aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/config
Commit message (Collapse)AuthorAgeFilesLines
...
* corrected unwanted deletion in commentAndreas Steffen2008-11-121-2/+2
|
* ported some hard-to-merge cherries back to trunk :-/Martin Willi2008-11-122-32/+26
| | | | | shame, svn, shame: this was ways to complicated we should consider a switch to git...
* fixing keylength bug at the right place:Martin Willi2008-11-121-9/+1
| | | | we usually don't touch output parameters if operations fails
* improved fixAndreas Steffen2008-11-121-5/+9
|
* fixed AES-CCM/GCM authenticated encryption by eliminating generation of ↵Andreas Steffen2008-11-121-0/+4
| | | | superfluous generation of integrity keying material
* preliminary support of Mobile IPv6Andreas Steffen2008-11-111-9/+30
|
* added the MIPv6 options use_proxy_mode and install_policyAndreas Steffen2008-11-112-17/+87
|
* cosmetics in debug outputAndreas Steffen2008-11-111-6/+11
|
* replaced most pthread_mutex/cond_t by wrapped mutex/condvar_t variantMartin Willi2008-11-051-9/+10
|
* migrate_job() finds a matching child_cfgAndreas Steffen2008-11-032-0/+36
|
* corrected parameter descriptionAndreas Steffen2008-11-031-1/+1
|
* corrected captionsAndreas Steffen2008-11-021-13/+13
|
* corrected parameter descriptionAndreas Steffen2008-10-301-1/+1
|
* fixed some compiler warningsMartin Willi2008-10-271-0/+5
|
* merging kernel_pfkey plugin back from kernel-interface branchTobias Brunner2008-10-142-2/+64
|
* added proposal parsing of uncommon DH groups 3072/6144Martin Willi2008-10-081-0/+8
|
* merging renaming of mode_t to ipsec_mode_t back to trunkTobias Brunner2008-09-252-34/+7
|
* creating default IKE proposals dynamically using algorithm enumeration APIMartin Willi2008-08-281-22/+107
|
* ported parts of two-sim branchMartin Willi2008-08-222-91/+1
| | | | | | eap_identity parameter to exchange in eap_identity some auth_info/peer_cfg refactorings fixed some bugs, introduced new ones
* display protoport in dynamic/32 traffic selectorsAndreas Steffen2008-07-211-11/+12
|
* ipsec statusall displays dpd optionsAndreas Steffen2008-07-021-3/+3
|
* logging peer addresses in peer_cfg lookupMartin Willi2008-07-011-1/+2
|
* added host match prio to debugging outputMartin Willi2008-07-011-7/+8
|
* peer_cfg lookup takes peer addresses into accountMartin Willi2008-07-012-81/+101
|
* show authentication method in ipsec statusallAndreas Steffen2008-06-301-3/+3
|
* added %P printf handler for poposal_tMartin Willi2008-06-124-65/+171
| | | | added some proposal selection debugging code
* make config_auth_method_t backward compatible to existing sql templatesAndreas Steffen2008-06-101-3/+3
|
* ECDSA with OpenSSLTobias Brunner2008-06-102-12/+42
|
* DNS resolving of ike_cfg hosts dynamically on demandMartin Willi2008-06-063-29/+42
|
* log received DH groups and PRFs if no common proposal is foundAndreas Steffen2008-05-221-3/+23
|
* added the ECP groups from RFC 5114Tobias Brunner2008-05-221-0/+8
|
* added ECDH with OpenSSL (see RFC 4753)Tobias Brunner2008-05-221-0/+12
|
* list proposed ESP ENCRYPTION and INTEGRITY algorithms if no proposal is chosenAndreas Steffen2008-05-201-2/+23
|
* fixed a bug introduced in [3973]Tobias Brunner2008-05-191-2/+4
|
* ccm and gcm icv_sizes are accepted both in bits and octetsAndreas Steffen2008-05-171-7/+13
|
* Added support for AES-CCM and AES-GCM (authenticated encryption algorithms) ↵Tobias Brunner2008-05-161-9/+114
| | | | in charon.
* IPComp for IKEv2Tobias Brunner2008-05-082-3/+56
|
* renamed PRF_AES128_CBC to PRF_AES128_XCBCMartin Willi2008-05-081-2/+2
|
* returning reference pointer on get_ref()Martin Willi2008-05-066-29/+19
|
* implemented XCBC algorithms (signer, prf) for IKE on top of a crypterMartin Willi2008-04-301-1/+3
| | | | | | supporting ike=...-aesxcbc-... in ipsec.conf added AUTH_AES_XCBC_96 and PRF_AES128_CBC to default IKE proposal AES XCBC testcase
* fixed peer config equality checkMartin Willi2008-04-181-1/+2
|
* implemented IKE_SA uniqueness using ipsec.conf uniqueids paramaterMartin Willi2008-04-142-2/+44
| | | | additionally supports a "keep" value to keep the old IKE_SA
* added close_action as a seperate config option to dpd_actionMartin Willi2008-04-142-13/+36
|
* using dpd actions to enforce connection stateMartin Willi2008-04-114-75/+66
| | | | dpd actions a per child-, not peer ike-sa
* implementation of an CFG attribute framework, currently supporting virtual IPsMartin Willi2008-04-095-52/+316
| | | | | | updated ipsec.conf sourceip parameter to support CIDR notatation to serve from a pool %poolname to query a separate (database?) pool
* fixed two other memory leaksTobias Brunner2008-04-032-6/+2
|
* mediation extension adapted to the naming convention of the current version ↵Tobias Brunner2008-03-262-31/+31
| | | | of the draft. note: the external interface (config, autotools) has not yet been changed
* added equals() method to peer_cfg, ike_cfg, proposals, auth_infoMartin Willi2008-03-269-147/+349
| | | | | | allows easier merging of ipsec.conf connections replaced some iterators through enumerators made proposals algorithm_t private using enumerator
* fixed peer_cfg lookup when omitting IDrMartin Willi2008-03-191-0/+5
|
* merged the modularization branch (credentials) back to trunkMartin Willi2008-03-1321-3218/+577
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-28 15:45:44 +0000