aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/config/connections
Commit message (Collapse)AuthorAgeFilesLines
* implemented proper refcounting using atomic operationsMartin Willi2006-07-282-3/+6
|
* implemented IKE_SA rekeyingMartin Willi2006-07-272-6/+82
| | | | | | uses ikelifetime, rekeymargin and rekeyfuzz config settings no handling of simultaneus exchanges yet!
* introduced refcounting on policy and connectionsMartin Willi2006-07-203-97/+45
| | | | | | | | | aren't stored in the IKE_SA anymore, they are queried on the fly are immutable now, allows it to share them policy selection based on traffic selectors, leads to valid lookup results rekeying queries the policy based on its traffic selectors
* cleanups in kernel interface codeMartin Willi2006-07-181-7/+7
| | | | | | added proper traffic selector to string conversion some cleanups here & there
* updated copyright informationMartin Willi2006-07-073-9/+11
|
* redesigned IKE_SA using a transaction mechanism:Martin Willi2006-07-051-1/+1
| | | | | | | | | | | | removed old state machine reimplemented IKE_SA setup and delete implemented dead peer detection implemented keep-alives a lot of fixes no rekeying yet
* log entries start with lowcercase characterAndreas Steffen2006-07-041-2/+6
|
* support of cert payloadsAndreas Steffen2006-07-032-9/+11
|
* applied new changes from NATT teamMartin Willi2006-06-231-1/+1
| | | | | DPD only done when no IPsec and IKE traffic processed minor changes here and there
* readded local_credential_storeMartin Willi2006-06-202-11/+112
| | | | | | added sendcert policy to connection some other cleanups
* added support for "ike" and "esp" keywordsMartin Willi2006-06-151-5/+5
| | | | | | | fixed bugs in proposal code algorithm selection for charon works now with ipsec.conf a lot of other fixes
* workaround for peers rekeying at the same timeMartin Willi2006-06-121-1/+1
| | | | | loading lifetime policies from ipsec.conf
* fixed compile warnings when using -WallMartin Willi2006-06-081-1/+1
| | | | | | | | further CHILD_SA rekeying work done: creation of a new CHILD_SA on a expire from a kernel works delete of old CHILD_SA still missing some issues when both initiate rekeing
* further work for rekeying:Martin Willi2006-06-071-5/+4
| | | | | | | | | get liftimes from policy added new state initiation of rekeying done proposal redone: removed support for AH+ESP proposals
* full support of ikev1 and ikev2 connection flagsAndreas Steffen2006-05-301-6/+7
|
* changed log levelAndreas Steffen2006-05-301-2/+2
|
* - policies contain a connections name nowMartin Willi2006-05-294-185/+84
| | | | | | | | - used for initiate and delete - connections won't get initiated twice anymore - deleting of connections is now possible, which allows us to use ipsec update and ipsec reload
* - show connection templates in status & statusallMartin Willi2006-05-232-0/+55
| | | | | - don't complain on termination of IKEv1 connections
* - changed config load strategy:Martin Willi2006-05-232-3/+33
| | | | | | | starter loads both connections in charon & pluto, charon ignores anything with keyexchange!=ikev2. pluto needs the same behavior.
* - applied andreas's patchMartin Willi2006-05-181-41/+56
| | | | | | | - logger output improvements - testin gupdates - and a lot more
* - introduced autotoolsMartin Willi2006-05-161-24/+0
| | | | | | | | | | - first working version - make dist should work - things to do: - UML testing! - more cleanups
* (no commit message)Martin Willi2006-05-106-0/+1077
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-09 18:25:16 +0000