aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon
Commit message (Collapse)AuthorAgeFilesLines
...
* disable lifetimes of allocated SPIsMartin Willi2009-08-251-1/+11
| | | | | | | The default lifetime of 30 seconds is too short, as a tunnel setup may need several minutes if we have high packet loss. Instead of increasing the value, we disable lifetimes completely, as we handle the removal of such SAs from userland just fine.
* remove incomplete SAs with PROTO_ESPMartin Willi2009-08-251-0/+6
|
* check integrity of pool code fileAndreas Steffen2009-08-171-0/+6
|
* check success of library_init()Andreas Steffen2009-08-141-1/+6
|
* OpenSolaris needs libsocket and libnsl for socket().Tobias Brunner2009-08-141-1/+1
|
* Enable CMSG headers and macros on OpenSolaris.Tobias Brunner2009-08-141-0/+4
|
* Added define to get sigwait with two parameters on OpenSolaris.Tobias Brunner2009-08-141-0/+2
|
* LOG_AUTHPRIV is not defined on OpenSolaris.Tobias Brunner2009-08-141-0/+4
|
* OpenSolaris defines MUTEX_DEFAULT therefore we rename the members of the ↵Tobias Brunner2009-08-1431-46/+46
| | | | enums mutex/condvar/rwlock_type_t.
* prepare CAMELLIA_CCM ESP encryptionAndreas Steffen2009-08-103-0/+9
|
* set protocol to ESP for policies installed as a trapMartin Willi2009-08-071-0/+4
|
* %llu correctly prints u_int64_tAndreas Steffen2009-08-072-5/+5
|
* printing u_int64_t caused segfault on 32-bit platformsAndreas Steffen2009-08-072-5/+5
|
* do not set usetime if query_policy() failsAndreas Steffen2009-08-071-2/+10
|
* Use LONG_MAX instead of a hard-coded value.Tobias Brunner2009-08-061-1/+5
|
* FreeBSD returns the current policy use time only after specifying a hard ↵Tobias Brunner2009-08-061-1/+13
| | | | lifetime when installing the policy.
* Fixed a race condition when querying stats of a child_sa in different order.Tobias Brunner2009-08-065-61/+53
|
* abort pluto or charon if initialization failsAndreas Steffen2009-08-061-1/+1
|
* Don't query the policy usetime if there was no traffic on the SA.Tobias Brunner2009-08-061-38/+66
| | | | | This helps in cases where a policy is assigned to more than one SA. That is, SAs now should have different usetimes even if they use the same policy.
* Reverted the interface changes introduced in 3f720dc7.Tobias Brunner2009-08-065-35/+15
|
* added support for ipsec.secrets "include" directiveMartin Willi2009-08-061-13/+81
|
* Reversed the check for udp.h, fixes compilation on Linux.Tobias Brunner2009-08-061-4/+4
|
* Enabling UDP encapsulation via setsockopt fails on Mac OS X (it is also not ↵Tobias Brunner2009-08-051-6/+10
| | | | required as this is done using sysctl).
* output number of transmitted bytes in closing CHILD_SA statementAndreas Steffen2009-08-041-1/+5
|
* FreeBSD only reports a policy's usetime if a lifetime has been specified ↵Tobias Brunner2009-08-041-0/+7
| | | | when the policy was added (we only specify a lifetime on the SA, not on the policy).
* FreeBSD and Mac OS X both set the sequence number of an SADB_X_SPDGET ↵Tobias Brunner2009-08-041-5/+16
| | | | response to zero, we accept that for now.
* compare IKE config when reusing an existing IKE_SA to initiate a CHILD_SAMartin Willi2009-08-031-8/+13
|
* implemented query_sa() for PFKEYv2Andreas Steffen2009-08-021-2/+53
|
* corrected interface definitionAndreas Steffen2009-07-311-1/+1
|
* update usetime only if usebytes increaseAndreas Steffen2009-07-304-14/+73
|
* display transmitted bytes per SAAndreas Steffen2009-07-3010-19/+203
|
* Handling of unsupported policy directions (FWD) fixed.Tobias Brunner2009-07-301-1/+19
|
* Enabling NAT-T on Mac OS X using the private SADB_X_EXT_NATT flag and ↵Tobias Brunner2009-07-301-5/+45
| | | | sadb_sa_2 struct.
* Configure the NAT-T port via sysctl on Mac OS X to enable handling of ↵Tobias Brunner2009-07-301-0/+15
| | | | incoming UDP encapsulated ESP packets in the kernel.
* Make accept(2) and recvfrom(2) cancellation points on Mac OS X.Tobias Brunner2009-07-301-0/+1
|
* streamlined integrity test output some moreAndreas Steffen2009-07-181-0/+2
|
* stop strongswan if integrity check of libstrongswan or daemon failsAndreas Steffen2009-07-171-2/+2
|
* streamlined debug output of integrity testsAndreas Steffen2009-07-171-0/+5
|
* accelerate lookup in non-concatenated poolsAndreas Steffen2009-07-171-22/+40
|
* check for an existing lease over all assigned pools firstAndreas Steffen2009-07-171-24/+55
|
* fixed problem with static leases over multiple poolsAndreas Steffen2009-07-161-8/+36
|
* fixed memleak in SQL config lookupMartin Willi2009-07-161-2/+2
|
* raise an alert() if the RADIUS server is not respondingMartin Willi2009-07-162-0/+3
|
* added an alert() bus hook to raise critical system errors and notificationsMartin Willi2009-07-163-4/+67
|
* updated debian packageMartin Willi2009-07-151-0/+8
|
* updated Standards-Version to 3.8.2Martin Willi2009-07-151-1/+1
|
* added ${misc:Depends} dependency, fixes debhelper-but-no-misc-depends ↵Martin Willi2009-07-151-1/+1
| | | | lintian warning
* added copyright information, fixes copyright-without-copyright-notice ↵Martin Willi2009-07-151-4/+7
| | | | lintian warning
* report installation failure of inbound and/or outbound IPsec SA, separatelyAndreas Steffen2009-07-131-8/+11
|
* put variable definitions up frontAndreas Steffen2009-07-121-5/+8
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-05 00:15:12 +0000