aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon
Commit message (Collapse)AuthorAgeFilesLines
* Fix segfault on 'ipsec stroke up ]' commandThomas Egerer2010-07-291-0/+5
|
* Implemented a HA enabled in-memory address poolMartin Willi2010-07-286-4/+468
|
* Added a function to segmentate a generic integerMartin Willi2010-07-282-18/+48
|
* Reserving does not work, as our pools do not support acquiring arbitrary ↵Martin Willi2010-07-271-30/+0
| | | | | | addresses This reverts commit d1384080b3ba74f366eaf8b5f027babca3f5d607.
* Flush any remaining cache state if an IKE_SA goes downMartin Willi2010-07-271-2/+2
|
* Synchronize EAP-Identity of remote peerMartin Willi2010-07-264-0/+16
|
* Reserve virtual IP of passive IKE_SAs in the local poolMartin Willi2010-07-261-0/+30
|
* Added strongswan.conf options for HA heartbeatMartin Willi2010-07-261-4/+20
|
* Log CHILD_SA segment responsibilityMartin Willi2010-07-269-18/+95
|
* Pass initiator parameter to distinguish between original and exchange initiatorMartin Willi2010-07-264-1/+8
|
* Pass the CREATE_CHILD_SA initiator flag to the child_keys parameterMartin Willi2010-07-265-9/+12
|
* Use a sync message cache to resynchronize IKE_SAs without rekeyingMartin Willi2010-07-2616-169/+594
|
* Log received HA message typesMartin Willi2010-07-261-3/+9
|
* Add enum names for HA message typesMartin Willi2010-07-262-0/+19
|
* Delay resynchronization request until starter has loaded the configurationsMartin Willi2010-07-261-2/+4
|
* Replaces in_segment() by a more generic get_segment() functionMartin Willi2010-07-263-17/+13
|
* Use distinct message types for HA message ID updatesMartin Willi2010-07-264-22/+60
|
* Migrated ha plugin to INIT/METHOD macrosMartin Willi2010-07-2610-257/+202
|
* Implemented support for multiple RADIUS serversMartin Willi2010-07-2110-423/+911
|
* Migrated eap-radius plugin to INIT/METHOD macrosMartin Willi2010-07-214-142/+105
|
* Added log statement if peer requests EAP, but current config does not allow itMartin Willi2010-07-211-0/+1
|
* in a ESP_IN_UDP situation make UDP port available in the updown scriptAndreas Steffen2010-07-171-1/+23
|
* make xfrm marks available in the updown scriptsAndreas Steffen2010-07-171-1/+44
|
* Support different encoding types in certificate.get_encoding()Martin Willi2010-07-134-11/+27
|
* Renamed key_encod{ing,der}_t and constants, prepare for generic credential ↵Martin Willi2010-07-134-7/+7
| | | | encoding
* Moved X509 ipAddrBlock checking to the addrblock pluginMartin Willi2010-07-135-61/+216
|
* Added a hook to narrow traffic selectors for CHILD_SAsMartin Willi2010-07-134-5/+123
|
* Moved bus_t to METHOD/INIT macrosMartin Willi2010-07-131-108/+69
|
* Moved addrblock plugin to libcharonMartin Willi2010-07-136-0/+301
|
* Moved credential manager to libstrongswanMartin Willi2010-07-1343-4100/+54
|
* Move pathlen constraint checking to X509 specific checksMartin Willi2010-07-131-17/+18
|
* Charon uses a generic trunstchain length limit, not only for X509 certificatesMartin Willi2010-07-131-4/+9
|
* Combined the OCSP/CRL options to a signle Online check optionMartin Willi2010-07-131-23/+14
|
* updated SQL templates to support attribute pool and identity parametersAndreas Steffen2010-07-122-1/+29
|
* Added missing pool parameter in DHCP attribute provider.Tobias Brunner2010-07-121-1/+2
|
* Do not interpret long class attributes (such as from NPS) as groupMartin Willi2010-07-091-2/+10
|
* Group membership constraint is fulfilled if subject is member in one of the ↵Martin Willi2010-07-092-8/+20
| | | | groups
* Added support for named attribute groupsHeiko Hund2010-07-091-1/+1
| | | | | | Add the possibility to group attributes by a name and assign these groups to connections. This allows a more granular configuration of which client will receive what atrributes.
* configuration of different marks for inbound and outbound directionAndreas Steffen2010-07-0910-22/+40
|
* The file logger supports a time prefix using a strftime() format specifierMartin Willi2010-07-083-9/+36
|
* Print identity to a lease address on the same line for simpler grepingMartin Willi2010-07-081-1/+1
|
* Implemented missing bypass_socket() method in load-testers faked kernel ↵Martin Willi2010-07-071-0/+7
| | | | interface
* Show mallinfo() data in statusall, if availableMartin Willi2010-07-061-1/+12
|
* Added missing markt_t in load tester, also migrated to INIT/METHOD macros.Tobias Brunner2010-07-061-89/+58
|
* Some Doxygen fixes.Tobias Brunner2010-07-0510-13/+11
|
* Fixed typo.Tobias Brunner2010-07-051-2/+2
|
* Added support for group membership information containted in the RADIUS ↵Martin Willi2010-07-051-0/+40
| | | | class attribute
* Use the group constraint in a more generic fashion, not only for attribute ↵Martin Willi2010-07-054-20/+26
| | | | certificates
* Use the responder side configured EAP-Identity directly, if givenMartin Willi2010-07-051-7/+16
|
* Copy EAP specific attributes to auth config onlyMartin Willi2010-07-052-8/+10
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 09:09:11 +0000