| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | vici: Return key ID from load-key command | Tobias Brunner | 2017-05-23 | 1 | -3/+11 |
| | | | | | | We already do this for load-token and this should simplify client implementations. | ||||
| * | vici: Add command to load a private key from a token | Tobias Brunner | 2017-02-16 | 1 | -3/+99 |
| | | | | | | | | PINs are stored in a "hidden" credential set, so that its shared secrets are not exposed via VICI. Since they are not explicitly loaded as shared secrets via VICI a client might consider them as removed secrets and remove them. | ||||
| * | vici: Add support for NT Hash secrets | Tobias Brunner | 2017-02-16 | 1 | -0/+4 |
| | | | | | Fixes #1002. | ||||
| * | vici: Add possibility to remove shared keys by a unique identifier | Tobias Brunner | 2017-02-16 | 1 | -4/+51 |
| | | | | | | This identifier can be set when adding/replacing a secret. The unique identifiers of all secrets may be enumerated. | ||||
| * | vici: Add commands to enumerate and remove private keys | Tobias Brunner | 2017-02-16 | 1 | -2/+53 |
| | | | | | They are identified by their SHA-1 key identifier. | ||||
| * | Save both base and delta CRLs to disk | Andreas Steffen | 2016-10-11 | 1 | -1/+4 |
| | | |||||
| * | vici: strongswan.conf cache_crls = yes saves fetched CRLs to disk | Andreas Steffen | 2016-10-11 | 1 | -1/+63 |
| | | |||||
| * | vici: flush-certs command flushes certificate cache | Andreas Steffen | 2016-09-13 | 1 | -0/+19 |
| | | | | | | | | | | | When fresh CRLs are released with a high update frequency (e.g. every 24 hours) or OCSP is used then the certificate cache gets quickly filled with stale CRLs or OCSP responses. The new VICI flush-certs command allows to flush e.g. cached CRLs or OCSP responses only. Without the type argument all kind of certificates (e.g. also received end entity and intermediate CA certificates) are purged. | ||||
| * | vici: Support of raw public keys | Andreas Steffen | 2016-01-09 | 1 | -1/+1 |
| | | |||||
| * | Refactored certificate management for the vici and stroke interfaces5.4.0dr1 | Andreas Steffen | 2015-12-12 | 1 | -11/+23 |
| | | |||||
| * | Share vici_cert_info.c with vici_cred.c | Andreas Steffen | 2015-12-11 | 1 | -37/+28 |
| | | |||||
| * | vici: Attribute certificates are not trusted | Tobias Brunner | 2015-11-12 | 1 | -1/+3 |
| | | |||||
| * | vici: Properly add CRLs to the credential set | Tobias Brunner | 2015-11-12 | 1 | -2/+8 |
| | | | | | add_crl() ensures that old CLRs are not stored in the credential set. | ||||
| * | vici: Certification Authority support added. | Andreas Steffen | 2015-07-21 | 1 | -0/+7 |
| | | | | | | | CDP and OCSP URIs for a one or multiple certification authorities can be added via the VICI interface. swanctl allows to read definitions from a new authorities section. | ||||
| * | vici: Return a success result for the clear-creds command | Martin Willi | 2014-10-10 | 1 | -4/+1 |
| | | | | | | Even if the command actually can't fail, this looks more aligned to similar commands. | ||||
| * | vici: Log owners of a just loaded shared-secret | Martin Willi | 2014-05-07 | 1 | -2/+18 |
| | | |||||
| * | vici: Handle "xauth" as an alias for "eap" secrets | Martin Willi | 2014-05-07 | 1 | -1/+1 |
| | | |||||
| * | vici: Add a load-shared command to load shared IKE and EAP secrets | Martin Willi | 2014-05-07 | 1 | -0/+68 |
| | | |||||
| * | vici: Add a load-key command to load private keys | Martin Willi | 2014-05-07 | 1 | -0/+50 |
| | | |||||
| * | vici: Support loading of different certificate types | Martin Willi | 2014-05-07 | 1 | -0/+93 |
| | | |||||
| * | vici: Add a credential backend | Martin Willi | 2014-05-07 | 1 | -0/+103 |
 |
index : tteras/strongswan | |
| tteras' strongSwan tree | gitolite |
| aboutsummaryrefslogtreecommitdiffstats |