aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/encoding
Commit message (Collapse)AuthorAgeFilesLines
* implemented IKE_SA rekeyingMartin Willi2006-07-272-82/+62
| | | | | | uses ikelifetime, rekeymargin and rekeyfuzz config settings no handling of simultaneus exchanges yet!
* cleanups in kernel interface codeMartin Willi2006-07-181-100/+8
| | | | | | added proper traffic selector to string conversion some cleanups here & there
* improved logging on verify errors for some payloadsMartin Willi2006-07-134-66/+36
| | | | | | enforcing IKE_SA shutdown, even when transactions are outstanding proper reject of CREATE_CHILD_SA message with KE payload
* added message id loggingMartin Willi2006-07-121-2/+4
|
* added all currently known notify payload typesMartin Willi2006-07-122-1/+34
|
* added policy cache to kernel interfaceMartin Willi2006-07-121-1/+1
| | | | | | allows refcounting of multiple installed policies finally brings us stable simultaneous rekeying
* fixed compiler warnings in parser when using -O2Martin Willi2006-07-071-3/+3
|
* updated copyright informationMartin Willi2006-07-0752-52/+104
|
* reimplemented CHILD_SA rekeying & deleteMartin Willi2006-07-071-0/+1
| | | | | no simultanous transaction with CHILD_SAs yet!
* redesigned IKE_SA using a transaction mechanism:Martin Willi2006-07-0512-151/+257
| | | | | | | | | | | | removed old state machine reimplemented IKE_SA setup and delete implemented dead peer detection implemented keep-alives a lot of fixes no rekeying yet
* support of cert payloadsAndreas Steffen2006-07-033-30/+55
|
* some message code cleanupsMartin Willi2006-06-232-32/+29
|
* first merge of NATT codeMartin Willi2006-06-224-5/+32
|
* added support for "ike" and "esp" keywordsMartin Willi2006-06-155-34/+43
| | | | | | | fixed bugs in proposal code algorithm selection for charon works now with ipsec.conf a lot of other fixes
* cosmeticsAndreas Steffen2006-06-122-48/+48
|
* old child_sa gets deleted after rekeyingMartin Willi2006-06-093-42/+99
| | | | | | rekeying almost complete, but: IKE_SA get in an invalid state when both initiate rekeying at the same time,
* specifying keysize in bits, as it is required in IKEv2Martin Willi2006-06-091-3/+6
| | | | | | added generic kernel SA algorithm handling, which brings us: aes-128, aes-256, blowfish, des, 3des and null encryption for CHILD_SAs
* further work for rekeying:Martin Willi2006-06-076-117/+152
| | | | | | | | | get liftimes from policy added new state initiation of rekeying done proposal redone: removed support for AH+ESP proposals
* job management:Martin Willi2006-05-311-0/+26
| | | | | | | | | | | | | moved job code from thread_pool to job, jobs have an "execute" method now added two new jobs: delete_child_sa & rekey_child_sa kernel interface: listens now for ACQUIRE & EXPIRE supports hard and soft lifetimes fires jobs for delete and rekey child sa ike sa manager: can checkout IKE SAs by requid of owned CHILD SAs we have now the infrastructure to do the rekeying... :-)
* - some logging improvements and cosmeticsMartin Willi2006-05-241-3/+4
|
* - handle IKE_SA setup without a piggy-packed CHILD_SAMartin Willi2006-05-243-2/+3
| | | | | more IKEv2 conform
* - reimplemented proper IKE SA deletion using a seperate state,Martin Willi2006-05-232-14/+10
| | | | | should conform now to IKEv2
* - introduced autotoolsMartin Willi2006-05-162-138/+0
| | | | | | | | | | - first working version - make dist should work - things to do: - UML testing! - more cleanups
* (no commit message)Martin Willi2006-05-1054-0/+15671
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 03:26:05 +0000