aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon
Commit message (Collapse)AuthorAgeFilesLines
...
* fixed SPI when rekeying and deleting CHILD_SAsMartin Willi2006-06-195-14/+19
|
* change key derivation order to fullfill RFCMartin Willi2006-06-191-11/+26
|
* (no commit message)Martin Willi2006-06-162-6/+6
|
* added crl supportAndreas Steffen2006-06-163-15/+188
|
* added listcrlsAndreas Steffen2006-06-161-1/+7
|
* fixed compilation errorMartin Willi2006-06-151-2/+1
|
* fixed aes code, we support now aes128, aes192, aes256 in IKEMartin Willi2006-06-154-9/+108
|
* added support for "ike" and "esp" keywordsMartin Willi2006-06-1515-97/+367
| | | | | | | fixed bugs in proposal code algorithm selection for charon works now with ipsec.conf a lot of other fixes
* implemented clean spi allocation behavior when using multiple proposalsMartin Willi2006-06-151-35/+104
|
* added default CRL directory pathAndreas Steffen2006-06-141-0/+7
|
* added option parsingAndreas Steffen2006-06-141-11/+59
|
* debug and logging improvementsMartin Willi2006-06-138-16/+43
|
* support for stroke listcerts|listcacerts|listall and left|rightca=Andreas Steffen2006-06-121-55/+91
|
* using same reqid if a child sa rekeys an existing oneMartin Willi2006-06-127-20/+37
|
* add_certificate() now returns pointer to added certAndreas Steffen2006-06-122-8/+8
|
* cosmeticsAndreas Steffen2006-06-124-101/+101
|
* workaround for peers rekeying at the same timeMartin Willi2006-06-129-16/+87
| | | | | loading lifetime policies from ipsec.conf
* old child_sa gets deleted after rekeyingMartin Willi2006-06-0919-99/+583
| | | | | | rekeying almost complete, but: IKE_SA get in an invalid state when both initiate rekeying at the same time,
* improved kernel interface loggingMartin Willi2006-06-095-63/+50
|
* fixed clone/destroy behavior when not using CAsMartin Willi2006-06-091-5/+17
|
* specifying keysize in bits, as it is required in IKEv2Martin Willi2006-06-098-142/+171
| | | | | | added generic kernel SA algorithm handling, which brings us: aes-128, aes-256, blowfish, des, 3des and null encryption for CHILD_SAs
* added support for leftsendcert= and left|rightca= parametersAndreas Steffen2006-06-093-10/+66
|
* discard cert if CA basic constraints flag is not set and warn if cert is not ↵Andreas Steffen2006-06-091-5/+16
| | | | valide
* fixed compile warnings when using -WallMartin Willi2006-06-0825-206/+829
| | | | | | | | further CHILD_SA rekeying work done: creation of a new CHILD_SA on a expire from a kernel works delete of old CHILD_SA still missing some issues when both initiate rekeing
* further work for rekeying:Martin Willi2006-06-0736-1398/+1392
| | | | | | | | | get liftimes from policy added new state initiation of rekeying done proposal redone: removed support for AH+ESP proposals
* fixed a memleakMartin Willi2006-06-071-1/+5
|
* created IPv6 environmentAndreas Steffen2006-06-061-4/+4
|
* job management:Martin Willi2006-05-3131-738/+929
| | | | | | | | | | | | | moved job code from thread_pool to job, jobs have an "execute" method now added two new jobs: delete_child_sa & rekey_child_sa kernel interface: listens now for ACQUIRE & EXPIRE supports hard and soft lifetimes fires jobs for delete and rekey child sa ike sa manager: can checkout IKE SAs by requid of owned CHILD SAs we have now the infrastructure to do the rekeying... :-)
* - fixed some memleaks/freebugsMartin Willi2006-05-313-9/+6
| | | | | - leak detective works almost usable now (?!)
* - fixed host-host tunnel traffic selection, host-host works nowMartin Willi2006-05-314-8/+30
|
* minimized prefixed on stroke logger outputAndreas Steffen2006-05-311-1/+1
|
* charon outputs strongSwan versionAndreas Steffen2006-05-311-0/+3
|
* (no commit message)Martin Willi2006-05-301-10/+13
|
* - fixed event queue for events >36minMartin Willi2006-05-301-30/+17
|
* (no commit message)Martin Willi2006-05-301-0/+1
|
* - included charons module tests to build & distMartin Willi2006-05-309-11/+44
|
* full support of ikev1 and ikev2 connection flagsAndreas Steffen2006-05-301-6/+7
|
* cosmetics in log_status outputAndreas Steffen2006-05-301-1/+1
|
* use of streqAndreas Steffen2006-05-301-1/+1
|
* lookup of private key based on keyid of public keyAndreas Steffen2006-05-301-24/+47
|
* new functions to add certificates and retrieve private and public keysAndreas Steffen2006-05-303-120/+182
|
* changed log levelAndreas Steffen2006-05-301-2/+2
|
* list ca certificatesAndreas Steffen2006-05-301-2/+3
|
* define default CA_CERTIFICATE_DIRAndreas Steffen2006-05-301-2/+9
|
* load all ca certificatesAndreas Steffen2006-05-301-1/+1
|
* - fixed daemon destruction order to preventMartin Willi2006-05-301-25/+33
| | | | | crashes on termination
* - fixed memleak when deleting a connectionMartin Willi2006-05-291-1/+5
|
* - updated todo listMartin Willi2006-05-291-1/+4
|
* - policies contain a connections name nowMartin Willi2006-05-2913-307/+438
| | | | | | | | - used for initiate and delete - connections won't get initiated twice anymore - deleting of connections is now possible, which allows us to use ipsec update and ipsec reload
* stroke now uses constant size string bufferAndreas Steffen2006-05-291-28/+44
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 06:46:47 +0000