aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon
Commit message (Collapse)AuthorAgeFilesLines
...
* address extensions refactoredTobias Brunner2008-12-112-85/+52
|
* fixing checkout of IKE SAs with only the initiator SPITobias Brunner2008-12-101-1/+2
|
* increasing the performance of checkout_duplicate by using a hash table.Tobias Brunner2008-12-101-66/+244
|
* initial size of 1 is nonsenseTobias Brunner2008-12-101-1/+1
|
* list assigned leases using "ipsec leases"Martin Willi2008-12-105-4/+197
|
* added IKE_SA established timer to "ipsec statusall"Martin Willi2008-12-101-5/+17
|
* fixed load-tester shared key lookupMartin Willi2008-12-091-2/+2
|
* purge auth_info when IKE_SA is established, releases cert memoryMartin Willi2008-12-093-2/+22
|
* limit number of ADDITIONAL_IPV*_ADDR notifiesMartin Willi2008-12-091-4/+9
|
* list pools and usage in ipsec statusallMartin Willi2008-12-093-5/+29
|
* extended stroke in-memory pool to use hash-tablesMartin Willi2008-12-092-58/+172
| | | | | supports online/offline leases properly reassign addresses to identities
* require explicit enabling of load-testing pluginMartin Willi2008-12-091-1/+9
|
* generating different initiator identities, configs and certificates on the flyMartin Willi2008-12-083-101/+213
|
* basic x509 certificate generationMartin Willi2008-12-083-1/+111
|
* hashtable enumerator enumerates over both, key and valuesMartin Willi2008-12-051-1/+1
|
* pass identity to release_address(), allows providers to do a lookup by idMartin Willi2008-12-057-11/+13
|
* extended changeset [4753]Andreas Steffen2008-12-041-1/+2
|
* implemented the policy cache in kernel_netlink_ipsec_t with a hash table ↵Tobias Brunner2008-12-041-41/+54
| | | | instead of a linked list.
* fixed copy-paste bug (double-free)Martin Willi2008-12-041-1/+0
|
* reset pointer for a clean destructionMartin Willi2008-12-041-0/+1
|
* handling peer_match with higher priority tan ike_match to select correct ↵Martin Willi2008-12-041-1/+1
| | | | config if IPs are equal
* fixed double free of host in sadb_address2tsAndreas Steffen2008-12-041-1/+0
|
* add support for smartcards in charon by using the ENGINE API provided by ↵Tobias Brunner2008-12-031-7/+83
| | | | OpenSSL, based on patches by Michael Roßberg.
* enable quoted tokens in the token enumeratorTobias Brunner2008-12-031-0/+2
|
* fixed compiler warningTobias Brunner2008-12-031-1/+1
|
* fixed double free of host in selector2tsMartin Willi2008-12-031-27/+24
|
* use DBG_ANY to set all loglevelsMartin Willi2008-12-021-5/+2
|
* some task queueing improvements:Martin Willi2008-12-018-63/+186
| | | | | | | | - do not pass CHILD_SAs to task constructor, might not be valid anymore during execution (late lookup) - use sub-tasks to delete CHILD/IKE_SA after rekeying, as we want to execute the delete before additional queued tasks
* re-established lost default auth sys_loggerAndreas Steffen2008-12-011-3/+15
|
* schedule rekeying when activating passive IKE_SAsMartin Willi2008-11-281-1/+2
|
* do not delete passive IKE_SAsMartin Willi2008-11-281-0/+5
|
* added a PASSIVE IKE_SA state to manage it externallyMartin Willi2008-11-282-4/+25
|
* pass SKd to derive_ike_keys() to have a more interoperable APIMartin Willi2008-11-283-38/+93
|
* fixed a double-unlock bug, showed up when using rwlocks in backend managerMartin Willi2008-11-281-22/+4
|
* use rwlocks in backend manager to allow simultaneous accessMartin Willi2008-11-271-19/+19
|
* use a rwlock in attribute manager to allow simultaneous accessMartin Willi2008-11-271-12/+12
|
* remove attribute provider in SQL plugin destructionMartin Willi2008-11-271-0/+1
|
* token enumerator missed the last token if it contains only a single charMartin Willi2008-11-271-5/+45
|
* checkin of non-existing IKE_SAsMartin Willi2008-11-263-78/+71
| | | | removed unneeded checkin() return values
* removed private parser function pointers, allows compiler to inlineMartin Willi2008-11-261-200/+48
|
* removed private generator function pointers, allows compiler to inlineMartin Willi2008-11-262-276/+154
|
* allow to globally disable DOS protection by setting charon.dos_protection to no.Tobias Brunner2008-11-261-0/+5
|
* optimized the scheduler for performance by replacing the linked list with a ↵Tobias Brunner2008-11-251-47/+109
| | | | heap.
* replacing the pthread_mutex in scheduler_t with the wrapped implementation.Tobias Brunner2008-11-251-22/+18
| | | | added a method to condvar_t which allows to wait for an absolute timeout.
* performance optimization for the DOS protection.Tobias Brunner2008-11-253-40/+234
| | | | | | * half-open SAs per peer are tracked in a hash table * charon.dos_protection setting replaced with charon.cookie_threshold and charon.block_threshold * chunk_hash function added
* fixed crash due to missing function call parameterAndreas Steffen2008-11-251-1/+13
|
* fixed set_message_id() on IKE_SAMartin Willi2008-11-242-129/+132
| | | | | added missing bus->message() hook invocation whitespace cleanups
* set message IDs on IKE_SAsMartin Willi2008-11-244-9/+47
|
* moved the IPV6_IPSEC_POLICY definition to the ipsec plugins, fixes uClibc buildMartin Willi2008-11-243-5/+10
|
* added a "load_tester.auth" option: "pubkey" (default) or "psk"Martin Willi2008-11-232-4/+57
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-11 13:44:47 +0000