aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon
Commit message (Expand)AuthorAgeFilesLines
...
* vici: Expose Session as a top-level symbol in python packageBjörn Schuberg2015-03-181-0/+1
* vici: Introduce main API Session class in python packageBjörn Schuberg2015-03-181-1/+244
* vici: Add a python vici command execution handlerBjörn Schuberg2015-03-182-1/+134
* vici: Add vici python protocol handlerBjörn Schuberg2015-03-184-0/+199
* encoding: Verify the length of KE payload data for known groupsMartin Willi2015-03-181-0/+67
* ikev2: Migrate MOBIKE additional peer addresses to new SA after IKE_SA rekeyingMartin Willi2015-03-181-0/+6
* ikev2: Immediately initiate queued tasks after establishing rekeyed IKE_SAMartin Willi2015-03-185-0/+176
* vici: Use %u to print stats returned by mallinfo(3)Tobias Brunner2015-03-131-4/+4
* stroke: Use %u to print stats returned by mallinfo(3)Tobias Brunner2015-03-131-1/+1
* eap-radius: Increase Acct-Session-ID string bufferMartin Willi2015-03-131-1/+1
* ikev2: Don't set old IKE_SA to REKEYING state during make-before-break reauthMartin Willi2015-03-111-1/+0
* ha: Destroy synced IKE_SA if no configuration is found during updateMartin Willi2015-03-101-0/+3
* ikev1: Don't handle DPD timeout job if IKE_SA got passiveMartin Willi2015-03-101-0/+6
* libipsec: Pass separate inbound/update flags to the IPsec SA managerMartin Willi2015-03-091-1/+2
* kernel-interface: Add a separate "update" flag to add_sa()Martin Willi2015-03-094-4/+4
* Revert "child-sa: Remove the obsolete update logic"Martin Willi2015-03-091-1/+6
* Revert "ha: Always install the CHILD_SAs with the inbound flag set to FALSE"Martin Willi2015-03-091-2/+2
* ikev2: Move code in pubkey authenticator's build() method into separate funct...Tobias Brunner2015-03-091-85/+123
* ikev2: Try all eligible signature schemesTobias Brunner2015-03-091-34/+71
* daemon: Remove scheduled jobs before unloading pluginsTobias Brunner2015-03-091-1/+2
* Make access requestor IP address available to TNC serverAndreas Steffen2015-03-082-12/+39
* ikev1: Set protocol ID and SPIs in INITIAL-CONTACT notification payloadsTobias Brunner2015-03-061-2/+13
* ikev2: Try all RSA signature schemes if none is configuredTobias Brunner2015-03-041-4/+19
* ikev2: Consider signature schemes in rightauth when sending hash algorithmsTobias Brunner2015-03-041-14/+54
* keymat: Use hash algorithm setTobias Brunner2015-03-041-29/+7
* ikev2: Add an option to disable constraints against signature schemesTobias Brunner2015-03-041-1/+11
* stroke: Enable BLISS-based public key constraintsTobias Brunner2015-03-041-4/+19
* ikev2: Fall back to SHA-1 signatures for RSATobias Brunner2015-03-041-0/+7
* ikev2: Select a signature scheme appropriate for the given keyTobias Brunner2015-03-041-18/+13
* ikev2: Log the actual signature scheme used for RFC 7427 authenticationTobias Brunner2015-03-041-4/+6
* ikev2: Store signature scheme used to verify peer in auth_cfgTobias Brunner2015-03-041-0/+1
* ikev2: Add a global option to disable RFC 7427 signature authenticationTobias Brunner2015-03-041-2/+12
* ikev2: Remove private AUTH_BLISS methodTobias Brunner2015-03-043-18/+1
* ikev2: Handle RFC 7427 signature authentication in pubkey authenticatorTobias Brunner2015-03-042-49/+179
* ikev2: Enable signature authentication by transmitting supported hash algorithmsTobias Brunner2015-03-042-4/+88
* keymat: Add facility to store supported hash algorithmsTobias Brunner2015-03-042-1/+70
* ikev2: Add SIGNATURE_HASH_ALGORITHMS notify payloadTobias Brunner2015-03-042-6/+18
* ikev2: Add new authentication method defined by RFC 7427Tobias Brunner2015-03-042-3/+9
* ikev2: Only accept initial messages in specific statesTobias Brunner2015-03-041-10/+9
* ike-sa-manager: Make sure the message ID of initial messages is 0Tobias Brunner2015-03-041-1/+2
* ikev2: Don't destroy the SA if an IKE_SA_INIT with unexpected MID is receivedTobias Brunner2015-03-041-4/+0
* ikev2: Don't adopt any CHILD_SA during make-before-break reauthenticationMartin Willi2015-03-041-1/+2
* stroke: Support public key constraints for EAP methodsMartin Willi2015-03-031-1/+8
* eap-ttls: Support EAP auth information getter in EAP-TTLSMartin Willi2015-03-031-0/+7
* eap-tls: Support EAP auth information getter in EAP-TLSMartin Willi2015-03-031-0/+7
* ikev2: Merge EAP client authentication details if EAP methods provides themMartin Willi2015-03-031-0/+7
* eap: Add an optional authentication details getter to the EAP method interfaceMartin Willi2015-03-031-0/+12
* stroke: Serve ca section CA certificates directly, not over central CA setMartin Willi2015-03-033-5/+85
* stroke: Purge existing CA/AA certificates during rereadMartin Willi2015-03-031-0/+4
* stroke: Use separate credential sets for CA/AA certificatesMartin Willi2015-03-031-3/+21
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-14 12:47:32 +0000