aboutsummaryrefslogtreecommitdiffstats
path: root/src/pluto
Commit message (Collapse)AuthorAgeFilesLines
* Remove policies in kernel interfaces based on their priority.Tobias Brunner2011-07-271-6/+7
| | | | | | This allows to unroute a connection while the same connection is currently established. In this case both CHILD_SAs share the same reqid but the installed policies have different priorities.
* Fixed common misspellings.Tobias Brunner2011-07-2010-12/+12
| | | | Mostly found by 'codespell'.
* Add the reqid to kernel_ipsec_t.del_policy.Tobias Brunner2011-07-061-2/+2
|
* pluto: Made helper functions in event_queue static.Tobias Brunner2011-05-241-2/+2
|
* pluto: Securely wipe quick mode keys from memory.Thomas Egerer2011-05-101-67/+109
| | | | | | | Keying material is derived in two separate steps for local and remote endpoint. This allows us to securely wipe local/remote secrets separately, too -- a precondition to wipe quick mode keys from memory in a secure fashion.
* pluto: Securely wipe sensitive data from memory.Thomas Egerer2011-05-101-13/+14
|
* fixed loop error in parsing of OCSP basic responsesAndreas Steffen2011-04-261-1/+1
|
* Cast size_t len arguments to %.*s to intMartin Willi2011-04-201-2/+3
|
* Added an esn parameter to the kernel interface add_sa functionsMartin Willi2011-04-201-3/+3
|
* pluto: Replaced some strcpy usages with strncpy.Tobias Brunner2011-04-191-2/+2
|
* pluto: Make sure connection name is null-terminated during DPD restart.Tobias Brunner2011-04-191-4/+5
|
* pluto: Clarified parsing of long durations.Tobias Brunner2011-04-191-1/+1
|
* pluto: Avoid potential null-pointer dereference when checking CRLs.Tobias Brunner2011-04-191-1/+2
|
* pluto: from_state is strictly lower than STATE_IKE_ROOF.Tobias Brunner2011-04-191-1/+1
|
* Added a (not yet implemented) plugin_t method to reload plugin configurationMartin Willi2011-04-151-0/+1
|
* Added a get_name() function to plugin_t, create_plugin_enumerator enumerates ↵Martin Willi2011-04-153-4/+13
| | | | over plugin_t
* Migrated remaining plugin_t implementations to INIT/METHOD macrosMartin Willi2011-04-151-6/+9
|
* pluto: Fixed check for NAT-T keepalives.Tobias Brunner2011-04-141-1/+1
|
* pluto: Properly initialize constants.Tobias Brunner2011-04-142-2/+7
|
* pluto: Avoid hiding outer parameter.Tobias Brunner2011-04-141-6/+6
|
* pluto: Use %zu to print values of type size_t.Tobias Brunner2011-04-141-2/+2
|
* pluto: Fixed potential memory leak when processing requested virtual IPs.Tobias Brunner2011-04-141-12/+13
|
* pluto: Properly free buffer in error cases in read_packet.Tobias Brunner2011-04-141-1/+4
|
* Fix compiler warnings at creation of CRL cache filenames.Tobias Brunner2011-04-141-2/+2
| | | | | | This was not really a problem because ptr is the first member of a chunk_t and it contains a null-terminated string at that point. But it's clearer this way.
* Fix "set nexthop to him when instantiating rightallowyes template with ↵Tobias Brunner2011-04-141-1/+1
| | | | | | leftnexthop == right" This fixes commit 280f6b1ab2.
* pluto: Properly initialize a.continuation.Tobias Brunner2011-04-121-0/+1
|
* pluto: Properly initialize ta.encrypter.Tobias Brunner2011-04-121-1/+1
|
* pluto: Fixed off by one error when reading private keys.Tobias Brunner2011-04-121-1/+0
|
* Removed unused variables.Tobias Brunner2011-04-122-7/+3
|
* pluto: Properly free secrets in error cases.Tobias Brunner2011-02-101-2/+6
|
* Some typos fixed.Tobias Brunner2011-02-072-2/+2
|
* Fixed whatis entry of pluto manpage.Tobias Brunner2011-02-071-3/+3
|
* Escape - in manpages when used as minus sign.Tobias Brunner2011-02-071-2/+2
|
* Use a generic getter for all numerical X.509 constraintsMartin Willi2011-01-052-3/+3
|
* Simplified format of x509 CRL URI parsing/enumeratorMartin Willi2011-01-051-5/+5
|
* Slightly renamed X509_NO_PATH_LEN_CONSTRAINT to use it for ↵Martin Willi2011-01-052-3/+3
| | | | PolicyConstraints, too
* Added support for CRL Issuers to x509 and OpenSSL pluginsMartin Willi2011-01-051-2/+2
|
* implemented wrap around of registered IKEv1 algorithm namesAndreas Steffen2010-12-262-76/+60
|
* Implemented Traffic Flow Confidentiality padding in kernel_interfaceMartin Willi2010-12-201-3/+3
|
* trace back crypto algorithms to the plugins that registered themAndreas Steffen2010-12-183-131/+189
|
* pluto: Fixed a regression introduced in f565d0c575.Tobias Brunner2010-10-261-10/+12
| | | | | Since scx_add could return a previously created smartcard object, using sc->last_cert to store the newly added certificate could lead to segfaults.
* pluto: Locking fixed in cert_add.Tobias Brunner2010-10-261-6/+7
|
* payloads are not aligned to 4 byte boundariesAndreas Steffen2010-10-251-1/+1
|
* define state_story for STATE_UNDEFINEDAndreas Steffen2010-10-164-8/+6
|
* fix segfault when reading certificate from smartcardEgbert Koening2010-10-151-1/+2
|
* pluto: Install inbound policies together with outbound policies.Tobias Brunner2010-10-142-28/+7
| | | | | This avoids an error message when uninstalling the policies and charon did it already like this.
* fixed release of virtual IP for XAUTH identitiesAndreas Steffen2010-09-261-2/+5
|
* Moved man pages for config files to a separate directory.Tobias Brunner2010-09-103-186/+1
|
* fixed memory leakAndreas Steffen2010-09-091-0/+1
|
* Added a final flag to builder registration to enumerate the actually ↵Martin Willi2010-09-031-2/+2
| | | | supported algorithms
generated by cgit v1.2.3 (git 2.25.1) at 2025-03-01 02:08:33 +0000