Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | scepclient: Fixed Makefile after removing enable-smartcard configure option. | Tobias Brunner | 2012-06-13 | 1 | -6/+0 |
| | |||||
* | Use proper defines for IPV6_PKTINFO on Mac OS X Lion and newer. | Tobias Brunner | 2012-06-13 | 1 | -0/+2 |
| | |||||
* | starter: Print additional help texts for selected deprecated keywords. | Tobias Brunner | 2012-06-12 | 4 | -6/+25 |
| | |||||
* | starter: Improved how deprecated keywords are handled. | Tobias Brunner | 2012-06-12 | 4 | -7/+99 |
| | | | | We only throw a warning now instead of rejecting the config. | ||||
* | Revert "starter: Don't treat unsupported keywords as fatal errors just ↵ | Tobias Brunner | 2012-06-12 | 1 | -3/+3 |
| | | | | | | report them." This reverts commit e55876a657ae9d4bbf14320e5a14f86cc5c31c7f. | ||||
* | Added signature scheme options left/rightauth | Martin Willi | 2012-06-12 | 1 | -11/+99 |
| | |||||
* | Support multiple different public key strength types in constraints | Martin Willi | 2012-06-12 | 1 | -41/+38 |
| | |||||
* | Add signature schemes to auth_cfg during trustchain validation | Martin Willi | 2012-06-12 | 5 | -19/+45 |
| | |||||
* | certificate_t->issued_by takes an argument to receive signature scheme | Martin Willi | 2012-06-12 | 16 | -24/+68 |
| | |||||
* | Define auth_cfg rules for signature schemes | Martin Willi | 2012-06-12 | 2 | -0/+53 |
| | |||||
* | starter: Fixed parsing of left|right=%any. | Tobias Brunner | 2012-06-12 | 1 | -1/+3 |
| | |||||
* | starter: Fix comparison of connections. | Tobias Brunner | 2012-06-11 | 1 | -3/+4 |
| | |||||
* | starter: Removed all unsupported keywords. | Tobias Brunner | 2012-06-11 | 7 | -203/+26 |
| | |||||
* | starter: Don't treat unsupported keywords as fatal errors just report them. | Tobias Brunner | 2012-06-11 | 1 | -3/+3 |
| | |||||
* | Bye bye Pluto! | Tobias Brunner | 2012-06-11 | 178 | -69797/+3 |
| | | | | | Charon will take over IKEv1 duties from here. This also removes libfreeswan and whack. | ||||
* | _copyright: Replicate copyright text here instead of calling libfreeswan. | Tobias Brunner | 2012-06-11 | 2 | -4/+34 |
| | |||||
* | starter: Remove all ties to pluto/libfreeswan. | Tobias Brunner | 2012-06-11 | 10 | -46/+25 |
| | | | | Moved some types/constants in the process. | ||||
* | starter: Use custom type for SA specific options (flags). | Tobias Brunner | 2012-06-11 | 4 | -22/+36 |
| | |||||
* | starter: Parse left|rightprotoport directly in confread.c. | Tobias Brunner | 2012-06-11 | 3 | -6/+53 |
| | |||||
* | starter: No special handling for left|rightsubnet, just pass it on as string. | Tobias Brunner | 2012-06-11 | 4 | -39/+1 |
| | |||||
* | starter: Use host_t to parse left|rightsourceip. | Tobias Brunner | 2012-06-11 | 1 | -18/+17 |
| | | | | Also for the yet unused natip option. | ||||
* | starter: Remove left|rightsubnetwithin option (charon narrows ↵ | Tobias Brunner | 2012-06-11 | 6 | -25/+0 |
| | | | | left|rightsubnet down accordingly). | ||||
* | starter: Don't resolve any addresses in starter. | Tobias Brunner | 2012-06-11 | 6 | -129/+10 |
| | | | | Also removed remains of some unknown iface option. | ||||
* | starter: Removed pfs and pfsgroup options (handled via esp option). | Tobias Brunner | 2012-06-11 | 5 | -28/+2 |
| | |||||
* | starter: Store mode of the IPsec SA/policy in a separate member. | Tobias Brunner | 2012-06-11 | 4 | -51/+32 |
| | |||||
* | starter: Use custom type to mark seen keywords. | Tobias Brunner | 2012-06-11 | 3 | -23/+27 |
| | |||||
* | starter: Remove left|rightnexthop option. | Tobias Brunner | 2012-06-11 | 6 | -26/+0 |
| | | | | Charon does this lookup dynamically. | ||||
* | Implement strdupnull() macro as static inline function. | Tobias Brunner | 2012-06-11 | 1 | -1/+4 |
| | | | | This avoids compiler warnings if the argument is a const char*. | ||||
* | starter: Replaced all usages of clone_str() with strdupnull(). | Tobias Brunner | 2012-06-11 | 3 | -19/+19 |
| | |||||
* | starter: Parse authby as string. | Tobias Brunner | 2012-06-11 | 4 | -61/+29 |
| | |||||
* | starter: Remove main parts of pluto support (invoke, whack). | Tobias Brunner | 2012-06-11 | 7 | -966/+47 |
| | |||||
* | starter: Drop support for %defaultroute. | Tobias Brunner | 2012-06-11 | 9 | -336/+14 |
| | |||||
* | starter: Migrated logging to libstrongswan. | Tobias Brunner | 2012-06-11 | 14 | -550/+285 |
| | |||||
* | starter: Remove unneeded starter_exec function. | Tobias Brunner | 2012-06-11 | 5 | -78/+4 |
| | |||||
* | scepclient: Option added to read PKCS#10 certificate request from a file. | Tobias Brunner | 2012-06-11 | 2 | -11/+30 |
| | |||||
* | scepclient: Option added to read self-signed certificate from a file. | Tobias Brunner | 2012-06-11 | 2 | -21/+53 |
| | |||||
* | scepclient: Generate uppercase transaction ID. | Tobias Brunner | 2012-06-11 | 1 | -1/+1 |
| | |||||
* | scepclient: Use HTTP 1.0 for all requests. | Tobias Brunner | 2012-06-11 | 1 | -0/+2 |
| | |||||
* | scepclient: Options added to specify digest/signature algorithms. | Tobias Brunner | 2012-06-11 | 2 | -27/+92 |
| | | | | | Also changed the defaults to DES/MD5 as that's what should be used if GetCACaps is not used to learn the issuers capabilities. | ||||
* | Added function to convert integrity algorithms to hash algorithms (if based ↵ | Tobias Brunner | 2012-06-11 | 2 | -4/+50 |
| | | | | on one). | ||||
* | Properly encode 0 in ASN.1. | Tobias Brunner | 2012-06-11 | 1 | -10/+7 |
| | | | | | According to X.690 an INTEGER object always has at least one content octet. | ||||
* | Don't use chunk_skip() in asn1_length(). | Tobias Brunner | 2012-06-11 | 1 | -1/+2 |
| | | | | | | | | chunk_skip() returns chunk_empty if the length of the chunk is equal to the number of bytes to skip, this is problematic as asn1_length() modifies the original chunk. asn1_parser_t for instance uses the modified chunk to later calculate the length of the resulting ASN.1 object which produces incorrect results if it is based on chunk_empty. | ||||
* | Changed memory management and call logic in PKCS#7 parser/generator. | Tobias Brunner | 2012-06-11 | 2 | -85/+86 |
| | |||||
* | Changed memory management and attribute handling in PKCS#9 wrapper. | Tobias Brunner | 2012-06-11 | 3 | -112/+40 |
| | |||||
* | scepclient: Also number CA certificates in case there is more than one. | Tobias Brunner | 2012-06-11 | 2 | -14/+51 |
| | | | | Also, only number them if there are multiple certificates. | ||||
* | scepclient: Store received RA certificates, using CA cert name as base. | Tobias Brunner | 2012-06-11 | 1 | -5/+67 |
| | |||||
* | scepclient: Use pkcs7_t and pkcs9_t, remove all dependencies to ↵ | Tobias Brunner | 2012-06-11 | 4 | -289/+119 |
| | | | | pluto/libfreeswan. | ||||
* | Added get_attributes() method to pkcs7_t. | Tobias Brunner | 2012-06-11 | 2 | -1/+15 |
| | |||||
* | scepclient: Local generation of file names. | Tobias Brunner | 2012-06-11 | 1 | -10/+48 |
| | |||||
* | scepclient: Replaced usages of datatot(). | Tobias Brunner | 2012-06-11 | 1 | -6/+6 |
| |