aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Expand)AuthorAgeFilesLines
...
* p-cscf: Make sending requests configurable and disable it by defaultTobias Brunner2016-03-101-2/+6
* p-cscf: Only send requests if virtual IPs of the same family are requestedTobias Brunner2016-03-101-2/+18
* p-cscf: Add attribute handler for P-CSCF server addressesTobias Brunner2016-03-104-1/+243
* p-cscf: Add plugin stubTobias Brunner2016-03-105-0/+132
* payloads: Verify P-CSCF configuration attributes like others carrying IP addr...Tobias Brunner2016-03-101-0/+2
* attributes: Define P-CSCF address attributes described in RFC 7651Tobias Brunner2016-03-102-6/+13
* ike-sa: Improve interaction between flush_auth_cfg and delayed revocation checksTobias Brunner2016-03-101-26/+37
* ikev2: Delay online revocation checks during make-before-break reauthenticationTobias Brunner2016-03-101-0/+5
* ikev2: Add task that verifies a peer's certificateTobias Brunner2016-03-107-2/+183
* ikev2: Initiate other tasks after a no-op taskTobias Brunner2016-03-101-1/+1
* ikev2: Don't do online revocation checks in pubkey authenticator if requestedTobias Brunner2016-03-101-1/+8
* ike-sa: Add condition to suspend online certificate revocation checks for an ...Tobias Brunner2016-03-101-0/+5
* ike-sa: Add method to verify certificates in completed authentication roundsTobias Brunner2016-03-102-0/+111
* auth-cfg: Add a rule to suspend certificate validation constraintsTobias Brunner2016-03-102-0/+18
* credential-manager: Check cache queue when destroying trusted certificate enu...Tobias Brunner2016-03-101-1/+2
* credential-manager: Make online revocation checks optional for public key enu...Tobias Brunner2016-03-106-7/+14
* charon-svc: Inherit all settings from the charon sectionTobias Brunner2016-03-081-0/+9
* charon-systemd: Inherit all settings from the charon sectionTobias Brunner2016-03-081-0/+9
* library: Add option to register additional namespaces before calling library_...Tobias Brunner2016-03-082-2/+43
* vici: Replace child configs atomicallyTobias Brunner2016-03-081-14/+11
* peer-cfg: Add method to atomically replace child configsTobias Brunner2016-03-082-2/+128
* ike-cfg: Use new method to compare proposal lists in equals()Tobias Brunner2016-03-081-20/+4
* peer-cfg: Use new method to compare linked lists in equals()Tobias Brunner2016-03-081-36/+3
* child-cfg: Add equals() methodTobias Brunner2016-03-082-2/+62
* linked-list: Add method to compare two lists of objects for equalityTobias Brunner2016-03-083-2/+166
* vici: Order auth rounds by optional `round` parameter instead of by position ...Tobias Brunner2016-03-082-40/+74
* ikev1: Send NAT-D payloads after vendor ID payloads in Aggressive Mode messagesTobias Brunner2016-03-071-6/+6
* ike-sa-manager: Log a checkin/failure message for every checkoutThomas Egerer2016-03-071-8/+32
* Display IKE ports with swanctl --list-sasAndreas Steffen2016-03-051-4/+9
* ike-sa-manager: Log some additional details like SPIs when checking out SAsTobias Brunner2016-03-041-7/+16
* smp: Correctly return IKE SPIs stored in network orderTobias Brunner2016-03-041-4/+4
* vici: Correctly return IKE SPIs stored in network orderTobias Brunner2016-03-041-2/+4
* stroke: Correctly print IKE SPIs stored in network orderTobias Brunner2016-03-041-2/+4
* byteorder: Simplify htoun64/untoh64 functionsTobias Brunner2016-03-041-27/+0
* byteorder: Always define be64toh/htobe64 macrosTobias Brunner2016-03-041-20/+30
* swanctl: Document signature scheme constraintsTobias Brunner2016-03-041-1/+30
* vici: Add support for pubkey constraints with EAP-TLSTobias Brunner2016-03-041-0/+8
* auth-cfg: Make IKE signature schemes configurableTobias Brunner2016-03-047-42/+194
* ikev2: Always store signature scheme in auth-cfgTobias Brunner2016-03-041-12/+1
* ikev2: Diversify signature scheme ruleThomas Egerer2016-03-044-33/+72
* ike-init: Verify REDIRECT notify before processing IKE_SA_INIT messageTobias Brunner2016-03-041-7/+51
* ikev2: Allow tasks to verify request messages before processing themTobias Brunner2016-03-041-4/+47
* ikev2: Allow tasks to verify response messages before processing themTobias Brunner2016-03-041-1/+27
* task: Add optional pre_process() methodTobias Brunner2016-03-041-1/+13
* ike-init: Ignore notifies related to redirects during rekeyingTobias Brunner2016-03-041-3/+13
* ike-sa: Add limit for the number of redirects within a defined time periodTobias Brunner2016-03-042-0/+54
* ike-sa: Reauthenticate to the same addresses we currently useTobias Brunner2016-03-041-2/+5
* vici: Don't redirect all SAs if no selectors are givenTobias Brunner2016-03-041-1/+1
* vici: Match subnets and ranges against peer IP in redirect commandTobias Brunner2016-03-043-13/+43
* vici: Match identity with wildcards against remote ID in redirect commandTobias Brunner2016-03-043-6/+10
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-08 03:37:47 +0000