aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/plugins/stroke
Commit message (Collapse)AuthorAgeFilesLines
...
| | * Accept NULL auth_cfg_t passed to credential_manager_t.get_private()Martin Willi2012-03-201-4/+1
| | |
| | * Added support for authby/xauth_server legacy optionsMartin Willi2012-03-201-42/+1
| | |
| | * Show IKE version in ipsec statusallMartin Willi2012-03-201-1/+2
| | |
| | * Added a "aggressive" ipsec.conf connection optionMartin Willi2012-03-201-1/+1
| | |
| | * Added an aggressive mode peer_cfg optionMartin Willi2012-03-201-1/+1
| | |
| | * Added a flag to register local credential sets exclusively, disabling all othersMartin Willi2012-03-201-4/+4
| | |
| | * Pass IKE version to peer config enumerator, filter configsMartin Willi2012-03-202-7/+8
| | |
| | * Support an "any" IKE version for both IKEv1 or IKEv2Martin Willi2012-03-202-2/+2
| | |
| | * Added support for iKEIntermediate X.509 extended key usage flag.Tobias Brunner2012-03-201-2/+2
| | | | | | | | | | | | Mac OS X requires server certificates to have this flag set.
| | * Be a little more verbose about XAuth configs in ipsec statusallMartin Willi2012-03-201-5/+16
| | |
| | * Pass ipsec.conf xauth_identity option via stroke to charon configurationsMartin Willi2012-03-202-0/+7
| | |
| | * Log configured IKE version in stroke plugin.Tobias Brunner2012-03-201-0/+1
| | |
| | * Accept a xauth backend name appended to left/rightauthMartin Willi2012-03-201-1/+8
| | |
| | * Use a second authentication config to configure XAUTH authenticationMartin Willi2012-03-201-6/+2
| | |
| | * Map auth_class to auth method and IKEv1 proposal attributeMartin Willi2012-03-201-0/+4
| | |
| | * IKEv1 XAUTH: Added ability to configure XAUTH+PSK. Added task to handle ↵Clavister OpenSource2012-03-201-0/+4
| | | | | | | | | | | | XAUTH requests. Modified task_manager_v1 to enable it to initiate new tasks immediately after finishing a response.
| | * Do not ignore configs for IKEv1 in charon anymoreMartin Willi2012-03-202-26/+1
| | |
| | * Use enum to define IKE version on peer_cfg_t.Tobias Brunner2012-03-203-10/+10
| | | | | | | | | | | | Replaced all those magic numbers.
* | | add AUTH_RULE_SUBJECT_CERT for raw public keys4.6.3Andreas Steffen2012-04-301-0/+4
| | |
* | | output validity of raw public key if availableAndreas Steffen2012-04-301-2/+34
| | |
* | | added support for raw RSA public keys to strokeAndreas Steffen2012-04-305-1/+100
| | |
* | | Removed auth_cfg_t.replace_value() and replaced usages with add().Tobias Brunner2012-04-181-5/+1
| | | | | | | | | | | | | | | replace_value() was used to replace identities. Since for these the latest is now returned by get(), adding the new identity with add() is sufficient.
* | | Store password with remote ID to tie it stronger to a specific connection.Tobias Brunner2012-04-181-12/+50
| | |
* | | Added stroke user-creds command, to set username/password for a connection.Tobias Brunner2012-04-173-1/+166
| | |
* | | Added method to add additional shared secrets to stroke_cred_t.Tobias Brunner2012-04-172-2/+20
| | |
* | | Typo fixed.Tobias Brunner2012-04-171-1/+1
| | |
* | | remove leading zero in ASN.1 encoded serial numbersAndreas Steffen2012-04-051-2/+2
| | |
* | | moved chunk_skip_zero to chunk.hAndreas Steffen2012-04-031-2/+3
|/ /
* | Fixed crash and locking issues while unrouting connections via strokeMartin Willi2012-03-131-7/+8
| |
* | Added an option to load CA certificates without CA basic constraint.Tobias Brunner2012-02-011-4/+34
| | | | | | | | | | | | Enabling this option treats all certificates in ipsec.d/cacerts and ipsec.conf ca sections as CA certificates even if they do not contain a CA basic constraint.
* | Cache list of plugin names to further simplify its usage.Tobias Brunner2012-01-191-5/+3
| | | | | | | | Also helpful for ipsec statusall to avoid having to enumerate plugins.
* | Simplified logging of list of loaded plugins.Tobias Brunner2012-01-191-9/+4
| |
* | Make number of concurrently handled stroke messages configurable.Tobias Brunner2011-12-291-2/+9
| |
* | Limit the number of concurrently handled stroke messages.Tobias Brunner2011-12-291-18/+104
| | | | | | | | This avoids clogging the thread pool with potentially blocking jobs.
* | Fixed check for log groups when debug_t is unsigned.Tobias Brunner2011-11-251-1/+1
|/ | | | The range and signedness of enum types is up to the compiler.
* CosmeticsAndreas Steffen2011-10-261-1/+2
|
* Added a listplugins stroke command to show plugin featuresMartin Willi2011-10-141-0/+55
|
* Plugin enumerator enumerates over loaded features, tooMartin Willi2011-10-141-1/+1
|
* Include library.h in plugin.hMartin Willi2011-10-141-0/+1
|
* Removed unneeded include.Tobias Brunner2011-10-111-1/+0
| | | | This is not available on Android and redirects to <fcntl.h> on Ubuntu.
* Added fallback to ipsec.secrets parser if glob(3) is not available.Tobias Brunner2011-10-111-11/+22
|
* Migrated stroke_cred_t to INIT/METHOD macros.Tobias Brunner2011-10-031-40/+32
|
* Migrated stroke_socket_t to INIT/METHOD macros.Tobias Brunner2011-10-031-6/+8
|
* bus->listen() and the controller wrappers accept a timeout to wait for callbacksMartin Willi2011-08-261-8/+8
|
* fixed esn typeAndreas Steffen2011-07-201-2/+2
|
* added log and status output for ESNAndreas Steffen2011-07-161-0/+7
|
* Replaced more complex iterator usages.Tobias Brunner2011-07-061-14/+9
|
* Replaced ike_sa_t.create_child_sa_iterator with enumerator.Tobias Brunner2011-07-062-13/+12
| | | | | This required two new methods on ike_sa_t. One returns the number of CHILD_SAs and one allows to remove a CHILD_SA.
* implemented PASS and DROP shunt policiesAndreas Steffen2011-06-283-11/+75
|
* Properly print time differences.Tobias Brunner2011-06-071-2/+2
| | | | time_t is not necessarily of type int.
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-02 21:56:16 +0000