aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/plugins/stroke/stroke_config.c
Commit message (Expand)AuthorAgeFilesLines
* stroke: Don't load configs with invalid proposalsTobias Brunner2017-07-051-7/+20
* Change interface for enumerator_create_filter() callbackTobias Brunner2017-05-261-7/+14
* stroke: Make 96-bit truncation for SHA-256 configurableTobias Brunner2017-05-261-1/+2
* child-cfg: Use flags for boolean optionsTobias Brunner2017-05-231-4/+4
* peer-cfg: Store mediated_by as name and not peer-cfg referenceTobias Brunner2017-02-161-21/+2
* stroke: Default to %dynamic if no valid TS are specified in left|rightsubnetTobias Brunner2017-01-251-57/+44
* peer-cfg: Use struct to pass data to constructorTobias Brunner2016-04-091-24/+29
* child-cfg: Use struct to pass data to constructorTobias Brunner2016-04-091-31/+36
* Use standard unsigned integer typesAndreas Steffen2016-03-241-7/+7
* auth-cfg: Make IKE signature schemes configurableTobias Brunner2016-03-041-3/+4
* libhydra: Move kernel interface to libcharonTobias Brunner2016-03-031-3/+1
* Apply pubkey and signature constraints in vici pluginAndreas Steffen2015-12-171-114/+2
* Explicitly mention SHA2 algorithm in BLISS OIDs and signature schemesAndreas Steffen2015-11-061-3/+3
* stroke: Allow %any as local addressTobias Brunner2015-08-211-3/+7
* stroke: Add an option to disable side-swapping of configuration optionsTobias Brunner2015-08-211-33/+46
* stroke: Properly parse bliss key strength in public key constraintTobias Brunner2015-03-251-1/+1
* stroke: Enable BLISS-based public key constraintsTobias Brunner2015-03-041-4/+19
* stroke: Support public key constraints for EAP methodsMartin Willi2015-03-031-1/+8
* stroke: Add support for address range definitions of in-memory poolsTobias Brunner2014-10-301-7/+33
* starter: Add a replay_window connection optionMartin Willi2014-06-171-0/+4
* ike: Add an additional but separate AEAD proposal to CHILD configMartin Willi2014-05-161-0/+1
* ike: Add an additional but separate AEAD proposal to IKE config, if supportedMartin Willi2014-05-161-0/+1
* stroke: Fix error message if parsing leftsourceip failsTobias Brunner2014-01-061-1/+1
* stroke: Configure proposal with AH protocol if 'ah' option setMartin Willi2013-10-111-11/+14
* stroke: don't remove a matching peer config if used by other child configsMartin Willi2013-09-131-4/+3
* Fixed double free causing swapped ends to crash5.1.1dr3Andreas Steffen2013-09-071-1/+0
* ike: support multiple addresses, ranges and subnets in IKE address configMartin Willi2013-09-041-22/+63
* ike-cfg: remove the to be obsoleted allow any parameter in get_my/other_addrMartin Willi2013-09-041-1/+1
* stroke: ignore a leftsourceip if a rightsourceip is given as wellMartin Willi2013-09-041-1/+7
* stroke: re-enable modeconfig keywordMartin Willi2013-09-041-1/+1
* peer-cfg: add a pull/push mode option to use with mode configMartin Willi2013-09-041-0/+1
* Use strpfx() helper where appropriateTobias Brunner2013-07-081-5/+5
* stroke: Changed how proto/port are specified in left|rightsubnetTobias Brunner2013-06-281-1/+8
* stroke: support %dynamic in left/rightsubnet for dynamic selectorsMartin Willi2013-06-191-2/+10
* stroke: support a specific proto/port for each net defined in left/rightsubnetMartin Willi2013-06-191-3/+105
* Load any type (RSA/ECDSA) of public key via left|rightsigkeyTobias Brunner2013-05-071-2/+1
* Load raw keys before possibly destroying the identityTobias Brunner2013-04-011-12/+11
* Merge branch 'multi-cert'Martin Willi2013-03-011-15/+32
|\
| * Load multiple comma seperarated certificates in the leftcert optionMartin Willi2013-01-181-15/+32
* | Merge branch 'opaque-ports'Martin Willi2013-03-011-4/+4
|\ \
| * | Pass complete port range over stroke interface for more flexibilityMartin Willi2013-02-211-14/+4
| * | Use a complete port range in traffic_selector_create_from_{subnet,cidr}Martin Willi2013-02-211-5/+15
| |/
* | Add a ikedscp ipsec.conf option to set DSCP value on outgoing IKE packetsMartin Willi2013-02-061-1/+1
* | Add a DSCP configuration value to IKE configsMartin Willi2013-02-061-1/+2
|/
* Don't handle right=%any6 as "loose" identity, but as %anyMartin Willi2013-01-141-2/+1
* Merge branch 'ikev1-fragmentation'Tobias Brunner2013-01-121-1/+2
|\
| * Use a connection specific option to en-/disable IKEv1 fragmentationTobias Brunner2012-12-241-1/+2
* | Fixed some typos in commentsVolker RĂ¼melin2013-01-111-1/+1
|/
* Make use of new CIDR string ts constructor where appropriateMartin Willi2012-10-241-26/+11
* Remove version argument on peer_cfg constructor, use ike_cfg version insteadMartin Willi2012-10-241-2/+1
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-03 22:40:40 +0000