aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon
Commit message (Collapse)AuthorAgeFilesLines
* fixed two bugs introduced by the stroke ip pool refactoring4.2.10Andreas Steffen2009-01-081-2/+9
|
* increase nonce size to 32 bytes, required when using SHA384/512 PRFsMartin Willi2008-12-311-1/+1
|
* fixed a potential memory leak when reusing mobike taskMartin Willi2008-12-191-0/+4
|
* RNG tests based on FIPS 140-1Martin Willi2008-12-183-2/+225
|
* updated documentationMartin Willi2008-12-172-137/+131
| | | | | some minor cleanups calloc does not need an additional memset(0)
* improved IKE_SA uniqueness checkTobias Brunner2008-12-164-89/+83
|
* purge certificates after IKE_AUTH response has been builtMartin Willi2008-12-161-6/+8
|
* reimplemented certificate cache:Martin Willi2008-12-151-154/+220
| | | | | | | fixes unsafe certificate caching use fixed array instead of a list fine grained per-slot locking use cache hits for housekeeping
* signal each entry condvar after enumeration, required if wait_for_entry is ↵Martin Willi2008-12-151-3/+19
| | | | called
* do not respawn cancelled threads if we are shutting downMartin Willi2008-12-121-1/+3
|
* fixed possible deadlock in checkin_and_destroyMartin Willi2008-12-121-2/+2
|
* avoid DNS lookup if possibleMartin Willi2008-12-121-13/+10
|
* execute events if difference is 0, prevents a busywaitMartin Willi2008-12-121-2/+3
|
* load tester got a "shutdown_when_complete" option, allows performance test ↵Martin Willi2008-12-123-15/+51
| | | | using "time"
* daemon exports main_thread_id, sends SIGTERM to the main thread in daemon_killMartin Willi2008-12-122-8/+8
|
* wait until all IKE_SAs are in-house before destroying themMartin Willi2008-12-121-1/+1
|
* address extensions refactoredTobias Brunner2008-12-112-85/+52
|
* fixing checkout of IKE SAs with only the initiator SPITobias Brunner2008-12-101-1/+2
|
* increasing the performance of checkout_duplicate by using a hash table.Tobias Brunner2008-12-101-66/+244
|
* initial size of 1 is nonsenseTobias Brunner2008-12-101-1/+1
|
* list assigned leases using "ipsec leases"Martin Willi2008-12-105-4/+197
|
* added IKE_SA established timer to "ipsec statusall"Martin Willi2008-12-101-5/+17
|
* fixed load-tester shared key lookupMartin Willi2008-12-091-2/+2
|
* purge auth_info when IKE_SA is established, releases cert memoryMartin Willi2008-12-093-2/+22
|
* limit number of ADDITIONAL_IPV*_ADDR notifiesMartin Willi2008-12-091-4/+9
|
* list pools and usage in ipsec statusallMartin Willi2008-12-093-5/+29
|
* extended stroke in-memory pool to use hash-tablesMartin Willi2008-12-092-58/+172
| | | | | supports online/offline leases properly reassign addresses to identities
* require explicit enabling of load-testing pluginMartin Willi2008-12-091-1/+9
|
* generating different initiator identities, configs and certificates on the flyMartin Willi2008-12-083-101/+213
|
* basic x509 certificate generationMartin Willi2008-12-083-1/+111
|
* hashtable enumerator enumerates over both, key and valuesMartin Willi2008-12-051-1/+1
|
* pass identity to release_address(), allows providers to do a lookup by idMartin Willi2008-12-057-11/+13
|
* extended changeset [4753]Andreas Steffen2008-12-041-1/+2
|
* implemented the policy cache in kernel_netlink_ipsec_t with a hash table ↵Tobias Brunner2008-12-041-41/+54
| | | | instead of a linked list.
* fixed copy-paste bug (double-free)Martin Willi2008-12-041-1/+0
|
* reset pointer for a clean destructionMartin Willi2008-12-041-0/+1
|
* handling peer_match with higher priority tan ike_match to select correct ↵Martin Willi2008-12-041-1/+1
| | | | config if IPs are equal
* fixed double free of host in sadb_address2tsAndreas Steffen2008-12-041-1/+0
|
* add support for smartcards in charon by using the ENGINE API provided by ↵Tobias Brunner2008-12-031-7/+83
| | | | OpenSSL, based on patches by Michael Roßberg.
* enable quoted tokens in the token enumeratorTobias Brunner2008-12-031-0/+2
|
* fixed compiler warningTobias Brunner2008-12-031-1/+1
|
* fixed double free of host in selector2tsMartin Willi2008-12-031-27/+24
|
* use DBG_ANY to set all loglevelsMartin Willi2008-12-021-5/+2
|
* some task queueing improvements:Martin Willi2008-12-018-63/+186
| | | | | | | | - do not pass CHILD_SAs to task constructor, might not be valid anymore during execution (late lookup) - use sub-tasks to delete CHILD/IKE_SA after rekeying, as we want to execute the delete before additional queued tasks
* re-established lost default auth sys_loggerAndreas Steffen2008-12-011-3/+15
|
* schedule rekeying when activating passive IKE_SAsMartin Willi2008-11-281-1/+2
|
* do not delete passive IKE_SAsMartin Willi2008-11-281-0/+5
|
* added a PASSIVE IKE_SA state to manage it externallyMartin Willi2008-11-282-4/+25
|
* pass SKd to derive_ike_keys() to have a more interoperable APIMartin Willi2008-11-283-38/+93
|
* fixed a double-unlock bug, showed up when using rwlocks in backend managerMartin Willi2008-11-281-22/+4
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 01:52:14 +0000