| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | swanctl: Use returned key ID to track loaded private keys | Tobias Brunner | 2017-05-23 | 1 | -13/+6 |
| | | | | | | | There was a direct call to load_key() for unencrypted keys that didn't remove the key ID from the hashtable, which caused keys to get unloaded when --load-creds was called multiple times. | ||||
| * | swanctl: Add `token` secrets for keys on tokens/smartcards | Tobias Brunner | 2017-02-16 | 1 | -0/+90 |
| | | |||||
| * | vici: Add support for NT Hash secrets | Tobias Brunner | 2017-02-16 | 1 | -1/+3 |
| | | | | | Fixes #1002. | ||||
| * | swanctl: Automatically unload removed shared keys | Tobias Brunner | 2017-02-16 | 1 | -15/+49 |
| | | |||||
| * | swanctl: Automatically unload removed private keys | Tobias Brunner | 2017-02-16 | 1 | -76/+175 |
| | | |||||
| * | swanctl: Add 'private' directory/section to load any type of private key | Tobias Brunner | 2016-10-05 | 1 | -5/+10 |
| | | |||||
| * | swanctl: Load pubkeys with load-creds | Andreas Steffen | 2016-01-09 | 1 | -0/+1 |
| | | |||||
| * | Refactored certificate management for the vici and stroke interfaces5.4.0dr1 | Andreas Steffen | 2015-12-12 | 1 | -9/+20 |
| | | |||||
| * | Share vici_cert_info.c with vici_cred.c | Andreas Steffen | 2015-12-11 | 1 | -6/+17 |
| | | |||||
| * | swanctl: Cache entered PKCS#12 decryption secret | Martin Willi | 2015-03-18 | 1 | -6/+23 |
| | | | | | | It is usually used more than once, but most likely the same for decryption and MAC verification. | ||||
| * | swanctl: Support loading PKCS#12 containers from a pkcs12 swanctl directory | Martin Willi | 2015-03-18 | 1 | -0/+113 |
| | | |||||
| * | swanctl: Generalize private key decryption to support other credential types | Martin Willi | 2015-03-18 | 1 | -55/+97 |
| | | |||||
| * | swanctl: Complete --load-creds command summary | Martin Willi | 2014-09-22 | 1 | -1/+1 |
| | | |||||
| * | swanctl: Add a --load-all command, performing --load-{creds,pools,conns} | Martin Willi | 2014-09-22 | 1 | -27/+42 |
| | | |||||
| * | swanctl: Support private key decryption passhprases in swanctl.conf | Martin Willi | 2014-06-17 | 1 | -19/+108 |
| | | | | | | | | While there is no real security benefit of storing private keys encrypted if the passphrase is stored along with it, there still seems to be demand for this functionality. We add it for compatibility with ipsec.secrets, even if it is not really recommended. | ||||
| * | Split swanctl --raw mode into single-line and --pretty mode | Andreas Steffen | 2014-06-14 | 1 | -36/+46 |
| | | |||||
| * | Make sure getpass() is available | Tobias Brunner | 2014-05-29 | 1 | -1/+3 |
| | | | | | It's not on Android for example. | ||||
| * | swanctl: Change syntax of secrets to accept identities with special chars | Martin Willi | 2014-05-07 | 1 | -40/+46 |
| | | | | | | | | | | | | Having identity strings in the settings key is problematic, as the parser can't handle arbitrary characters in it. Further, the space separation makes it impossible to define identities with spaces. The new format uses key prefixes, similar to those used in local/remote auth sections of connections. The secrets section takes subsections with type prefixes, and each subsection uses "id" prefixes to define an arbitrary number of identities. | ||||
| * | swanctl: Be more verbose while loading connections and credentials | Martin Willi | 2014-05-07 | 1 | -2/+22 |
| | | |||||
| * | swanctl: Load shared secrets from the swanctl.conf secrets section | Martin Willi | 2014-05-07 | 1 | -1/+96 |
| | | |||||
| * | swanctl: Load different private keys with load-creds | Martin Willi | 2014-05-07 | 1 | -1/+183 |
| | | |||||
| * | swanctl: Add a command to (re-)load credentials | Martin Willi | 2014-05-07 | 1 | -0/+170 |
 |
index : tteras/strongswan | |
| tteras' strongSwan tree | gitolite |
| aboutsummaryrefslogtreecommitdiffstats |