aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/encoding/payloads
Commit message (Collapse)AuthorAgeFilesLines
...
* implemented RFC4478 (repeated authentication)Martin Willi2007-11-202-21/+10
| | | | | changed %V printf handler to take a time delta, %#V now takes two arguments
* experimental P2P-NAT-T for IKEv2 merged back from branchTobias Brunner2007-10-038-6/+717
|
* ID payload with explicit payload typeTobias Brunner2007-10-023-67/+18
|
* typosTobias Brunner2007-09-271-1/+1
|
* backports from the p2p-nat-t branch:Tobias Brunner2007-07-191-7/+7
| | | | | | * double assignment of function ''destroy'' in some jobs * typos
* show kind of notify contained in messages in logMartin Willi2007-07-032-0/+60
|
* further fixed for mobike roamingMartin Willi2007-06-252-3/+7
|
* further MOBIKE stuff:Martin Willi2007-06-211-28/+28
| | | | | | | | | kernel properly reports network reconfiguration and informs all IKE_SAs MOBIKE in IKE_AUTH: MOBIKE_SUPPORTED notify and address exchange reestablishment of IKE_SAs on network reconfiguration kinda works not stable yet!
* added CERT_ROOFAndreas Steffen2007-03-231-1/+1
|
* added CERT_ROOFAndreas Steffen2007-03-232-2/+3
|
* added certificate encoding OCSP contentAndreas Steffen2007-03-232-3/+5
|
* fixed CHILD_SA rekeying/delete bug on 64bit machinesMartin Willi2007-03-192-144/+10
| | | | removed obsolete methods in delete_payload
* generalized get_ca_certificate() to get_auth_certificate(auth_flags)Andreas Steffen2007-03-081-1/+1
|
* support if ocsp signing certificatesAndreas Steffen2007-03-081-5/+6
|
* fixed double free bugMartin Willi2007-03-051-9/+2
|
* fixed ID selection bug when peer doesn't include IDr payloadMartin Willi2007-03-051-0/+2
| | | | | allowing vendor ID in any messag
* merged tasking branch into trunkMartin Willi2007-02-287-36/+75
|
* merged EAP framework from branch into trunkMartin Willi2007-02-125-65/+216
| | | | | includes a lot of other modifications
* be more liberal in accepting notifies with a protocol idMartin Willi2007-02-081-9/+6
|
* fixed crash when CA for certrequest not foundMartin Willi2007-01-081-4/+14
|
* added support for transport mode and (experimental!) BEET modeMartin Willi2006-12-211-1/+2
| | | | | support for the type=transport/tunnel parameter in charon
* fixed encoding rules stringMartin Willi2006-12-141-11/+10
| | | | updated todo
* fixed some byte-order issuesMartin Willi2006-12-121-1/+1
|
* better split up of library files "types.h" & "definitions.h"Martin Willi2006-10-3138-46/+42
| | | | | | | | | centralized all printf specifier character definitions reuse of arginfo handlers more cleanups fixed more AMD64 issues added DEBUG_LEVEL compile flag to exclude DBGn() statements
* moved typedefs to beginning of files to solve some include problemsMartin Willi2006-10-3024-146/+119
| | | | | | | splitted authenticator to have a separate implementation for each auth_method_t using va_copy to clone va_lists, should fix proplems on AMD64 some other cleanups
* cosmetics in debug outputAndreas Steffen2006-10-291-2/+2
|
* support of certreq payload in IKE_AUTH messagesAndreas Steffen2006-10-282-6/+63
|
* added function certreq_payload_create_from_x509()Andreas Steffen2006-10-282-13/+35
|
* cosmeticsAndreas Steffen2006-10-281-13/+13
|
* improved signal handling and emittingMartin Willi2006-10-265-46/+46
|
* removed deprecated iterator methods (has_next & current)Martin Willi2006-10-246-127/+83
| | | | added iterator hook to manipulate iterator the clean way
* linked list cleanupsMartin Willi2006-10-246-71/+15
| | | | | added list methods invoke(), destroy_offset(), destroy_function() simplified list destruction when destroying its items
* introduced new logging subsystem using bus:Martin Willi2006-10-1824-728/+545
| | | | | | | passive listeners can register on the bus active listeners wait for signals actively multiplexing allows multiple listeners to receive debug signals a lot more...
* moved auth_method to policyAndreas Steffen2006-09-251-1/+1
|
* initial support for IPv6 (more testing needed)Martin Willi2006-08-301-0/+9
| | | | | | | | | socket works (without v6 filter) traffic selector handle IPv4/v4 cleanly improvements in traffic selector code kernel interface accepts v6 traffic selectors and hosts host_t class has full IPv6 support
* moved interface enumeration code to socket, where it belongsMartin Willi2006-08-281-0/+2
| | | | | query interfaces every time we need it to respect changes in network config added address listing on startup and "ipsec statusall"
* implemented IKE_SA rekeyingMartin Willi2006-07-272-82/+62
| | | | | | uses ikelifetime, rekeymargin and rekeyfuzz config settings no handling of simultaneus exchanges yet!
* cleanups in kernel interface codeMartin Willi2006-07-181-100/+8
| | | | | | added proper traffic selector to string conversion some cleanups here & there
* improved logging on verify errors for some payloadsMartin Willi2006-07-134-66/+36
| | | | | | enforcing IKE_SA shutdown, even when transactions are outstanding proper reject of CREATE_CHILD_SA message with KE payload
* added all currently known notify payload typesMartin Willi2006-07-122-1/+34
|
* updated copyright informationMartin Willi2006-07-0746-46/+92
|
* reimplemented CHILD_SA rekeying & deleteMartin Willi2006-07-071-0/+1
| | | | | no simultanous transaction with CHILD_SAs yet!
* redesigned IKE_SA using a transaction mechanism:Martin Willi2006-07-0510-81/+158
| | | | | | | | | | | | removed old state machine reimplemented IKE_SA setup and delete implemented dead peer detection implemented keep-alives a lot of fixes no rekeying yet
* support of cert payloadsAndreas Steffen2006-07-033-30/+55
|
* first merge of NATT codeMartin Willi2006-06-222-0/+6
|
* added support for "ike" and "esp" keywordsMartin Willi2006-06-154-28/+37
| | | | | | | fixed bugs in proposal code algorithm selection for charon works now with ipsec.conf a lot of other fixes
* cosmeticsAndreas Steffen2006-06-121-3/+3
|
* old child_sa gets deleted after rekeyingMartin Willi2006-06-093-42/+99
| | | | | | rekeying almost complete, but: IKE_SA get in an invalid state when both initiate rekeying at the same time,
* specifying keysize in bits, as it is required in IKEv2Martin Willi2006-06-091-3/+6
| | | | | | added generic kernel SA algorithm handling, which brings us: aes-128, aes-256, blowfish, des, 3des and null encryption for CHILD_SAs
* further work for rekeying:Martin Willi2006-06-075-114/+147
| | | | | | | | | get liftimes from policy added new state initiation of rekeying done proposal redone: removed support for AH+ESP proposals
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-28 06:51:07 +0000