/+7
|
* Added xauth-noauth pluginTobias Brunner2013-03-191-0/+7
| | | | | | | | This XAuth backend does not do any authentication of client credentials but simply sends a successful XAuth status to the client, thereby concluding the XAuth exchange. This can be useful to fallback to basic RSA authentication with clients that can not be configured without XAuth authentication.
* Removed backend for old Android frontend patchTobias Brunner2013-03-021-3/+3
| | | | Moved the remaining DNS handler to a new plugin.
* Merge branch 'systime'Martin Willi2013-03-011-0/+7
|\ | | | | | | | | | | Add a systime-fix plugin allowing an embedded system to validate certificates if the system time has not been synchronized after boot. Certificates of established tunnels can be re-validated after the system time gets valid.
| * Add a stub for systime-fix, a plugin handling certificate lifetimes gracefullyMartin Willi2013-02-191-0/+7
| |
* | Added ipseckey plugin, which provides support for public keys in IPSECKEY RRsReto Guadagnini2013-02-191-0/+7
| |
* | make TNC client authentication type available to IMVsAndreas Steffen2013-02-121-1/+1
|/
* Payload added to handle IKE fragmentsTobias Brunner2012-12-241-0/+1
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-02 01:11:20 +0000