aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/plugins
Commit message (Collapse)AuthorAgeFilesLines
...
* Add a load-tester option to define the IKE version to use for testingMartin Willi2012-10-241-2/+9
|
* Remove version argument on peer_cfg constructor, use ike_cfg version insteadMartin Willi2012-10-249-12/+11
|
* Add IKE version information to ike_cfg_tMartin Willi2012-10-249-20/+28
|
* Handle type of first EAP-RADIUS response more sophisticatedTobias Brunner2012-10-181-3/+18
|
* Reload logger configuration on SIGHUPTobias Brunner2012-10-181-18/+1
| | | | | | Besides changing the configuration this allows to easily rotate log files. Also moved logger initialization back to daemon_t.
* Remove unused this parameter to load_issuer_cert/key(), as it is uninitializedMartin Willi2012-10-161-4/+4
|
* Generate a load-tester certificate only for DN or subjectAltName identitiesMartin Willi2012-10-161-7/+17
|
* Add a load-tester initiator_match option to match custom initiator_idMartin Willi2012-10-161-2/+15
|
* Encode non-DN load-tester identities as subjectAltNamesMartin Willi2012-10-161-1/+16
|
* Add a load-tester digest option for issuing peer certificatesMartin Willi2012-10-161-1/+16
|
* Load a multiple load-tester CA certificates from a directoryMartin Willi2012-10-161-4/+63
|
* Added load-tester options to read issuing CA certificate and key from filesMartin Willi2012-10-161-7/+45
|
* Fixed compilation of android_handler_tTobias Brunner2012-10-111-0/+1
|
* Fix leak of PINs from ipsec.secretsMartin Willi2012-10-091-1/+2
|
* allow has_noskip_flag to contain TRUE_OR_FALSEAndreas Steffen2012-10-071-1/+1
|
* test first and up in the outer while loopAndreas Steffen2012-10-071-5/+1
|
* Added missing continue statement in ha socket error handlingTobias Brunner2012-09-281-0/+1
|
* Fixed snprintf check in tnc-ifmap pluginTobias Brunner2012-09-281-1/+1
|
* Use %x to print uint32 as long ints are 64-bit long on x64 LinuxTobias Brunner2012-09-281-1/+1
|
* Make sure first argument is an int when using %.*s to print e.g. chunksTobias Brunner2012-09-286-21/+22
|
* Avoid memory leak when sending RADIUS accounting start message failedTobias Brunner2012-09-281-1/+1
|
* The eap argument of send_response is never NULLTobias Brunner2012-09-281-13/+11
|
* Properly initialize sockaddr_in struct in fast and dhcp pluginsTobias Brunner2012-09-281-4/+7
|
* Clarified error message if enabling UDP decapsulation failsTobias Brunner2012-09-272-2/+4
|
* Made IP address enumeration more flexibleTobias Brunner2012-09-212-2/+2
| | | | Also added an option to enumerate addresses on ignored interfaces.
* Make it easy to check if an address is locally usable via changed ↵Tobias Brunner2012-09-212-18/+9
| | | | get_interface() method
* Don't ignore loopback devices and allow addresses on them being enumeratedTobias Brunner2012-09-212-4/+4
|
* As Unity responder, don't change the proposed TS at all, racoon doesn't like ↵Martin Willi2012-09-182-7/+8
| | | | that
* As initiator, narrow received Unity attributes to configured TSMartin Willi2012-09-181-4/+11
|
* When using Unity, bump up remote TS as initiator to 0.0.0.0/0, tooMartin Willi2012-09-181-5/+8
|
* Enable Cisco Unity only if Unity vendor id receivedMartin Willi2012-09-183-2/+5
|
* Exchange 0.0.0.0/0 traffic selectors with Unity, narrowing after exchangeMartin Willi2012-09-181-22/+87
|
* Add a Unity attribute provider that adds Split-Includes for TSMartin Willi2012-09-184-1/+232
|
* Check if subset calculation actually yields a TS in Unity narrowingMartin Willi2012-09-181-1/+5
|
* Request Unity configuration attributes for IKEv1 onlyMartin Willi2012-09-181-0/+6
|
* Add Cisco Unity client support for Split-Include and Local-LANMartin Willi2012-09-187-0/+774
|
* Make stroke user-creds work with XAuth configsTobias Brunner2012-09-181-9/+18
|
* Set AUTH_RULE_IDENTITY_LOOSE for rightid=%<identity>Tobias Brunner2012-09-181-0/+10
|
* Removed the unneeded socket-raw pluginTobias Brunner2012-09-145-876/+0
|
* Option added to enforce a configured destination address for DHCP packetsTobias Brunner2012-09-131-1/+9
|
* Check for an existing lease in all stroke pools before creating a new oneMartin Willi2012-09-111-7/+31
|
* Pass full pool list to release_addressMartin Willi2012-09-114-16/+56
|
* Pass the full list of pools to acquire_address, enumerate in providersMartin Willi2012-09-114-18/+57
| | | | | | | | If the provider has access to the full pool list, it can enumerate them twice, for example to search for existing leases first, and only search for new leases in a second step. Fixes lease enumeration in attr-sql using multiple pools.
* Support RADIUS accounting when using IKEv1 with xauth-eap and eap-radiusMartin Willi2012-09-111-2/+10
|
* Fix leak while enumerating RADIUS Framed-IPs from IKE_SAMartin Willi2012-09-111-0/+1
|
* Add uniqueids=never to ignore INITIAL_CONTACT notifiesTobias Brunner2012-09-101-0/+3
| | | | | | With uniqueids=no the daemon still deletes any existing IKE_SA with the same peer if an INITIAL_CONTACT notify is received. With this new option it also ignores these notifies.
* Print the name of mem pools instead of the confusing <base>/<size>Tobias Brunner2012-09-101-2/+4
|
* introduced sending of standard IETF Assessment Result PA-TNC attribute by IMVsAndreas Steffen2012-09-093-21/+29
|
* Clear virtual IPs before storing assigned ones on the IKE_SATobias Brunner2012-09-051-1/+10
| | | | | Otherwise we'll end up with duplicate or invalid VIPs stored on the IKE_SA.
* Merge branch 'multi-vip'Martin Willi2012-08-3129-198/+1200
|\ | | | | | | | | | | | | Brings support for multiple virtual IPs and multiple pools in left/rigthsourceip definitions. Also introduces the new left/rightdns options to configure requested DNS server address family and respond with multiple connection specific servers.
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-03 02:18:43 +0000