aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/config/proposal.c
Commit message (Collapse)AuthorAgeFilesLines
* fixed compiler warnings on 64bitMartin Willi2009-04-221-1/+1
|
* merged multi-auth branch back into trunkMartin Willi2009-04-141-201/+39
|
* printf hooks refactored to increase portability (i.e. support for platforms ↵Tobias Brunner2009-03-121-42/+20
| | | | without glibc-compatible customizable printf - the Vstr string library is currently required on such platforms).
* added a MODP_NULL Diffie Hellman group to avoid calculation overhead in ↵Martin Willi2008-11-221-0/+7
| | | | load-testing
* fixing keylength bug at the right place:Martin Willi2008-11-121-9/+1
| | | | we usually don't touch output parameters if operations fails
* improved fixAndreas Steffen2008-11-121-5/+9
|
* fixed AES-CCM/GCM authenticated encryption by eliminating generation of ↵Andreas Steffen2008-11-121-0/+4
| | | | superfluous generation of integrity keying material
* added proposal parsing of uncommon DH groups 3072/6144Martin Willi2008-10-081-0/+8
|
* creating default IKE proposals dynamically using algorithm enumeration APIMartin Willi2008-08-281-22/+107
|
* added %P printf handler for poposal_tMartin Willi2008-06-121-65/+145
| | | | added some proposal selection debugging code
* log received DH groups and PRFs if no common proposal is foundAndreas Steffen2008-05-221-3/+23
|
* added the ECP groups from RFC 5114Tobias Brunner2008-05-221-0/+8
|
* added ECDH with OpenSSL (see RFC 4753)Tobias Brunner2008-05-221-0/+12
|
* list proposed ESP ENCRYPTION and INTEGRITY algorithms if no proposal is chosenAndreas Steffen2008-05-201-2/+23
|
* fixed a bug introduced in [3973]Tobias Brunner2008-05-191-2/+4
|
* ccm and gcm icv_sizes are accepted both in bits and octetsAndreas Steffen2008-05-171-7/+13
|
* Added support for AES-CCM and AES-GCM (authenticated encryption algorithms) ↵Tobias Brunner2008-05-161-9/+114
| | | | in charon.
* renamed PRF_AES128_CBC to PRF_AES128_XCBCMartin Willi2008-05-081-2/+2
|
* implemented XCBC algorithms (signer, prf) for IKE on top of a crypterMartin Willi2008-04-301-1/+3
| | | | | | supporting ike=...-aesxcbc-... in ipsec.conf added AUTH_AES_XCBC_96 and PRF_AES128_CBC to default IKE proposal AES XCBC testcase
* added equals() method to peer_cfg, ike_cfg, proposals, auth_infoMartin Willi2008-03-261-46/+161
| | | | | | allows easier merging of ipsec.conf connections replaced some iterators through enumerators made proposals algorithm_t private using enumerator
* merged the modularization branch (credentials) back to trunkMartin Willi2008-03-131-7/+2
|
* added compatibility names (pluto) for sha2 algorithms (sha2_256, ...)Martin Willi2007-05-251-4/+11
|
* added support for AES-XCBC in kernel using e.g. esp=aes128-aesxcbc ↵Martin Willi2007-04-231-0/+10
| | | | (>=linux-2.6.20)
* added PDF support for CHILD_SAsMartin Willi2007-04-191-33/+45
| | | | support for INVALID_KE_PAYLOAD negotiation for rekeying
* added AES-192/256 proposals to IKEMartin Willi2007-03-131-0/+2
|
* removed SHA2 kernel proposals from default, the kernel doesn't support them yetMartin Willi2007-03-081-6/+0
|
* added SHA2 MAC and PRF to default proposalMartin Willi2007-03-081-23/+58
|
* some cleanupsMartin Willi2007-03-051-5/+1
| | | | | | not assigning %any virtual IPs to peer anymore
* fixed double free bugMartin Willi2007-03-051-0/+18
|
* added support for NULL encryption in ESPMartin Willi2007-02-081-1/+5
|
* include NO_EXT_SEQUENCE_NUMBER in default proposalMartin Willi2007-02-081-0/+6
|
* removed deprecated iterator methods (has_next & current)Martin Willi2006-10-241-6/+3
| | | | added iterator hook to manipulate iterator the clean way
* linked list cleanupsMartin Willi2006-10-241-20/+5
| | | | | added list methods invoke(), destroy_offset(), destroy_function() simplified list destruction when destroying its items
* introduced new logging subsystem using bus:Martin Willi2006-10-181-33/+21
| | | | | | | passive listeners can register on the bus active listeners wait for signals actively multiplexing allows multiple listeners to receive debug signals a lot more...
* added copyright notice to sha2_hasherMartin Willi2006-09-191-1/+1
| | | | included SHA2 in build process
* added support for 3DES encryption algorithm in IKEMartin Willi2006-09-191-0/+1
|
* redesigned IKE_SA using a transaction mechanism:Martin Willi2006-07-051-0/+2
| | | | | | | | | | | | removed old state machine reimplemented IKE_SA setup and delete implemented dead peer detection implemented keep-alives a lot of fixes no rekeying yet
* added support for "ike" and "esp" keywordsMartin Willi2006-06-151-1/+157
| | | | | | | fixed bugs in proposal code algorithm selection for charon works now with ipsec.conf a lot of other fixes
* improved kernel interface loggingMartin Willi2006-06-091-3/+3
|
* fixed compile warnings when using -WallMartin Willi2006-06-081-1/+0
| | | | | | | | further CHILD_SA rekeying work done: creation of a new CHILD_SA on a expire from a kernel works delete of old CHILD_SA still missing some issues when both initiate rekeing
* further work for rekeying:Martin Willi2006-06-071-306/+122
| | | | | | | | | get liftimes from policy added new state initiation of rekeying done proposal redone: removed support for AH+ESP proposals
* (no commit message)Martin Willi2006-05-101-0/+642
generated by cgit v1.2.3 (git 2.25.1) at 2024-09-28 07:09:30 +0000