aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon
Commit message (Collapse)AuthorAgeFilesLines
...
* Fixed loading of private keys without password.Tobias Brunner2010-08-041-1/+1
| | | | | The chunk storing the password was not correctly initialized, resulting in a segmentation fault when no password was specified in ipsec.secrets.
* Accept EAP_ONLY_AUTHENTICATION notifies from any client, now that IANA ↵Tobias Brunner2010-08-041-3/+2
| | | | allocated an ID.
* IKEv2 notification types updated.Tobias Brunner2010-08-042-27/+34
|
* Destroy IKE_SA Managers crypto primitives during flush, the plugins are gone ↵Martin Willi2010-08-042-2/+5
| | | | in destroy
* Pass type of requested key in the callback credential setMartin Willi2010-08-041-1/+12
|
* Obseleted BUILD_PASSPHRASE(_CALLBACK) for private key loading, use ↵Martin Willi2010-08-044-66/+141
| | | | credential sets
* Use credential sets to load smartcard keysMartin Willi2010-08-041-29/+82
|
* Implemented a callback based credential set, currently for shared keys onlyMartin Willi2010-08-041-61/+39
|
* mmap() ipsec.secrets instead malloc(), proper error checkingMartin Willi2010-08-041-18/+30
|
* Splitted up the load_secrets() functionMartin Willi2010-08-041-263/+301
|
* %prompt support for smartcard PIN via "ipsec secrets"Martin Willi2010-08-041-28/+95
|
* Pass the PKCS11 keyid as chunk, not as stringMartin Willi2010-08-041-3/+6
|
* Reuse generic passphrase build part, not a dedicated PIN partMartin Willi2010-08-041-7/+4
|
* Support module names in %smartcard specifier, streamlined smartcard buildingMartin Willi2010-08-041-12/+51
|
* test_cert adapted to extended signature of get_encoding().Tobias Brunner2010-08-031-2/+2
|
* Fixed compiler warnings.Tobias Brunner2010-08-031-1/+3
|
* Moved TLS stack to its own libraryMartin Willi2010-08-0324-4536/+13
|
* Moved eap-tls plugin to libcharon, updated to 4.4.1 APIsMartin Willi2010-08-0327-0/+5153
|
* Added EAP-TLS plugin stubMartin Willi2010-08-031-0/+1
|
* Do not touch child from collision if peer deleted itThomas Egerer2010-08-031-3/+24
|
* Fix segfault on 'ipsec stroke up ]' commandThomas Egerer2010-07-291-0/+5
|
* Implemented a HA enabled in-memory address poolMartin Willi2010-07-286-4/+468
|
* Added a function to segmentate a generic integerMartin Willi2010-07-282-18/+48
|
* Reserving does not work, as our pools do not support acquiring arbitrary ↵Martin Willi2010-07-271-30/+0
| | | | | | addresses This reverts commit d1384080b3ba74f366eaf8b5f027babca3f5d607.
* Flush any remaining cache state if an IKE_SA goes downMartin Willi2010-07-271-2/+2
|
* Synchronize EAP-Identity of remote peerMartin Willi2010-07-264-0/+16
|
* Reserve virtual IP of passive IKE_SAs in the local poolMartin Willi2010-07-261-0/+30
|
* Added strongswan.conf options for HA heartbeatMartin Willi2010-07-261-4/+20
|
* Log CHILD_SA segment responsibilityMartin Willi2010-07-269-18/+95
|
* Pass initiator parameter to distinguish between original and exchange initiatorMartin Willi2010-07-264-1/+8
|
* Pass the CREATE_CHILD_SA initiator flag to the child_keys parameterMartin Willi2010-07-265-9/+12
|
* Use a sync message cache to resynchronize IKE_SAs without rekeyingMartin Willi2010-07-2616-169/+594
|
* Log received HA message typesMartin Willi2010-07-261-3/+9
|
* Add enum names for HA message typesMartin Willi2010-07-262-0/+19
|
* Delay resynchronization request until starter has loaded the configurationsMartin Willi2010-07-261-2/+4
|
* Replaces in_segment() by a more generic get_segment() functionMartin Willi2010-07-263-17/+13
|
* Use distinct message types for HA message ID updatesMartin Willi2010-07-264-22/+60
|
* Migrated ha plugin to INIT/METHOD macrosMartin Willi2010-07-2610-257/+202
|
* Implemented support for multiple RADIUS serversMartin Willi2010-07-2110-423/+911
|
* Migrated eap-radius plugin to INIT/METHOD macrosMartin Willi2010-07-214-142/+105
|
* Added log statement if peer requests EAP, but current config does not allow itMartin Willi2010-07-211-0/+1
|
* in a ESP_IN_UDP situation make UDP port available in the updown scriptAndreas Steffen2010-07-171-1/+23
|
* make xfrm marks available in the updown scriptsAndreas Steffen2010-07-171-1/+44
|
* Support different encoding types in certificate.get_encoding()Martin Willi2010-07-134-11/+27
|
* Renamed key_encod{ing,der}_t and constants, prepare for generic credential ↵Martin Willi2010-07-134-7/+7
| | | | encoding
* Moved X509 ipAddrBlock checking to the addrblock pluginMartin Willi2010-07-135-61/+216
|
* Added a hook to narrow traffic selectors for CHILD_SAsMartin Willi2010-07-134-5/+123
|
* Moved bus_t to METHOD/INIT macrosMartin Willi2010-07-131-108/+69
|
* Moved addrblock plugin to libcharonMartin Willi2010-07-136-0/+301
|
* Moved credential manager to libstrongswanMartin Willi2010-07-1343-4100/+54
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-22 14:37:46 +0000