aboutsummaryrefslogtreecommitdiffstats
path: root/src/pluto
Commit message (Collapse)AuthorAgeFilesLines
* Bye bye Pluto!Tobias Brunner2012-06-11110-55045/+0
| | | | | Charon will take over IKEv1 duties from here. This also removes libfreeswan and whack.
* display (soft) same as (not loaded)Andreas Steffen2012-05-031-1/+1
|
* Merge branch 'ikev1'Martin Willi2012-05-021-2/+2
|\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Conflicts: configure.in man/ipsec.conf.5.in src/libcharon/encoding/generator.c src/libcharon/encoding/payloads/notify_payload.c src/libcharon/encoding/payloads/notify_payload.h src/libcharon/encoding/payloads/payload.c src/libcharon/network/receiver.c src/libcharon/sa/authenticator.c src/libcharon/sa/authenticator.h src/libcharon/sa/ikev2/tasks/ike_init.c src/libcharon/sa/task_manager.c src/libstrongswan/credentials/auth_cfg.c
| * Merge branch 'ikev1-clean' into ikev1-masterMartin Willi2012-03-201-2/+2
| |\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Conflicts: configure.in man/ipsec.conf.5.in src/libcharon/daemon.c src/libcharon/plugins/eap_ttls/eap_ttls_peer.c src/libcharon/plugins/eap_radius/eap_radius_accounting.c src/libcharon/plugins/eap_radius/eap_radius_forward.c src/libcharon/plugins/farp/farp_listener.c src/libcharon/sa/ike_sa.c src/libcharon/sa/keymat.c src/libcharon/sa/task_manager.c src/libcharon/sa/trap_manager.c src/libstrongswan/plugins/x509/x509_cert.c src/libstrongswan/utils.h Applied lost changes of moved files keymat.c and task_manager.c. Updated listener_t.message hook signature in new plugins.
| | * Added a flag to register local credential sets exclusively, disabling all othersMartin Willi2012-03-201-2/+2
| | |
* | | pluto: Fix for null-terminated XAuth secrets (as sent by Android 4).Tobias Brunner2012-04-241-0/+7
| | |
* | | remove leading zero in ASN.1 encoded serial numbersAndreas Steffen2012-04-055-10/+12
| | |
* | | pluto: Use time_monotonic() instead of a custom implementation.Tobias Brunner2012-03-271-12/+1
|/ /
* | handle case where subject = NULL but keyid is set4.6.2Andreas Steffen2012-02-201-1/+2
| |
* | pluto: Print expiry time more properly.Tobias Brunner2012-02-141-2/+3
| |
* | pluto: Drop support for legacy PSK format.Tobias Brunner2012-02-081-15/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Any line in ipsec.secrets starting with " or ' was treated as PSK without ID selectors by pluto. This prevented it from supporting DNs like "C=CH, O=Linux strongSwan, OU=Sales, CN=alice@strongswan.org" as ID selectors. PSKs defined in this legacy format can easily be updated by changing "thisIsASecret" into : PSK "thisIsASecret"
* | Cache list of plugin names to further simplify its usage.Tobias Brunner2012-01-192-18/+4
| | | | | | | | Also helpful for ipsec statusall to avoid having to enumerate plugins.
* | Simplified logging of list of loaded plugins.Tobias Brunner2012-01-192-25/+9
| |
* | Android 4 requires LOCAL_MODULE_TAGS to be set for all modules.Tobias Brunner2012-01-121-0/+2
| | | | | | | | | | | | | | Because all packages are now marked as optional executables that are to be installed on the final system have to be added to PRODUCT_PACKAGES in build/target/product/core.mk. Dependencies (such as libraries) are installed automatically.
* | pluto: Use srand() to initialize the C library PRNG.Tobias Brunner2012-01-041-0/+3
| | | | | | | | Otherwise rekey and DPD times would always be the same after a restart.
* | pluto: Fixed expiration date test.Tobias Brunner2011-12-231-2/+1
| |
* | Make sure the certificate cache is flushed when plugins are unloaded.Tobias Brunner2011-12-151-0/+1
| | | | | | | | | | This avoids segmentation faults when plugins implementing cert_t are already unloaded when the cache is flushed during destruction.
* | Added missing Android.mk files to distribution.Tobias Brunner2011-11-221-0/+2
|/
* pluto: Compile warning fixed.Tobias Brunner2011-10-271-0/+1
|
* pluto: plugin_list.* added to Android.mk.Tobias Brunner2011-10-271-0/+1
|
* added listplugins support to pluto and whackAndreas Steffen2011-10-264-0/+99
|
* pluto: Log to logcat on Android.Tobias Brunner2011-10-182-4/+38
|
* pluto: CAP_NET_RAW seems to be required on Android even to open regular sockets.Tobias Brunner2011-10-182-2/+8
|
* pluto: Switch to user 'vpn' on Android.Tobias Brunner2011-10-181-5/+16
|
* pluto: Removed last usage of KERNEL26_SUPPORT (and some KLIPS stuff).Tobias Brunner2011-10-183-75/+10
| | | | Because linux is not defined on Android this caused trouble.
* pluto: Missing flushline call added when reading ipsec.secrets.Tobias Brunner2011-10-141-1/+2
|
* pluto: Fixed usage of prctl.Tobias Brunner2011-10-141-1/+1
|
* pluto: Fixed include for control socket.Tobias Brunner2011-10-141-0/+1
|
* pluto: Added fallback to ipsec.secrets parser if glob(3) is not available.Tobias Brunner2011-10-141-12/+24
|
* pluto: Include fixed.Tobias Brunner2011-10-141-1/+1
|
* pluto: Option added to disable adns.Tobias Brunner2011-10-149-9/+85
| | | | This basically disables opportunistic encryption.
* pluto: lwdnsq is not supported.Tobias Brunner2011-10-145-357/+1
|
* Plugin enumerator enumerates over loaded features, tooMartin Willi2011-10-142-2/+2
|
* Enable XAUTH plugin on Android.Tobias Brunner2011-10-131-0/+2
|
* Use separate plugin lists for pluto and charon on Android.Tobias Brunner2011-10-131-1/+2
|
* Build pluto on Android.Tobias Brunner2011-10-131-0/+75
| | | | Does not fully compile.
* pluto: Handle SIGINT to terminate properly when run with --nofork in a console.Tobias Brunner2011-09-281-0/+1
|
* pluto: Check for processes with the PID stored in pluto.pid.Tobias Brunner2011-09-281-43/+74
|
* pluto: Some whitespace cleanup.Tobias Brunner2011-08-157-19/+19
|
* Remove policies in kernel interfaces based on their priority.Tobias Brunner2011-07-271-6/+7
| | | | | | This allows to unroute a connection while the same connection is currently established. In this case both CHILD_SAs share the same reqid but the installed policies have different priorities.
* Fixed common misspellings.Tobias Brunner2011-07-2010-12/+12
| | | | Mostly found by 'codespell'.
* Add the reqid to kernel_ipsec_t.del_policy.Tobias Brunner2011-07-061-2/+2
|
* pluto: Made helper functions in event_queue static.Tobias Brunner2011-05-241-2/+2
|
* pluto: Securely wipe quick mode keys from memory.Thomas Egerer2011-05-101-67/+109
| | | | | | | Keying material is derived in two separate steps for local and remote endpoint. This allows us to securely wipe local/remote secrets separately, too -- a precondition to wipe quick mode keys from memory in a secure fashion.
* pluto: Securely wipe sensitive data from memory.Thomas Egerer2011-05-101-13/+14
|
* fixed loop error in parsing of OCSP basic responsesAndreas Steffen2011-04-261-1/+1
|
* Cast size_t len arguments to %.*s to intMartin Willi2011-04-201-2/+3
|
* Added an esn parameter to the kernel interface add_sa functionsMartin Willi2011-04-201-3/+3
|
* pluto: Replaced some strcpy usages with strncpy.Tobias Brunner2011-04-191-2/+2
|
* pluto: Make sure connection name is null-terminated during DPD restart.Tobias Brunner2011-04-191-4/+5
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-31 16:46:29 +0000