aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* fixed crash in openssl signature verification if sizeof(size_t) != ↵Martin Willi2008-10-311-1/+3
| | | | sizeof(int) (64bit)
* identify attributes of XFRM ACQUIRE and MIGRATE messagesAndreas Steffen2008-10-311-14/+58
|
* subscribing XFRM socket for MIGRATE messagesAndreas Steffen2008-10-311-2/+3
|
* adapted evaltest.dat to extended acquire job messageAndreas Steffen2008-10-315-6/+6
|
* parse xfrm and pf_key acquire messages and subscribe to migrate messagesAndreas Steffen2008-10-314-37/+216
|
* reverted changeset 4529:Martin Willi2008-10-301-2/+1
| | | | | Camellia is 22 in IKEv1, but not-yet defined in IKEv2 in IKEv2, 22 is reserved for AES-XTS
* added hooks for IKE and CHILD keymatMartin Willi2008-10-309-44/+179
|
* store plain skd, not the prfMartin Willi2008-10-302-23/+19
|
* added Camellia CBC to list of encryption algorithmsAndreas Steffen2008-10-301-1/+2
|
* corrected parameter descriptionAndreas Steffen2008-10-301-1/+1
|
* moved CHILD_SA key derivation to keymat_tMartin Willi2008-10-297-440/+438
| | | | passing key chunks to CHILD_SA, not the PRF
* prf handles zero-length allocations gracefulMartin Willi2008-10-291-3/+10
|
* do not store DH redundant in keymatMartin Willi2008-10-293-52/+30
|
* replaced not-maintained ChangeLogMartin Willi2008-10-291-1079/+3
|
* upgrade to linux-2.6.28 headers with support for kmaddress structAndreas Steffen2008-10-292-1/+29
|
* moved key derivation and management into keymat objectMartin Willi2008-10-2813-585/+748
| | | | | | allows secured implementation of key management (e.g. in kernel or HW) only IKE keys for now
* store IKE proposal implicitly during derive_keysMartin Willi2008-10-284-46/+18
|
* fixed reauthentication time in statusallMartin Willi2008-10-281-1/+1
|
* refining changeset 4483 by introducing charon.dh_exponent_ansi_x9_42 keyAndreas Steffen2008-10-283-27/+62
|
* use more generic stats getter, introducing new statsMartin Willi2008-10-274-80/+62
|
* new release of NM debsMartin Willi2008-10-271-1/+6
|
* including a "none" tundev to make NM happyMartin Willi2008-10-271-44/+28
|
* fixed some compiler warningsMartin Willi2008-10-276-9/+11
|
* remove unused local DH_EXPONENT_ENTROPY definitionAndreas Steffen2008-10-271-2/+0
|
* use 512 bits of entropy for secret DH exponentsAndreas Steffen2008-10-264-2/+10
|
* additional getters for ipcomp and UDP encapMartin Willi2008-10-243-7/+37
|
* more CHILD_SA refactoringsMartin Willi2008-10-244-131/+135
|
* initiate connections simultaneously in load testerMartin Willi2008-10-221-2/+9
|
* include updown plugin in sql scenariosAndreas Steffen2008-10-2133-33/+33
|
* a load testing plugin, to:Martin Willi2008-10-2111-0/+846
| | | | | find multi-threading issues do performance profiling
* fixed enumeration of CHILD_SA traffic selectorsMartin Willi2008-10-211-24/+25
|
* use old algorithm nameagain in pfkey/alg-aes-xcbc scenarioAndreas Steffen2008-10-211-2/+2
|
* reset threads IKE_SA after checking other IKE_SAsMartin Willi2008-10-204-9/+26
| | | | invoke updown script only if we have valid IKE_SA
* re-established all previous AUD level messagesAndreas Steffen2008-10-173-6/+7
|
* fixed perl oid generationMartin Willi2008-10-161-2/+2
|
* loading updown plugin if requiredMartin Willi2008-10-16166-166/+166
|
* moved updown script invocation to an optional pluginMartin Willi2008-10-1612-245/+354
|
* bus uses finally recusive lockingMartin Willi2008-10-161-47/+58
| | | | other small fixes
* condvar->wait() can handle recursive mutexMartin Willi2008-10-161-20/+76
|
* added missing EAP-AKA RFCMartin Willi2008-10-161-0/+4427
|
* added a guest.mconsole() method to script mconsole (e.g. add additional conX=)Martin Willi2008-10-155-14/+33
|
* cache keys for in and outbound ESP SAsMartin Willi2008-10-154-202/+241
| | | | | removed redundant storing of traffic selectors in CHILD_SA (sa_policy_t) creating TS pairs dynamically using create_policy_enumerator()
* typedef fixedTobias Brunner2008-10-151-2/+2
|
* reverted changeset [4440], [4443] uses old algorithm name againMartin Willi2008-10-151-2/+2
|
* store ESP keys in CHILD_SAMartin Willi2008-10-154-57/+78
|
* activate compilation of the kernel_pfkey pluginAndreas Steffen2008-10-151-1/+1
|
* added PFKEYv2 UML scenariosAndreas Steffen2008-10-1567-0/+832
|
* name of ESP algorithm changed to AES_XCBC_96-128Andreas Steffen2008-10-141-2/+2
|
* passing chunks, not prf+, to kernel interfaceMartin Willi2008-10-147-210/+263
| | | | gives us better control of keymat in CHILD_SA
* typosTobias Brunner2008-10-141-6/+6
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 06:49:50 +0000