aboutsummaryrefslogtreecommitdiffstats
path: root/src/libstrongswan
Commit message (Collapse)AuthorAgeFilesLines
...
* implemented ipsec listalgs as a stroke commandAndreas Steffen2008-10-081-1/+1
|
* get_subject() of a CERT_TRUSTED_PUBKEY object returns ID_PUBKEY_INFO_SHA1 ↵Andreas Steffen2008-10-081-1/+1
| | | | hash consistent with the IKEv2 keyid philosophy
* Implemented BUILD_BLOB_ASN1_DER for the CERT_TRUSTED_PUBKEY subtypeAndreas Steffen2008-10-082-4/+24
|
* fixed builder_cancel macro to return NULL on failed buildMartin Willi2008-10-062-1/+15
|
* using signed return value for read()Martin Willi2008-09-301-1/+2
|
* fixed DH value range testingMartin Willi2008-09-171-1/+1
|
* checking mpz_export return value properlyMartin Willi2008-09-173-8/+28
| | | | fixes a potential DoS attack if a DH value of zero gets processed
* stroke parses and lists AC groupsAndreas Steffen2008-09-172-4/+11
|
* time values in strongswan.conf can be optionally specified in days (d), ↵Andreas Steffen2008-09-042-4/+50
| | | | hours (h), minutes (m), or seconds (s)
* agent plugin optionally accepts a BUILD_PUBLIC_KEY to select a specific ↵Martin Willi2008-09-041-18/+68
| | | | private key from the agent
* libstrongswan agent plugin to use ssh-agent for RSA signaturesMartin Willi2008-09-026-0/+710
|
* refactored credential builderMartin Willi2008-09-0217-351/+333
| | | | | | | | | allow enumeration of matching builders try a second builder if the first one fails builder clones resources internally on demand caller frees added resources on failure and success stricter handling of non-supported build parts
* OIDs used by strongSwanAndreas Steffen2008-09-011-1/+1
|
* capability API to allow plugin-controlled capability setMartin Willi2008-08-283-0/+8
|
* creating default IKE proposals dynamically using algorithm enumeration APIMartin Willi2008-08-284-31/+31
|
* separated sha1_prf implementation from sha1_hasherMartin Willi2008-08-286-133/+208
|
* crypto_factory algorithm enumeration APIMartin Willi2008-08-282-93/+221
| | | | implementation of "ipsec listalgs"
* mkdir_p: utility function to create a directory and all required parent ↵Tobias Brunner2008-08-282-0/+61
| | | | directories
* ported parts of two-sim branchMartin Willi2008-08-224-6/+26
| | | | | | eap_identity parameter to exchange in eap_identity some auth_info/peer_cfg refactorings fixed some bugs, introduced new ones
* a (incomplete) implementation of draft-sheffer-ikev2-gtc-00.txt using PAMMartin Willi2008-08-211-0/+1
|
* corrected captionAndreas Steffen2008-08-211-1/+1
|
* added sqlite busy handler: retries on locking conflictsMartin Willi2008-08-211-0/+14
|
* fixed libstrongswan integrity testAndreas Steffen2008-08-193-11/+27
|
* added options for virtual IP, UDP encapsulation, IPCompMartin Willi2008-07-311-2/+6
| | | | proper handling of libstrongswan/glib TRUE/FALSE conflict
* added a driver type getter for database implementationsMartin Willi2008-07-213-0/+38
|
* using token enumerator to parser plugin listMartin Willi2008-07-021-28/+7
|
* implementation of a simple "token enumerator"Martin Willi2008-07-023-0/+157
|
* whitelisting leaks of ENGINE_load_builtin_enginesMartin Willi2008-07-011-0/+1
|
* sqlite plugin requires libsqlite3 => 3.3.1 to share connectionsMartin Willi2008-06-301-5/+13
| | | | use recursive locking if libsqlite3 < 3.5.0
* fixed ifndef typo for MYSQL_DATA_TRUNCATED checkMartin Willi2008-06-261-1/+1
|
* fixed plugin loader destructionMartin Willi2008-06-251-1/+1
|
* enabling support for hardware accelerators in OpenSSLTobias Brunner2008-06-251-0/+6
|
* reintroducing MYSQL_DATA_TRUNCATED if supported on that mysql versionMartin Willi2008-06-241-0/+7
|
* enumerating loaded plugins in "ipsec statusall"Martin Willi2008-06-242-2/+33
|
* support of ECDSA signatures for all certificate typesAndreas Steffen2008-06-224-0/+13
|
* removed unused MYSQL_DATA_TRUNCATED check for compatibility with older mysql ↵Martin Willi2008-06-201-1/+0
| | | | versions
* fixed matches() check for RFC822/FQDN without wildcardsMartin Willi2008-06-131-2/+2
|
* implemented identification_t.match() case insensitive for RFC822/FQDNMartin Willi2008-06-121-2/+2
|
* loading PEM encoded public keysMartin Willi2008-06-114-2/+23
|
* reduced default debug hook verbosityMartin Willi2008-06-111-5/+8
|
* fixed resolving numerical IPv6 addresses in host_create_from_dns()Martin Willi2008-06-111-0/+5
|
* fixed resolving numerical addresses in host_create_from_dns()Martin Willi2008-06-111-1/+1
|
* refactoringTobias Brunner2008-06-101-27/+3
|
* ECDSA with OpenSSLTobias Brunner2008-06-1012-8/+1230
|
* parsing of subjectPublicKeyInfo of x509 certificates extractedTobias Brunner2008-06-101-48/+26
|
* oids for elliptic curvesTobias Brunner2008-06-101-0/+70
|
* making the parsing of parameters of a subjectAlgorithmIdentifier optionalTobias Brunner2008-06-101-2/+18
|
* fixed "enabled" value key wordMartin Willi2008-06-101-1/+3
| | | | more debugging for settings parser
* DNS resolving of ike_cfg hosts dynamically on demandMartin Willi2008-06-063-0/+65
|
* extended leak detective white list for OpenSSLMartin Willi2008-06-061-0/+3
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-07 03:50:37 +0000