Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | fixed two leaks in stroke_interface | Martin Willi | 2007-11-19 | 1 | -6/+4 |
| | |||||
* | refactored bus and interface to resolve threading issues (WIP) | Martin Willi | 2007-11-15 | 1 | -1/+0 |
| | |||||
* | fixed bad cast which resulted in a crash on "ipsec update" | Martin Willi | 2007-10-05 | 1 | -1/+2 |
| | |||||
* | experimental P2P-NAT-T for IKEv2 merged back from branch | Tobias Brunner | 2007-10-03 | 1 | -4/+59 |
| | |||||
* | fixed "ipsec statusall" SPI formatting | Martin Willi | 2007-10-02 | 1 | -2/+2 |
| | |||||
* | remove control sockets on startup, as we don't have privileges on shutdown | Martin Willi | 2007-10-02 | 1 | -4/+2 |
| | |||||
* | moved force_encap to ike_config, enables responder to enforce udp encapsulation | Martin Willi | 2007-10-01 | 1 | -3/+3 |
| | | | | fixed bugs in force_encap code | ||||
* | implemented IKEv2 force_encap connection parameter | Martin Willi | 2007-10-01 | 1 | -2/+3 |
| | | | | | enforces UDP encapsulation by faking NAT detection payloads to hurdle restrictive firewalls | ||||
* | refactored strongswan manager | Martin Willi | 2007-09-26 | 1 | -1/+6 |
| | | | | | | | | removed buggy request parsing code, use ClearSilvers CGI kit instead fixed CHILD_SA listing in manager (needs better design) using secure XML communication through unix sockets removed images with questionable (non-GPL) license | ||||
* | prototype implemementation of an sqlite configuration backend | Martin Willi | 2007-09-18 | 1 | -42/+4 |
| | |||||
* | adapted format of IKE SPIs to strongSwan Manager's style | Andreas Steffen | 2007-09-15 | 1 | -2/+2 |
| | |||||
* | peer_cfg now knows about group memberships | Andreas Steffen | 2007-09-13 | 1 | -1/+21 |
| | |||||
* | added mobike=yes|no connection option | Martin Willi | 2007-08-29 | 1 | -2/+2 |
| | | | | | | | yes: include mobike support notifies as initiator no: only enable mobike as responder when initiator supports it default: yes | ||||
* | ipsec stroke rereadaacerts|rereadacerts supported | Andreas Steffen | 2007-08-10 | 1 | -0/+8 |
| | |||||
* | support of ipsec rereadsecrets for stroke | Andreas Steffen | 2007-08-10 | 1 | -0/+4 |
| | |||||
* | implemented listing of attribute certificates | Andreas Steffen | 2007-08-07 | 1 | -0/+18 |
| | |||||
* | fixed segfault when sourceip in stroke message is NULL | Martin Willi | 2007-08-06 | 1 | -2/+2 |
| | |||||
* | allow starter to initiate connections simultaneously (on auto=start) | Martin Willi | 2007-08-06 | 1 | -4/+12 |
| | |||||
* | support for left=%any change our address dynamically | Martin Willi | 2007-06-18 | 1 | -4/+6 |
| | |||||
* | implemented more flexible iterator hook API | Martin Willi | 2007-06-15 | 1 | -2/+1 |
| | | | | kernel interface handles interface changes and updates address list | ||||
* | implemented address change notification (for MOBIKE) | Martin Willi | 2007-06-14 | 1 | -7/+6 |
| | | | | | implemented up to date address list cache to list interfaces | ||||
* | introduced callback_job: | Martin Willi | 2007-06-11 | 1 | -102/+80 |
| | | | | | | | | | | | | simple asynchronous method invocation use daemons thread pool for all threads proper cancellation and cleanups cancellation mechanism to dynamically unload multithreaded code unified event_queue and scheduler => scheduler unified job_queue and thread_pool => processor removed job_type_t, not really needed fixes here, there and everywhere | ||||
* | proper thread cancellation when using the charon->interfaces | Martin Willi | 2007-05-23 | 1 | -2/+0 |
| | |||||
* | support for virtual IP definition on client side: | Martin Willi | 2007-05-22 | 1 | -1/+4 |
| | | | | | | | if leftsourceip is defined, it is requested. server may define rightsourceip=%config to accept any, or it may overwrite it using rightsourceip. if server does not return an IP, client enforces its configured leftsourceip. | ||||
* | support of left|rightgroups parameter | Andreas Steffen | 2007-05-20 | 1 | -31/+28 |
| | |||||
* | support of CA-based ipsec policies | Andreas Steffen | 2007-05-18 | 1 | -24/+78 |
| | |||||
* | removed route_job, handled all in interface_manager | Martin Willi | 2007-05-16 | 1 | -1/+0 |
| | |||||
* | routing/unrouting through interface | Martin Willi | 2007-05-16 | 1 | -11/+57 |
| | |||||
* | simplified capability dropping | Martin Willi | 2007-05-09 | 1 | -2/+1 |
| | |||||
* | properly implemented interface_managers initiate, terminte_[ike|child] | Martin Willi | 2007-05-09 | 1 | -46/+53 |
| | | | | | proper thread release when stroke is CTRL+C'ed fixed some permission issues | ||||
* | changing UID/GID after startup of pluto/charon | Martin Willi | 2007-05-07 | 1 | -1/+1 |
| | | | | added --with-uid/--with-gid configure option | ||||
* | reducing capabilities of the threads to a minimum | Martin Willi | 2007-05-03 | 1 | -2/+5 |
| | | | | | | proper flush of pending packets on daemon shutdown adding local address as gateway address in dynamic route | ||||
* | fixed casting | Andreas Steffen | 2007-04-27 | 1 | -2/+2 |
| | |||||
* | restructuring of configuration backends | Martin Willi | 2007-04-27 | 1 | -0/+1622 |
added propotypes of new control interfaces (xml & dbus) introduced loadable: configuration backends control interfaces using pluggable modules as in EAP |