aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon
Commit message (Collapse)AuthorAgeFilesLines
...
* restructuring of configuration backendsMartin Willi2007-04-2722-523/+1354
| | | | | | | | | added propotypes of new control interfaces (xml & dbus) introduced loadable: configuration backends control interfaces using pluggable modules as in EAP
* forcing proper autoload of af_key kernel module in charonMartin Willi2007-04-271-0/+10
|
* properly checking received IDr as initiatorMartin Willi2007-04-252-4/+12
|
* added support for AES-XCBC in kernel using e.g. esp=aes128-aesxcbc ↵Martin Willi2007-04-232-1/+11
| | | | (>=linux-2.6.20)
* fixed CHILD_SA proposal selection when not using DH exchangeMartin Willi2007-04-231-8/+3
|
* fixed keyingtriesMartin Willi2007-04-231-0/+1
|
* implementation of strictcrlpolicy=ifuriAndreas Steffen2007-04-203-55/+64
|
* added support for EAP methods not establishing an MSKMartin Willi2007-04-195-66/+82
|
* added most problematic linux headers to distributionMartin Willi2007-04-191-1/+2
| | | | | other/real linux header may be selected using --with-linux-headers=dir
* added PDF support for CHILD_SAsMartin Willi2007-04-1911-190/+361
| | | | support for INVALID_KE_PAYLOAD negotiation for rekeying
* fixed memleak in IKE_SA managerMartin Willi2007-04-191-0/+1
|
* moved initiate() code to the generic controller_t classMartin Willi2007-04-165-67/+223
|
* added listaacerts, listacerts, listgroups, rereadaacerts, and rereadacerts ↵Andreas Steffen2007-04-141-4/+8
| | | | keywords
* started support of X.509 attribute certificatesAndreas Steffen2007-04-122-21/+95
|
* added AA and AATR cert pathsAndreas Steffen2007-04-121-1/+15
|
* fixed output of list_auth_certificates()Andreas Steffen2007-04-121-0/+1
|
* removed %Q, %Y, %W, %U printf handlersMartin Willi2007-04-121-3/+3
|
* not using %m printf handler, as late errno interpration over bus may be ↵Martin Willi2007-04-124-27/+40
| | | | problematic
* fixed DPD delay in peer_cfgMartin Willi2007-04-121-1/+1
|
* fixed payload debug messageMartin Willi2007-04-121-13/+19
|
* removed IKE_SA_ID (%J) printf hook, two more to goMartin Willi2007-04-115-43/+81
|
* cleanup and fixes for status & statusallMartin Willi2007-04-111-123/+129
|
* using %V time delta for rekeying timesMartin Willi2007-04-111-6/+6
|
* removed IKE_SA (%K) and CHILD_SA (%P) printf handlers, 3 more to goMartin Willi2007-04-115-281/+255
|
* removed %M printf handler, five more to goMartin Willi2007-04-111-54/+27
|
* fixed virtual ip configuration bug introduced with the previous commitMartin Willi2007-04-111-4/+1
|
* cleaned up apidocMartin Willi2007-04-1127-372/+217
| | | | | | added some comments removed configuration.[ch], as it does not make sense like it is
* accepting stroke initiation by a name of a child_cfgMartin Willi2007-04-115-41/+40
|
* fixed bug with roadwarrior and wildcard IDsAndreas Steffen2007-04-101-11/+19
|
* edited comment and debug outputAndreas Steffen2007-04-101-3/+3
|
* best must be initialized to 2*MAX_WILDCARDS+1Andreas Steffen2007-04-101-7/+13
|
* requesting the same virtual IP on reauthenticationMartin Willi2007-04-102-51/+68
|
* proper notification handlingMartin Willi2007-04-101-1/+103
|
* restructured file layoutMartin Willi2007-04-10101-46383/+3449
| | | | | | | | | new configuration structure: peer_cfg: configuration related to a peer (authenitcation, ...= ike_cfg: config to use for IKE setup (proposals) child_Cfg: config for CHILD_SA (proposals, traffic selectors) a peer_cfg has one ike_cfg and multiple child_cfg's stroke now uses fixed count of threads
* removed list_crls() and list_ocsp() methodsAndreas Steffen2007-04-062-59/+42
|
* support cachecrls=yesAndreas Steffen2007-04-052-7/+21
|
* support of crlcheckinterval=0 to disable IKEv2 CRL fetchingAndreas Steffen2007-04-041-0/+12
|
* improved log output for checkout_by_message()Martin Willi2007-04-042-27/+28
|
* implemented dynamic http-based CRL fetchingAndreas Steffen2007-04-031-8/+3
|
* removed unneded includesMartin Willi2007-03-302-2/+0
|
* using IFA_LOCAL for interface enumeration to support ppp linksMartin Willi2007-03-301-5/+20
|
* added IKE_SA_INIT retransmission detectionMartin Willi2007-03-295-130/+204
| | | | fixed thread exhaustion when IKE_SA is blocked for a longer time
* implemented DoS protection with cookies and IP filterMartin Willi2007-03-292-106/+252
|
* fixed task manager message id bug for cookiesMartin Willi2007-03-291-1/+1
|
* added retry limit for IKE_SA_INIT (give up after 5 cookie failures)Martin Willi2007-03-291-0/+15
|
* implemented ipsec purgeocspAndreas Steffen2007-03-281-1/+8
|
* removed send_queue, handled internally in sender_t knowMartin Willi2007-03-2820-641/+407
| | | | | do header parsing in receiver, ready for cookie integration
* implemented a simple IP blocking filter in receiver threadMartin Willi2007-03-282-11/+119
|
* merged changes from eap-aka trunkMartin Willi2007-03-283-29/+63
|
* is_trusted() adds cert_status to cert_to_be_trustedAndreas Steffen2007-03-281-3/+37
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 16:51:21 +0000