Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | starter: Add the correct keywords header file to EXTRA_DIST | Tobias Brunner | 2017-10-12 | 1 | -1/+1 |
| | | | | | | | | | | | The fix for gperf in 0ae19f0ced8d added the generated header to EXTRA_DIST but that's already added to the distribution because it is contained in *_SOURCES, what was not added, though, was the .h.in file. Also fixes the reference to the header file in the .c rule here and for stroke in out-of-tree builds. Fixes: 0ae19f0ced8d ("configure: Fix gperf length parameter determination") | ||||
* | configure: Fix gperf length parameter determination | Tobias Brunner | 2017-10-02 | 3 | -4/+12 |
| | | | | | | | | | | gperf is not actually a build dependency as the generated files are shipped in the tarball. So the type depends on the gperf version on the host that ran gperf and created the tarball, which might not be the same as that on the actual build host, and gperf might not even be installed there, leaving the type undetermined. Fixes: e0e43229736a ("configure: Detect type of length parameter for gperf generated function") | ||||
* | configure: Detect type of length parameter for gperf generated function | Tobias Brunner | 2017-09-19 | 1 | -1/+1 |
| | | | | | Since 3.1 gperf uses size_t for the length parameter instead of an unsigned int. | ||||
* | stroke: Make 96-bit truncation for SHA-256 configurable | Tobias Brunner | 2017-05-26 | 1 | -0/+1 |
| | |||||
* | Use standard unsigned integer types | Andreas Steffen | 2016-03-24 | 1 | -16/+16 |
| | |||||
* | stroke: Fix --utc option for list* commands | Tobias Brunner | 2015-12-17 | 1 | -2/+7 |
| | | | | Fixes: dcb168413fa3 ("stroke: Add --daemon option") | ||||
* | Refactored certificate management for the vici and stroke interfaces5.4.0dr1 | Andreas Steffen | 2015-12-12 | 1 | -2/+2 |
| | |||||
* | stroke: Add missing include for UINT16_MAX | Tobias Brunner | 2015-06-09 | 1 | -0/+1 |
| | | | | | | Fixes the build on FreeBSD. Fixes #988. | ||||
* | stroke: Dynamically resize stroke messages | Tobias Brunner | 2015-05-22 | 2 | -143/+156 |
| | | | | | | | The maximum size of a stroke message is currently 64k due to the 2 byte length field. Fixes #943. | ||||
* | stroke: Double the stroke message string buffer size | Martin Willi | 2015-02-06 | 1 | -1/+1 |
| | |||||
* | stroke: Add --daemon option | Tobias Brunner | 2014-06-19 | 1 | -124/+154 |
| | |||||
* | stroke: Use stream abstraction to communicate with stroke plugin | Tobias Brunner | 2014-06-19 | 1 | -43/+23 |
| | | | | | Without this changing charon.plugins.stroke.socket would not really work. | ||||
* | starter: Add a replay_window connection option | Martin Willi | 2014-06-17 | 1 | -0/+1 |
| | |||||
* | lib: Add global config namespace | Tobias Brunner | 2014-02-12 | 1 | -1/+1 |
| | |||||
* | android: Remove dependency on libvstr | Tobias Brunner | 2013-11-13 | 1 | -1/+0 |
| | |||||
* | starter: Add an 'ah' keyword for Authentication Header Security Associations | Martin Willi | 2013-10-11 | 1 | -0/+1 |
| | |||||
* | stroke: re-enable modeconfig keyword | Martin Willi | 2013-09-04 | 1 | -0/+1 |
| | |||||
* | automake: replace INCLUDES by AM_CPPFLAGS | Martin Willi | 2013-07-18 | 1 | -2/+3 |
| | | | | | | INCLUDES are now deprecated and throw warnings when using automake 1.13. We now also differentiate AM_CPPFLAGS and AM_CFLAGS, where includes and defines are passed to AM_CPPFLAGS only. | ||||
* | stroke: Add statusall-nb as alias for statusallnb | Tobias Brunner | 2013-06-21 | 2 | -1/+2 |
| | |||||
* | stroke: Add non-blocking versions of up and down | Tobias Brunner | 2013-06-21 | 3 | -5/+23 |
| | | | | | | stroke up-nb and stroke down-nb do not block until the command has finished. Instead, they return right after initiating the respective operation. | ||||
* | stroke: add exportconn{cert,chain} commands in addition to exportx509 | Martin Willi | 2013-06-19 | 4 | -1/+15 |
| | | | | | The new commands either export a single end entity certificate or the full trust chain for a specific connection name. | ||||
* | Use the GEN silent rule when generating gperf files | Martin Willi | 2013-05-06 | 1 | -0/+1 |
| | |||||
* | android: Remove/filter header files from LOCAL_SRC_FILES | Tobias Brunner | 2013-03-20 | 1 | -1/+3 |
| | | | | This avoids huge warnings when building the native code. | ||||
* | Merge branch 'stroke-counters' | Martin Willi | 2013-03-18 | 4 | -9/+34 |
|\ | | | | | | | | | Extend stroke counters functionality by connection specific counters, and a resetcounters command to reset the global or connection counters. | ||||
| * | Add a "resetcounters" command to ipsec, clearing global or connection counters | Martin Willi | 2013-03-15 | 4 | -10/+11 |
| | | |||||
| * | Add connection name specific stroke counters | Martin Willi | 2013-03-15 | 4 | -9/+33 |
| | | |||||
* | | Merge branch 'opaque-ports' | Martin Willi | 2013-03-01 | 2 | -1/+4 |
|\ \ | | | | | | | | | | | | | Adds a %opaque port option and support for port ranges in left/rightprotoport. Currently not supported by any of our kernel backends. | ||||
| * | | Pass complete port range over stroke interface for more flexibility | Martin Willi | 2013-02-21 | 2 | -1/+4 |
| |/ | |||||
* / | Add a ikedscp ipsec.conf option to set DSCP value on outgoing IKE packets | Martin Willi | 2013-02-06 | 1 | -0/+1 |
|/ | |||||
* | Use a connection specific option to en-/disable IKEv1 fragmentation | Tobias Brunner | 2012-12-24 | 1 | -0/+1 |
| | |||||
* | stroke: Drop unneeded [MY|OTHER]_NETBITS | Reto Buerki | 2012-12-19 | 1 | -2/+2 |
| | |||||
* | stroke: Enable install_policy in add_connection() | Reto Buerki | 2012-12-19 | 1 | -0/+1 |
| | |||||
* | Add a "ipsec listcounters" command to stroke | Martin Willi | 2012-10-24 | 4 | -3/+8 |
| | |||||
* | Support multiple addresses/pools in left/rightsourceip | Martin Willi | 2012-08-30 | 1 | -1/+0 |
| | |||||
* | Add a left/rightdns keyword to configure connection specific DNS attributes | Martin Willi | 2012-08-21 | 1 | -0/+1 |
| | |||||
* | Added ESP log group for libipsec log messages. | Tobias Brunner | 2012-08-08 | 1 | -1/+1 |
| | |||||
* | Add an ipsec.conf leftgroups2 parameter for the second authentication round | Martin Willi | 2012-07-26 | 1 | -0/+1 |
| | |||||
* | implemented the right|leftallowany feature | Andreas Steffen | 2012-06-08 | 1 | -0/+1 |
| | |||||
* | make IKEv1 DPD timeout configurable in charon | Andreas Steffen | 2012-05-17 | 1 | -0/+1 |
| | |||||
* | Merge branch 'ikev1' | Martin Willi | 2012-05-02 | 2 | -7/+4 |
|\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Conflicts: configure.in man/ipsec.conf.5.in src/libcharon/encoding/generator.c src/libcharon/encoding/payloads/notify_payload.c src/libcharon/encoding/payloads/notify_payload.h src/libcharon/encoding/payloads/payload.c src/libcharon/network/receiver.c src/libcharon/sa/authenticator.c src/libcharon/sa/authenticator.h src/libcharon/sa/ikev2/tasks/ike_init.c src/libcharon/sa/task_manager.c src/libstrongswan/credentials/auth_cfg.c | ||||
| * | Merge branch 'ikev1-clean' into ikev1-master | Martin Willi | 2012-03-20 | 2 | -7/+4 |
| |\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Conflicts: configure.in man/ipsec.conf.5.in src/libcharon/daemon.c src/libcharon/plugins/eap_ttls/eap_ttls_peer.c src/libcharon/plugins/eap_radius/eap_radius_accounting.c src/libcharon/plugins/eap_radius/eap_radius_forward.c src/libcharon/plugins/farp/farp_listener.c src/libcharon/sa/ike_sa.c src/libcharon/sa/keymat.c src/libcharon/sa/task_manager.c src/libcharon/sa/trap_manager.c src/libstrongswan/plugins/x509/x509_cert.c src/libstrongswan/utils.h Applied lost changes of moved files keymat.c and task_manager.c. Updated listener_t.message hook signature in new plugins. | ||||
| | * | Dropped support of deprecated authby=eap and eap= options | Martin Willi | 2012-03-20 | 2 | -5/+0 |
| | | | |||||
| | * | Added a "aggressive" ipsec.conf connection option | Martin Willi | 2012-03-20 | 1 | -0/+1 |
| | | | |||||
| | * | Support an "any" IKE version for both IKEv1 or IKEv2 | Martin Willi | 2012-03-20 | 2 | -2/+2 |
| | | | |||||
| | * | Pass ipsec.conf xauth_identity option via stroke to charon configurations | Martin Willi | 2012-03-20 | 1 | -0/+1 |
| | | | |||||
* | | | added support for raw RSA public keys to stroke | Andreas Steffen | 2012-04-30 | 1 | -0/+1 |
| | | | |||||
* | | | Added stroke user-creds command, to set username/password for a connection. | Tobias Brunner | 2012-04-17 | 4 | -1/+38 |
| | | | |||||
* | | | Additional prompt keyword added to stroke. | Tobias Brunner | 2012-04-17 | 1 | -1/+3 |
|/ / | |||||
* | | Android 4 requires LOCAL_MODULE_TAGS to be set for all modules. | Tobias Brunner | 2012-01-12 | 1 | -0/+2 |
| | | | | | | | | | | | | | | Because all packages are now marked as optional executables that are to be installed on the final system have to be added to PRODUCT_PACKAGES in build/target/product/core.mk. Dependencies (such as libraries) are installed automatically. | ||||
* | | Added ASN debug group to log low-level encoding/decoding (ASN.1, X.509). | Tobias Brunner | 2011-12-16 | 1 | -1/+1 |
| | | | | | | | | | | This will allow us to remove quite some clutter from the LIB debug group for higher debug levels. |