aboutsummaryrefslogtreecommitdiffstats
path: root/src/stroke
Commit message (Collapse)AuthorAgeFilesLines
...
* Renamed purgex509/crl to purgecerts/crls to be consistent with list commandsMartin Willi2010-12-104-12/+12
|
* Added options to flush CRLs/X509 certs from the cert cacheMartin Willi2010-12-104-0/+16
|
* Added a stroke rekey command to trigger IKE/CHILD_SA rekeying manuallyMartin Willi2010-11-034-1/+22
|
* Added support for the ipsec.conf aaa_identity keywordMartin Willi2010-08-311-0/+1
|
* Added a stroke command to export cached x509 certificates to the consoleMartin Willi2010-08-104-2/+46
|
* Handle PIN: as a magic keyword for prompt, use getpass() to silently read ↵Martin Willi2010-08-041-9/+21
| | | | credentials
* configuration of different marks for inbound and outbound directionAndreas Steffen2010-07-091-1/+1
|
* support of xfrm marks for IKEv2Andreas Steffen2010-07-021-0/+4
|
* Include reqid in stroke add connection message.Reto Buerki2010-05-041-0/+1
|
* Initialize libstrongswan in stroke (fixes Vstr logging).Tobias Brunner2010-04-291-0/+5
|
* Fixed compiler warning.Tobias Brunner2010-03-241-1/+1
|
* Added left-/rightikeport ipsec.conf options to use custom IKE portsMartin Willi2010-02-262-0/+3
|
* Added a ipsec.conf "inactivity" option to configure inactivity timeout for ↵Martin Willi2010-01-271-0/+1
| | | | CHILD_SAs
* pluto now supports SQL-based virtual IP poolsAndreas Steffen2009-10-141-1/+1
|
* removed trailing spaces ([[:space:]]+$)Martin Willi2009-09-042-31/+31
|
* Handling of new lifetime limits added to stroke.Tobias Brunner2009-09-011-0/+4
|
* added support for %prompt-ing private key passhprases in strokes "ipsec secrets"Martin Willi2009-08-261-1/+11
|
* OpenSolaris needs libsocket and libnsl for socket().Tobias Brunner2009-08-141-0/+1
|
* Defined some missing fixed-width int types on OpenSolaris.Tobias Brunner2009-08-141-0/+2
|
* Revert "gperf under FreeBSD does not know the -m option."Tobias Brunner2009-07-161-1/+1
| | | | This reverts commit 0ead254919c66a1b6a9e39b175f0b92f2a076c12.
* gperf under FreeBSD does not know the -m option.Tobias Brunner2009-07-141-1/+1
| | | | We could use AC_PATH_PROGS_FEATURE_CHECK (added in Autoconf 2.62) to check for this option.
* optimized gperfAndreas Steffen2009-05-151-1/+1
|
* added a "purgeike" command to stroke, deleting all IKE_SAs without a CHILD_SAMartin Willi2009-05-154-1/+9
|
* removing svn keyword $Id$ from all filesTobias Brunner2009-04-304-8/+0
|
* merging changes from portability branch back to trunkTobias Brunner2009-04-302-3/+8
| | | | | important change for developers: %Y replaces %D to print identities!
* added .gitignore files, ready for the switchMartin Willi2009-04-301-0/+1
|
* merged multi-auth branch back into trunkMartin Willi2009-04-141-0/+7
|
* list assigned leases using "ipsec leases"Martin Willi2008-12-104-4/+32
|
* renamed proxy to proxy_mode in stroke_msg.hAndreas Steffen2008-11-111-1/+1
|
* preliminary support of Mobile IPv6Andreas Steffen2008-11-111-0/+3
|
* merging kernel_pfkey plugin back from kernel-interface branchTobias Brunner2008-10-141-1/+1
|
* implemented ipsec listalgs as a stroke commandAndreas Steffen2008-10-084-12/+18
|
* crypto_factory algorithm enumeration APIMartin Willi2008-08-284-1/+9
| | | | implementation of "ipsec listalgs"
* ported parts of two-sim branchMartin Willi2008-08-221-0/+1
| | | | | | eap_identity parameter to exchange in eap_identity some auth_info/peer_cfg refactorings fixed some bugs, introduced new ones
* renamed STROKE_DOWNSRCIP to STROKE_DOWN_SRCIPAndreas Steffen2008-07-013-4/+4
|
* added a "ipsec down-srcip <start> [<end>]" command to terminate IKE_SAs by ↵Martin Willi2008-07-014-0/+31
| | | | remote virtual ip
* IPComp for IKEv2Tobias Brunner2008-05-081-0/+1
|
* supporting multiple comma seperated subnets in left/rightsubnet definitionMartin Willi2008-04-252-12/+6
| | | | | e.g. leftsubnet=10.2.0.0/16,10.4.0.0/16
* support for hash and URL encoded certificate payloads in charonTobias Brunner2008-04-181-0/+1
|
* respecting ipsec.conf cachecrls= optionMartin Willi2008-04-171-0/+7
|
* implemented IKE_SA uniqueness using ipsec.conf uniqueids paramaterMartin Willi2008-04-141-0/+1
| | | | additionally supports a "keep" value to keep the old IKE_SA
* implementation of an CFG attribute framework, currently supporting virtual IPsMartin Willi2008-04-092-35/+2
| | | | | | updated ipsec.conf sourceip parameter to support CIDR notatation to serve from a pool %poolname to query a separate (database?) pool
* mediation extension adapted to the naming convention of the current version ↵Tobias Brunner2008-03-262-4/+4
| | | | of the draft. note: the external interface (config, autotools) has not yet been changed
* merged the modularization branch (credentials) back to trunkMartin Willi2008-03-133-7/+19
|
* implemented Expanded EAP types to support vendor specific methodsMartin Willi2007-12-131-1/+2
|
* added RCSIDAndreas Steffen2007-10-084-2/+6
|
* experimental P2P-NAT-T for IKEv2 merged back from branchTobias Brunner2007-10-032-1/+12
|
* implemented IKEv2 force_encap connection parameterMartin Willi2007-10-012-0/+2
| | | | | enforces UDP encapsulation by faking NAT detection payloads to hurdle restrictive firewalls
* added mobike=yes|no connection optionMartin Willi2007-08-292-0/+2
| | | | | | | yes: include mobike support notifies as initiator no: only enable mobike as responder when initiator supports it default: yes
* added ↵Andreas Steffen2007-08-101-0/+6
| | | | listaacerts,listacerts,rereadsecerts,rereadocspcerts,rereadaacerts,rereadacerts to stroke
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-03 16:45:19 +0000