aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/plugins/stroke
Commit message (Collapse)AuthorAgeFilesLines
...
* Don't add ANY identity constraint to auth config, as XAuth rounds don't use oneMartin Willi2012-07-262-3/+15
|
* Add an ipsec.conf leftgroups2 parameter for the second authentication roundMartin Willi2012-07-262-3/+6
|
* Add a return value to hasher_t.allocate_hash()Martin Willi2012-07-161-3/+5
|
* Avoid that any % characters (e.g. in %any) are evaluated when logging via strokeTobias Brunner2012-07-121-1/+1
|
* Refactored heavily #ifdefd capability code to its own libstrongswan classMartin Willi2012-07-041-1/+2
|
* Show some uname() info in "ipsec statusall"Martin Willi2012-06-281-3/+10
|
* Show remote EAP/XAuth identity in "statusall" on a separate lineMartin Willi2012-06-271-1/+12
|
* Centralized thread cancellation in processor_tTobias Brunner2012-06-251-19/+7
| | | | | | | | | | This ensures that no threads are active when plugins and the rest of the daemon are unloaded. callback_job_t was simplified a lot in the process as its main functionality is now contained in processor_t. The parent-child relationships were abandoned as these were only needed to simplify job cancellation.
* Show EAP/XAuth identity in "ipsec status", if availableMartin Willi2012-06-251-1/+1
|
* Select requested virtual IP family based on remote TS, if no local TS availableMartin Willi2012-06-201-1/+12
|
* Show what kind of *Swan we run in "ipsec status"Martin Willi2012-06-141-3/+16
|
* Added signature scheme options left/rightauthMartin Willi2012-06-121-11/+99
|
* certificate_t->issued_by takes an argument to receive signature schemeMartin Willi2012-06-121-1/+1
|
* implemented the right|leftallowany featureAndreas Steffen2012-06-082-7/+17
|
* Show expiration time of rekeyed CHILD_SAs in statusallMartin Willi2012-06-051-1/+6
|
* list IKEv1 Aggressive Mode in ipsec statusallAndreas Steffen2012-05-231-2/+9
|
* List registered nonce generators in statusall output.Tobias Brunner2012-05-181-2/+18
|
* make IKEv1 DPD timeout configurable in charonAndreas Steffen2012-05-172-1/+3
|
* fixed feature dependencies for CERT_TRUSTED_PUBKEYAndreas Steffen2012-05-051-0/+2
|
* Use name from initialization to access settings in libcharon.Tobias Brunner2012-05-032-2/+4
| | | | Also fixes several whitespace errors.
* display (soft) same as (not loaded)Andreas Steffen2012-05-031-1/+1
|
* charon is now an IKE daemonAndreas Steffen2012-05-031-1/+1
|
* stroke plugin sdepends on building CERT_ANY certificatesMartin Willi2012-05-031-0/+1
|
* Loggers specify what log messages they want to receive during registration.Tobias Brunner2012-05-022-2/+4
| | | | | | | This also allows us to generate the log message only once for all loggers that need it (avoids calls to custom printf specifier callbacks). To update the log levels loggers can simply be registered again.
* Add plugin features support to stroke pluginMartin Willi2012-05-021-7/+34
|
* Merge branch 'ikev1'Martin Willi2012-05-025-93/+56
|\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Conflicts: configure.in man/ipsec.conf.5.in src/libcharon/encoding/generator.c src/libcharon/encoding/payloads/notify_payload.c src/libcharon/encoding/payloads/notify_payload.h src/libcharon/encoding/payloads/payload.c src/libcharon/network/receiver.c src/libcharon/sa/authenticator.c src/libcharon/sa/authenticator.h src/libcharon/sa/ikev2/tasks/ike_init.c src/libcharon/sa/task_manager.c src/libstrongswan/credentials/auth_cfg.c
| * Merge branch 'ikev1-clean' into ikev1-masterMartin Willi2012-03-205-93/+56
| |\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Conflicts: configure.in man/ipsec.conf.5.in src/libcharon/daemon.c src/libcharon/plugins/eap_ttls/eap_ttls_peer.c src/libcharon/plugins/eap_radius/eap_radius_accounting.c src/libcharon/plugins/eap_radius/eap_radius_forward.c src/libcharon/plugins/farp/farp_listener.c src/libcharon/sa/ike_sa.c src/libcharon/sa/keymat.c src/libcharon/sa/task_manager.c src/libcharon/sa/trap_manager.c src/libstrongswan/plugins/x509/x509_cert.c src/libstrongswan/utils.h Applied lost changes of moved files keymat.c and task_manager.c. Updated listener_t.message hook signature in new plugins.
| | * Accept NULL auth_cfg_t passed to credential_manager_t.get_private()Martin Willi2012-03-201-4/+1
| | |
| | * Added support for authby/xauth_server legacy optionsMartin Willi2012-03-201-42/+1
| | |
| | * Show IKE version in ipsec statusallMartin Willi2012-03-201-1/+2
| | |
| | * Added a "aggressive" ipsec.conf connection optionMartin Willi2012-03-201-1/+1
| | |
| | * Added an aggressive mode peer_cfg optionMartin Willi2012-03-201-1/+1
| | |
| | * Added a flag to register local credential sets exclusively, disabling all othersMartin Willi2012-03-201-4/+4
| | |
| | * Pass IKE version to peer config enumerator, filter configsMartin Willi2012-03-202-7/+8
| | |
| | * Support an "any" IKE version for both IKEv1 or IKEv2Martin Willi2012-03-202-2/+2
| | |
| | * Added support for iKEIntermediate X.509 extended key usage flag.Tobias Brunner2012-03-201-2/+2
| | | | | | | | | | | | Mac OS X requires server certificates to have this flag set.
| | * Be a little more verbose about XAuth configs in ipsec statusallMartin Willi2012-03-201-5/+16
| | |
| | * Pass ipsec.conf xauth_identity option via stroke to charon configurationsMartin Willi2012-03-202-0/+7
| | |
| | * Log configured IKE version in stroke plugin.Tobias Brunner2012-03-201-0/+1
| | |
| | * Accept a xauth backend name appended to left/rightauthMartin Willi2012-03-201-1/+8
| | |
| | * Use a second authentication config to configure XAUTH authenticationMartin Willi2012-03-201-6/+2
| | |
| | * Map auth_class to auth method and IKEv1 proposal attributeMartin Willi2012-03-201-0/+4
| | |
| | * IKEv1 XAUTH: Added ability to configure XAUTH+PSK. Added task to handle ↵Clavister OpenSource2012-03-201-0/+4
| | | | | | | | | | | | XAUTH requests. Modified task_manager_v1 to enable it to initiate new tasks immediately after finishing a response.
| | * Do not ignore configs for IKEv1 in charon anymoreMartin Willi2012-03-202-26/+1
| | |
| | * Use enum to define IKE version on peer_cfg_t.Tobias Brunner2012-03-203-10/+10
| | | | | | | | | | | | Replaced all those magic numbers.
* | | add AUTH_RULE_SUBJECT_CERT for raw public keys4.6.3Andreas Steffen2012-04-301-0/+4
| | |
* | | output validity of raw public key if availableAndreas Steffen2012-04-301-2/+34
| | |
* | | added support for raw RSA public keys to strokeAndreas Steffen2012-04-305-1/+100
| | |
* | | Removed auth_cfg_t.replace_value() and replaced usages with add().Tobias Brunner2012-04-181-5/+1
| | | | | | | | | | | | | | | replace_value() was used to replace identities. Since for these the latest is now returned by get(), adding the new identity with add() is sufficient.
* | | Store password with remote ID to tie it stronger to a specific connection.Tobias Brunner2012-04-181-12/+50
| | |
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-02 22:47:12 +0000