aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon
Commit message (Collapse)AuthorAgeFilesLines
...
* added mysterious UDP encapsulation socket option to get encapsulation workingMartin Willi2006-06-221-0/+20
|
* first merge of NATT codeMartin Willi2006-06-2243-758/+2867
|
* fixed testing build4.0.1Martin Willi2006-06-211-1/+1
|
* reworked function ignore mechanism to not-report whitelistMartin Willi2006-06-201-2/+2
| | | | rather than overriding functions
* fixed bug: usage of already freed memMartin Willi2006-06-201-1/+2
|
* readded local_credential_storeMartin Willi2006-06-2010-88/+256
| | | | | | added sendcert policy to connection some other cleanups
* implemented rereadcrls rereadcacertsAndreas Steffen2006-06-204-10/+702
|
* removed local_credential_storeAndreas Steffen2006-06-204-696/+8
|
* fixed SPI when acting as initiator of rekeyingMartin Willi2006-06-191-2/+2
|
* fixed SPI when rekeying and deleting CHILD_SAsMartin Willi2006-06-195-14/+19
|
* change key derivation order to fullfill RFCMartin Willi2006-06-191-11/+26
|
* (no commit message)Martin Willi2006-06-162-6/+6
|
* added crl supportAndreas Steffen2006-06-163-15/+188
|
* added listcrlsAndreas Steffen2006-06-161-1/+7
|
* fixed compilation errorMartin Willi2006-06-151-2/+1
|
* fixed aes code, we support now aes128, aes192, aes256 in IKEMartin Willi2006-06-154-9/+108
|
* added support for "ike" and "esp" keywordsMartin Willi2006-06-1515-97/+367
| | | | | | | fixed bugs in proposal code algorithm selection for charon works now with ipsec.conf a lot of other fixes
* implemented clean spi allocation behavior when using multiple proposalsMartin Willi2006-06-151-35/+104
|
* added default CRL directory pathAndreas Steffen2006-06-141-0/+7
|
* added option parsingAndreas Steffen2006-06-141-11/+59
|
* debug and logging improvementsMartin Willi2006-06-138-16/+43
|
* support for stroke listcerts|listcacerts|listall and left|rightca=Andreas Steffen2006-06-121-55/+91
|
* using same reqid if a child sa rekeys an existing oneMartin Willi2006-06-127-20/+37
|
* add_certificate() now returns pointer to added certAndreas Steffen2006-06-122-8/+8
|
* cosmeticsAndreas Steffen2006-06-124-101/+101
|
* workaround for peers rekeying at the same timeMartin Willi2006-06-129-16/+87
| | | | | loading lifetime policies from ipsec.conf
* old child_sa gets deleted after rekeyingMartin Willi2006-06-0919-99/+583
| | | | | | rekeying almost complete, but: IKE_SA get in an invalid state when both initiate rekeying at the same time,
* improved kernel interface loggingMartin Willi2006-06-095-63/+50
|
* fixed clone/destroy behavior when not using CAsMartin Willi2006-06-091-5/+17
|
* specifying keysize in bits, as it is required in IKEv2Martin Willi2006-06-098-142/+171
| | | | | | added generic kernel SA algorithm handling, which brings us: aes-128, aes-256, blowfish, des, 3des and null encryption for CHILD_SAs
* added support for leftsendcert= and left|rightca= parametersAndreas Steffen2006-06-093-10/+66
|
* discard cert if CA basic constraints flag is not set and warn if cert is not ↵Andreas Steffen2006-06-091-5/+16
| | | | valide
* fixed compile warnings when using -WallMartin Willi2006-06-0825-206/+829
| | | | | | | | further CHILD_SA rekeying work done: creation of a new CHILD_SA on a expire from a kernel works delete of old CHILD_SA still missing some issues when both initiate rekeing
* further work for rekeying:Martin Willi2006-06-0736-1398/+1392
| | | | | | | | | get liftimes from policy added new state initiation of rekeying done proposal redone: removed support for AH+ESP proposals
* fixed a memleakMartin Willi2006-06-071-1/+5
|
* created IPv6 environmentAndreas Steffen2006-06-061-4/+4
|
* job management:Martin Willi2006-05-3131-738/+929
| | | | | | | | | | | | | moved job code from thread_pool to job, jobs have an "execute" method now added two new jobs: delete_child_sa & rekey_child_sa kernel interface: listens now for ACQUIRE & EXPIRE supports hard and soft lifetimes fires jobs for delete and rekey child sa ike sa manager: can checkout IKE SAs by requid of owned CHILD SAs we have now the infrastructure to do the rekeying... :-)
* - fixed some memleaks/freebugsMartin Willi2006-05-313-9/+6
| | | | | - leak detective works almost usable now (?!)
* - fixed host-host tunnel traffic selection, host-host works nowMartin Willi2006-05-314-8/+30
|
* minimized prefixed on stroke logger outputAndreas Steffen2006-05-311-1/+1
|
* charon outputs strongSwan versionAndreas Steffen2006-05-311-0/+3
|
* (no commit message)Martin Willi2006-05-301-10/+13
|
* - fixed event queue for events >36minMartin Willi2006-05-301-30/+17
|
* (no commit message)Martin Willi2006-05-301-0/+1
|
* - included charons module tests to build & distMartin Willi2006-05-309-11/+44
|
* full support of ikev1 and ikev2 connection flagsAndreas Steffen2006-05-301-6/+7
|
* cosmetics in log_status outputAndreas Steffen2006-05-301-1/+1
|
* use of streqAndreas Steffen2006-05-301-1/+1
|
* lookup of private key based on keyid of public keyAndreas Steffen2006-05-301-24/+47
|
* new functions to add certificates and retrieve private and public keysAndreas Steffen2006-05-303-120/+182
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-05 08:05:29 +0000