aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon
Commit message (Collapse)AuthorAgeFilesLines
...
* Migrated kernel_klips_ipsec to METHOD/INIT macrosMartin Willi2010-02-261-98/+60
|
* Migrated kernel_pfkey_ipsec to METHOD/INIT macrosMartin Willi2010-02-261-97/+60
|
* Migrated kernel_netlink_ipsec to METHOD/INIT macrosMartin Willi2010-02-261-93/+59
|
* Migrated kernel_interface wrapper to METHOD/INIT macrosMartin Willi2010-02-261-163/+109
|
* Added left-/rightikeport ipsec.conf options to use custom IKE portsMartin Willi2010-02-261-3/+3
|
* Use src/dst ports as configured in ike_cfgMartin Willi2010-02-264-16/+41
|
* Store custom IKE src/dst ports on ike_cfgMartin Willi2010-02-269-14/+64
|
* Migrated ike_cfg_t to METHOD/INIT macrosMartin Willi2010-02-261-73/+53
|
* Migrated packet_t to METHOD/INIT macrosMartin Willi2010-02-261-62/+41
|
* Moved socket and socket-raw implementations to pluginsMartin Willi2010-02-2616-177/+729
|
* Link all plugins to libstrongswan.Tobias Brunner2010-02-2528-8/+28
|
* Avoid a race condition that could lead to a segmentation fault.Tobias Brunner2010-02-251-3/+7
| | | | | | | | | | | | Let's assume the callback function of a callback job returns JOB_REQUEUE_FAIR in one call and JOB_REQUEUE_NONE in the next. Before this fix, the thread executing the callback job would requeue the job before unregistering itself. If there was a context switch right after the job got requeued, and if the thread that requeued the job never got resumed until a second thread executed the job and, due to the return value of JOB_REQUEUE_NONE, destroyed it, then when the first thread eventually got resumed and tried to lock the mutex to unregister itself the pointer wouldn't be valid anymore, thus resulting in a segmentation fault.
* Updated debian package for NetworkManager-strongswan-1.1.2Martin Willi2010-02-181-0/+7
|
* Version bump and NEWS for NetworkManager-strongswan-1.1.2 releaseMartin Willi2010-02-182-1/+8
|
* Updated german translationMartin Willi2010-02-181-57/+104
|
* Tooltips are translatableMartin Willi2010-02-181-9/+9
|
* Newer glade requires explicit vertical vboxesMartin Willi2010-02-181-0/+5
|
* Fixed lost renaimings in android pluginMartin Willi2010-02-181-13/+14
|
* Added Android plugin, currently provides DNS handling on AndroidMartin Willi2010-02-176-0/+405
|
* Invoke missing message() hook for incoming responsesMartin Willi2010-02-171-0/+1
|
* Adding support for AES GMAC (RFC4543).Tobias Brunner2010-02-123-5/+8
|
* Do not build own authentication data before we've verified others, we need ↵4.3.6Martin Willi2010-02-091-28/+33
| | | | the other identity in EAP
* Use child_updown hook in updown plugin, fixes doubled invocation of down scriptMartin Willi2010-02-031-47/+17
|
* Some whitespace and code cleanups concerning the mediation extension.Tobias Brunner2010-02-023-12/+10
|
* Added a ipsec.conf "inactivity" option to configure inactivity timeout for ↵Martin Willi2010-01-271-1/+2
| | | | CHILD_SAs
* Made inactivity_timeout a per CHILD_SA config optionMartin Willi2010-01-279-16/+41
|
* Refactored EAP payload, avoid unaligned word accessMartin Willi2010-01-211-103/+68
|
* Support RADIUS messages up to 4096 bytes, RADIUS EAP-Message fragmentationMartin Willi2010-01-193-9/+22
|
* Support TLS client authentication Extended Key Usage in x509 generationMartin Willi2010-01-141-2/+3
|
* Block the signals before the call to sigwait.Tobias Brunner2010-01-121-0/+1
|
* Support for closing CHILD/IKE_SA if a CHILD_SA is inactive.Martin Willi2010-01-124-0/+229
|
* Added strongswan.conf options to configure retransmission timeoutsMartin Willi2010-01-112-5/+28
|
* log EAP-only authentication proposalAndreas Steffen2010-01-111-3/+5
|
* EAP-MSCHAPv2 is indeed mutual, but is prone to MITM dictionary attacksMartin Willi2010-01-071-1/+1
|
* Support EAP-only authentication for mutual and key deriving EAP methodsMartin Willi2010-01-075-31/+96
|
* Indicate and dected support for EAP-only authenticationMartin Willi2010-01-072-7/+28
|
* Match to private use algorithms only if we know we are talking to strongSwanMartin Willi2010-01-078-22/+41
|
* Interpret private use BEET mode notify only if we know we are talking to ↵Martin Willi2010-01-071-1/+9
| | | | strongSwan
* Add an option to send a vendor ID, allows us to properly support private ↵Martin Willi2010-01-079-8/+205
| | | | extensions
* make error message about missing MD4 hasher more explicitAndreas Steffen2009-12-301-1/+1
|
* differentiate EAP method initialization errorsAndreas Steffen2009-12-301-12/+18
|
* enforce RFC 3779 address constraints on traffic selectorsAndreas Steffen2009-12-251-0/+61
|
* Adapted the load_tester kernel-interface to the changes introduced in 6ec949e02.Tobias Brunner2009-12-231-2/+3
|
* Added some IPv6 tweaks for Android.Tobias Brunner2009-12-231-1/+11
| | | | | Android 1.6 does not yet support the Advanced Sockets API for IPv6 as defined in RFC 3542. Also, in6addr_any is missing.
* Semicolon removed.Tobias Brunner2009-12-231-1/+1
|
* According to the man page (and the header files in Android) prctl takes a ↵Tobias Brunner2009-12-231-1/+2
| | | | total of 5 arguments.
* Cache queue locking in credential manager corrected.Tobias Brunner2009-12-231-2/+13
|
* Join worker threads when destroying the processor.Tobias Brunner2009-12-231-10/+24
|
* Callback job refactored and fixed.Tobias Brunner2009-12-232-47/+106
|
* Whitespace cleanup.Tobias Brunner2009-12-232-33/+33
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-03 11:30:03 +0000