aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
...
* added missing credential_set method to stroke_caMartin Willi2008-04-171-0/+1
|
* extended credential_set_t interface by a cache_cert() methodMartin Willi2008-04-1712-10/+82
| | | | allows persistent or in-memory caching of fetched certificates
* splitted IKE_SA manager destroy to allow plugin interactionMartin Willi2008-04-173-5/+28
|
* adding rightsourceip=%poolname properly to peer configMartin Willi2008-04-171-1/+2
|
* slightly optimized IKE_SA checkinMartin Willi2008-04-161-3/+7
|
* parallelized trust chain verificationMartin Willi2008-04-163-38/+148
| | | | | | temporary imported certificates are thread-local only read-write locking on credential manager credential sets must be thread-save now
* optimized half-open IKE_SA lookup (no checkout)Martin Willi2008-04-161-3/+13
|
* disable DPD if dpddelay is set but dpdaction=noneMartin Willi2008-04-161-0/+5
|
* updated sql plugin to respect config changesMartin Willi2008-04-153-32/+50
|
* disabled SQL logging by default, as tests scenarios do not have a logging tableMartin Willi2008-04-151-1/+1
|
* added error logging to sqlite pluginMartin Willi2008-04-151-4/+24
|
* fixed build of smp pluginMartin Willi2008-04-151-5/+5
|
* set long-forgotten DPD defaultsAndreas Steffen2008-04-151-0/+2
|
* build plugins after daemon/libstrongswanMartin Willi2008-04-152-2/+2
|
* added API for random number generators, served through credential factoryMartin Willi2008-04-1532-451/+687
| | | | ported randomizer_t to a rng_t on top of /dev/(u)random (plugin random)
* implemented IKE_SA uniqueness using ipsec.conf uniqueids paramaterMartin Willi2008-04-1411-9/+197
| | | | additionally supports a "keep" value to keep the old IKE_SA
* ike_sa_manager enumerable, not iterableMartin Willi2008-04-1410-113/+131
|
* updated rightsourceip parameter in man pageMartin Willi2008-04-141-1/+4
|
* added close_action as a seperate config option to dpd_actionMartin Willi2008-04-147-32/+72
|
* fixed jumping IKE_SA unique idsMartin Willi2008-04-141-28/+53
|
* fixed rightsourceip=%config scenariosMartin Willi2008-04-143-42/+67
|
* host_srcip was not properly initialized in starterwhack.cAndreas Steffen2008-04-131-2/+5
|
* fixed disabling the sending of cert requestsAndreas Steffen2008-04-131-1/+1
|
* using dpd actions to enforce connection stateMartin Willi2008-04-1112-239/+264
| | | | dpd actions a per child-, not peer ike-sa
* enabling acquire for mediated connectionsTobias Brunner2008-04-106-146/+51
|
* enabling reauthentication on mediation connectionsTobias Brunner2008-04-102-3/+30
|
* fixing a problem if the mediation server initiates the rekeyingTobias Brunner2008-04-103-2/+18
|
* mediation connections should now properly rekeyTobias Brunner2008-04-093-11/+45
|
* implemented a simple attribute provider for strokeMartin Willi2008-04-094-0/+398
|
* implementation of an CFG attribute framework, currently supporting virtual IPsMartin Willi2008-04-0919-145/+466
| | | | | | updated ipsec.conf sourceip parameter to support CIDR notatation to serve from a pool %poolname to query a separate (database?) pool
* signature in connectivity checks is now built with the message id in network ↵Tobias Brunner2008-04-081-1/+4
| | | | byte order
* changed force_encap to forceencapsMartin Willi2008-04-081-1/+1
|
* printing the checklist, two bugfixesTobias Brunner2008-04-081-2/+24
|
* connect manager: restart the sender if it is not running anymoreTobias Brunner2008-04-081-6/+19
|
* better logging for chunks in connect managerTobias Brunner2008-04-081-12/+12
|
* refactored callback data in connect managerTobias Brunner2008-04-081-48/+24
|
* removed stale ocsp headerMartin Willi2008-04-081-79/+0
|
* fast finishing connectivity checks on the initiators sideTobias Brunner2008-04-071-53/+99
|
* corrected the logging for retransmissions of connectivity checksTobias Brunner2008-04-071-6/+8
|
* changed how retransmissions of connectivity checks are sentTobias Brunner2008-04-071-16/+10
|
* fixed doxygen groups to avoid recursionMartin Willi2008-04-073-3/+3
|
* fixing another memory leakTobias Brunner2008-04-071-0/+1
|
* use cert->equals() to filter out equal certificates in seperate instancesMartin Willi2008-04-071-1/+1
|
* try to cache the same instance of equal certificatesMartin Willi2008-04-071-4/+17
|
* compare certificates against full encoding to allow equality check of ↵Martin Willi2008-04-075-36/+50
| | | | untrusted certs
* fixed bad cleanup which results in segfault if no issuer cert found, fixes #43Martin Willi2008-04-071-1/+0
|
* cosmeticsAndreas Steffen2008-04-071-2/+2
|
* added ./configure option --with-strongswan-conf=Martin Willi2008-04-075-5/+4
| | | | defaults to /etc/strongswan.conf
* fixed segfault when opening a SQLite database failsMartin Willi2008-04-071-1/+2
|
* log shared secret with debug level 4Andreas Steffen2008-04-061-1/+1
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 10:38:46 +0000