aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon
Commit message (Collapse)AuthorAgeFilesLines
...
* Refactored common used operations into TLS crypto helperMartin Willi2010-08-033-176/+212
|
* Properly send empty EAP-TLS messagesMartin Willi2010-08-031-22/+25
|
* Derive MSK for EAP-TLS authenticationMartin Willi2010-08-035-0/+44
|
* Verify Server Finished messageMartin Willi2010-08-031-1/+59
|
* Implemented input record decryption and verificationMartin Willi2010-08-037-16/+122
|
* Implemented key derivation, output record signing and encryptionMartin Willi2010-08-037-39/+485
|
* Derive master secret, create Finished messageMartin Willi2010-08-034-30/+241
|
* Implemented the TLS specific PRF in its TLSv1.0 and TLSv1.2 variantsMartin Willi2010-08-033-0/+263
|
* Implemented sending of Certificate, ClientKeyExchange, CertificateVerify and ↵Martin Willi2010-08-0311-19/+406
| | | | ChangeCipherSpec as peer
* Implemented a tls_writer class to simplify TLS data generationMartin Willi2010-08-037-74/+451
|
* Implemented a tls_reader class to simplify TLS data parsingMartin Willi2010-08-037-120/+419
|
* Process ServerHello(Done), Certificate(Request) messagesMartin Willi2010-08-037-16/+240
|
* Send a ClientHello to start TLS negotiationMartin Willi2010-08-031-1/+86
|
* Added TLS crypto helper, currently supports cipher suite selectionMartin Willi2010-08-038-6/+221
|
* Added stubs for handshake handling, server and peer variantsMartin Willi2010-08-039-6/+446
|
* Accept follow-up fragments with a TLS message lengthMartin Willi2010-08-031-24/+50
|
* Added dummy/identity implementations of the different TLS record layersMartin Willi2010-08-038-3/+475
|
* Pass TLS records to newly introduced TLS stackMartin Willi2010-08-033-11/+158
|
* Added some TLS constantsMartin Willi2010-08-033-1/+173
|
* (De-)fragment EAP-TLS packets, pass TLS records to upper layerMartin Willi2010-08-031-1/+229
|
* Added EAP-TLS plugin stubMartin Willi2010-08-035-0/+288
|
* Fixed compiler warning.Tobias Brunner2010-06-151-1/+1
|
* Run as vpn user on Android.Tobias Brunner2010-06-151-0/+8
|
* Truncate the PID file so that even if we fail to unlink it, the daemon can ↵Tobias Brunner2010-06-151-11/+33
| | | | be restarted properly.
* Option to skip slow addr2line resolution in leak-detectiveMartin Willi2010-05-201-1/+1
|
* Do a proper cleanup when printing usage info.Tobias Brunner2010-05-041-3/+4
|
* Integrating libhydra into the Android build system.Tobias Brunner2010-04-121-1/+2
|
* Moved ha plugin to libcharonMartin Willi2010-04-0721-4202/+0
|
* Make resync/monitoring functionality optionalMartin Willi2010-04-073-27/+35
|
* Listen to ike_updown/rekey hook instead of ike_state_changeMartin Willi2010-04-071-56/+59
|
* Request a complete resync after daemon startupMartin Willi2010-04-073-4/+54
|
* Do not automatically take over segments, as we need to resync firstMartin Willi2010-04-073-80/+57
|
* Drop overlapping segments only if we have no active SAs on itMartin Willi2010-04-071-14/+32
|
* Do not install iptables rules, they should stay active after shutdownMartin Willi2010-04-073-100/+92
|
* Take over all segments if heartbeat becomes silentMartin Willi2010-04-071-11/+57
|
* Renamed ha-sync plugin to haMartin Willi2010-04-0722-720/+709
|
* Try to send HA sync messages synchronouslyMartin Willi2010-04-071-17/+27
|
* Do not sync a delete for a child in a destroying IKE_SAMartin Willi2010-04-071-1/+4
|
* Include ICMP traffic in sync tunnelMartin Willi2010-04-071-2/+6
|
* Refactored segment enabling/disablingMartin Willi2010-04-071-71/+74
|
* Use a connected UDP socketMartin Willi2010-04-071-8/+18
|
* Removed obsolete socket subclassesMartin Willi2010-04-072-46/+0
|
* Automatically segment cluster using periodically sent status messagesMartin Willi2010-04-079-70/+177
|
* Do not enable/disable our own sync tunnelMartin Willi2010-04-073-10/+24
|
* Enable/disable inactive/active segments onlyMartin Willi2010-04-071-4/+10
|
* Deactivate all active segments before shutting downMartin Willi2010-04-073-0/+30
|
* HA kernel interface can mangle netfilter rules, currently with iptables ↵Martin Willi2010-04-074-29/+183
| | | | invocation
* Added support for kernel segment manipulationMartin Willi2010-04-076-38/+197
|
* Moved segment configuration parsing to ha_sync_pluginMartin Willi2010-04-073-36/+54
|
* Propagate segment manipulation to cluster nodeMartin Willi2010-04-078-23/+109
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-02-28 18:48:54 +0000