aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon
Commit message (Collapse)AuthorAgeFilesLines
...
* further work done for simultaneous rekeying/deleteMartin Willi2006-07-1015-229/+312
| | | | | still some cases which cause trouble
* fixed compiler warnings in parser when using -O2Martin Willi2006-07-071-3/+3
|
* updated copyright informationMartin Willi2006-07-07160-170/+325
|
* reimplemented CHILD_SA rekeying & deleteMartin Willi2006-07-0721-294/+1582
| | | | | no simultanous transaction with CHILD_SAs yet!
* added support for leftprotoport and rightprotoportMartin Willi2006-07-053-11/+24
|
* improved CHILD_SA output for "ipsec statusall"Martin Willi2006-07-051-61/+106
|
* redesigned IKE_SA using a transaction mechanism:Martin Willi2006-07-0571-8081/+4767
| | | | | | | | | | | | removed old state machine reimplemented IKE_SA setup and delete implemented dead peer detection implemented keep-alives a lot of fixes no rekeying yet
* made thread ids unsigned again, to avoid negative thread ids on some systemsMartin Willi2006-07-044-4/+4
|
* fixed memleak when initiating a connection already upMartin Willi2006-07-041-0/+1
|
* applied latest NATT patch with some fixes and cleanupsMartin Willi2006-07-042-9/+16
|
* log entries start with lowcercase characterAndreas Steffen2006-07-042-25/+33
|
* fixed natd_hash memory leakAndreas Steffen2006-07-031-2/+7
|
* support of cert payloadsAndreas Steffen2006-07-0322-619/+959
|
* lowercase log entriesAndreas Steffen2006-07-031-1/+1
|
* added X.509 trust chain verificationAndreas Steffen2006-06-273-6/+265
|
* applied new changes from NATT teamMartin Willi2006-06-2317-69/+356
| | | | | DPD only done when no IPsec and IKE traffic processed minor changes here and there
* some message code cleanupsMartin Willi2006-06-233-38/+46
|
* cleaner error handling on UDP encapsultion sockopt failureMartin Willi2006-06-221-8/+7
|
* added mysterious UDP encapsulation socket option to get encapsulation workingMartin Willi2006-06-221-0/+20
|
* first merge of NATT codeMartin Willi2006-06-2243-758/+2867
|
* fixed testing build4.0.1Martin Willi2006-06-211-1/+1
|
* reworked function ignore mechanism to not-report whitelistMartin Willi2006-06-201-2/+2
| | | | rather than overriding functions
* fixed bug: usage of already freed memMartin Willi2006-06-201-1/+2
|
* readded local_credential_storeMartin Willi2006-06-2010-88/+256
| | | | | | added sendcert policy to connection some other cleanups
* implemented rereadcrls rereadcacertsAndreas Steffen2006-06-204-10/+702
|
* removed local_credential_storeAndreas Steffen2006-06-204-696/+8
|
* fixed SPI when acting as initiator of rekeyingMartin Willi2006-06-191-2/+2
|
* fixed SPI when rekeying and deleting CHILD_SAsMartin Willi2006-06-195-14/+19
|
* change key derivation order to fullfill RFCMartin Willi2006-06-191-11/+26
|
* (no commit message)Martin Willi2006-06-162-6/+6
|
* added crl supportAndreas Steffen2006-06-163-15/+188
|
* added listcrlsAndreas Steffen2006-06-161-1/+7
|
* fixed compilation errorMartin Willi2006-06-151-2/+1
|
* fixed aes code, we support now aes128, aes192, aes256 in IKEMartin Willi2006-06-154-9/+108
|
* added support for "ike" and "esp" keywordsMartin Willi2006-06-1515-97/+367
| | | | | | | fixed bugs in proposal code algorithm selection for charon works now with ipsec.conf a lot of other fixes
* implemented clean spi allocation behavior when using multiple proposalsMartin Willi2006-06-151-35/+104
|
* added default CRL directory pathAndreas Steffen2006-06-141-0/+7
|
* added option parsingAndreas Steffen2006-06-141-11/+59
|
* debug and logging improvementsMartin Willi2006-06-138-16/+43
|
* support for stroke listcerts|listcacerts|listall and left|rightca=Andreas Steffen2006-06-121-55/+91
|
* using same reqid if a child sa rekeys an existing oneMartin Willi2006-06-127-20/+37
|
* add_certificate() now returns pointer to added certAndreas Steffen2006-06-122-8/+8
|
* cosmeticsAndreas Steffen2006-06-124-101/+101
|
* workaround for peers rekeying at the same timeMartin Willi2006-06-129-16/+87
| | | | | loading lifetime policies from ipsec.conf
* old child_sa gets deleted after rekeyingMartin Willi2006-06-0919-99/+583
| | | | | | rekeying almost complete, but: IKE_SA get in an invalid state when both initiate rekeying at the same time,
* improved kernel interface loggingMartin Willi2006-06-095-63/+50
|
* fixed clone/destroy behavior when not using CAsMartin Willi2006-06-091-5/+17
|
* specifying keysize in bits, as it is required in IKEv2Martin Willi2006-06-098-142/+171
| | | | | | added generic kernel SA algorithm handling, which brings us: aes-128, aes-256, blowfish, des, 3des and null encryption for CHILD_SAs
* added support for leftsendcert= and left|rightca= parametersAndreas Steffen2006-06-093-10/+66
|
* discard cert if CA basic constraints flag is not set and warn if cert is not ↵Andreas Steffen2006-06-091-5/+16
| | | | valide
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 01:52:06 +0000