aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/threads/kernel_interface.c
Commit message (Collapse)AuthorAgeFilesLines
* restructured file layoutMartin Willi2007-04-101-1964/+0
| | | | | | | | | new configuration structure: peer_cfg: configuration related to a peer (authenitcation, ...= ike_cfg: config to use for IKE setup (proposals) child_Cfg: config for CHILD_SA (proposals, traffic selectors) a peer_cfg has one ike_cfg and multiple child_cfg's stroke now uses fixed count of threads
* removed unneded includesMartin Willi2007-03-301-1/+0
|
* using IFA_LOCAL for interface enumeration to support ppp linksMartin Willi2007-03-301-5/+20
|
* fixed SPI byte orderMartin Willi2007-03-211-1/+1
|
* not installing a route when policy gets updatedMartin Willi2007-03-201-2/+8
|
* always update reqid on policy install, fixes dpdaction=hold issueMartin Willi2007-03-191-9/+1
|
* disabling routing for IPv6, does not work correctlyMartin Willi2007-03-081-1/+2
|
* added (not yet supported) sha2 algorithms to kernelMartin Willi2007-03-081-7/+10
| | | | only adding a route if using tunnel mode
* fixed ID selection bug when peer doesn't include IDr payloadMartin Willi2007-03-051-1/+1
| | | | | allowing vendor ID in any messag
* fixed netlink socket receiver codeMartin Willi2007-03-031-67/+147
| | | | implemented interface enumeration code with netlink: no getifaddrs reqired anymore
* refactored kernel interface, works reliable againMartin Willi2007-03-031-1151/+942
|
* implemented get_iface() using RTM_GETADDRMartin Willi2007-03-021-71/+177
| | | | | added support for multi-header netlink messages really ugly now, need a lot of refactoring
* added debuggin for interface lookupMartin Willi2007-03-011-0/+3
|
* fixed address lookup when !using getifaddrs()Martin Willi2007-03-011-2/+2
|
* added support for 0.0.0.0/0 traffic selectorsMartin Willi2007-03-011-3/+44
| | | | fixed routing to make correct 0.0.0.0/0 routes
* merged tasking branch into trunkMartin Willi2007-02-281-106/+715
|
* fixed host conversion length checkMartin Willi2007-01-031-2/+2
|
* added support for transport mode and (experimental!) BEET modeMartin Willi2006-12-211-7/+8
| | | | | support for the type=transport/tunnel parameter in charon
* fixed 64 bit issueAndreas Steffen2006-10-311-1/+1
|
* improved signal handling and emittingMartin Willi2006-10-261-54/+54
|
* removed deprecated iterator methods (has_next & current)Martin Willi2006-10-241-4/+4
| | | | added iterator hook to manipulate iterator the clean way
* introduced new logging subsystem using bus:Martin Willi2006-10-181-81/+65
| | | | | | | passive listeners can register on the bus active listeners wait for signals actively multiplexing allows multiple listeners to receive debug signals a lot more...
* add priority management for kernel policyMartin Willi2006-09-081-4/+17
| | | | | | | let ROUTED policies installed, until manuall removed introduced new naming scheme to allow proper shutdown of IKE/CHILD_SAs ike_sa_manager cleanups
* reuse reqid when a ROUTED child_sa gets INSTALLEDMartin Willi2006-09-051-3/+0
| | | | | | | | | fixed a bug in retransmission code added support for the "keyingtries" ipsec.conf parameter added support for the "dpddelay" ipsec.conf parameter done some work for "dpdaction" behavior some other cleanups and fixes
* initial support for IPv6 (more testing needed)Martin Willi2006-08-301-26/+22
| | | | | | | | | socket works (without v6 filter) traffic selector handle IPv4/v4 cleanly improvements in traffic selector code kernel interface accepts v6 traffic selectors and hosts host_t class has full IPv6 support
* added possibility to route CHILD_SAs, without to set them upMartin Willi2006-07-211-20/+40
| | | | | | | support for auto=route parameter support for ipsec route and ipsec unroute initiating of CHILD and/or IKE_SAs based on kernel acquires
* cleanups in kernel interface codeMartin Willi2006-07-181-64/+218
| | | | | | added proper traffic selector to string conversion some cleanups here & there
* added policy cache to kernel interfaceMartin Willi2006-07-121-338/+447
| | | | | | allows refcounting of multiple installed policies finally brings us stable simultaneous rekeying
* further work done for simultaneous rekeying/deleteMartin Willi2006-07-101-8/+5
| | | | | still some cases which cause trouble
* updated copyright informationMartin Willi2006-07-071-1/+2
|
* reimplemented CHILD_SA rekeying & deleteMartin Willi2006-07-071-14/+13
| | | | | no simultanous transaction with CHILD_SAs yet!
* applied latest NATT patch with some fixes and cleanupsMartin Willi2006-07-041-8/+15
|
* applied new changes from NATT teamMartin Willi2006-06-231-0/+70
| | | | | DPD only done when no IPsec and IKE traffic processed minor changes here and there
* first merge of NATT codeMartin Willi2006-06-221-262/+391
|
* added support for "ike" and "esp" keywordsMartin Willi2006-06-151-0/+1
| | | | | | | fixed bugs in proposal code algorithm selection for charon works now with ipsec.conf a lot of other fixes
* improved kernel interface loggingMartin Willi2006-06-091-47/+38
|
* specifying keysize in bits, as it is required in IKEv2Martin Willi2006-06-091-53/+114
| | | | | | added generic kernel SA algorithm handling, which brings us: aes-128, aes-256, blowfish, des, 3des and null encryption for CHILD_SAs
* fixed compile warnings when using -WallMartin Willi2006-06-081-4/+3
| | | | | | | | further CHILD_SA rekeying work done: creation of a new CHILD_SA on a expire from a kernel works delete of old CHILD_SA still missing some issues when both initiate rekeing
* further work for rekeying:Martin Willi2006-06-071-4/+6
| | | | | | | | | get liftimes from policy added new state initiation of rekeying done proposal redone: removed support for AH+ESP proposals
* job management:Martin Willi2006-05-311-12/+70
| | | | | | | | | | | | | moved job code from thread_pool to job, jobs have an "execute" method now added two new jobs: delete_child_sa & rekey_child_sa kernel interface: listens now for ACQUIRE & EXPIRE supports hard and soft lifetimes fires jobs for delete and rekey child sa ike sa manager: can checkout IKE SAs by requid of owned CHILD SAs we have now the infrastructure to do the rekeying... :-)
* (no commit message)Martin Willi2006-05-101-0/+729
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-29 08:03:06 +0000