aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon
Commit message (Collapse)AuthorAgeFilesLines
...
* removed recursive mutex and __USE_UNIX98, should fix uClibc buildMartin Willi2007-10-051-12/+13
|
* fixed bad cast which resulted in a crash on "ipsec update"Martin Willi2007-10-051-1/+2
|
* fixed sqlite_backend compilation to respect changes from [3238]Martin Willi2007-10-041-1/+1
|
* experimental P2P-NAT-T for IKEv2 merged back from branchTobias Brunner2007-10-0332-27/+5035
|
* reverted changeset [3215], as we need NULL callback to do asynchronous callsMartin Willi2007-10-033-35/+62
| | | | added interface_manager_cb_empty function, which calls synchronous but doesn't do anything
* typoTobias Brunner2007-10-021-1/+1
|
* do not attempt to encrypt payloads without crypter or signer (allows to ↵Tobias Brunner2007-10-021-0/+7
| | | | override message rules)
* fixed "ipsec statusall" SPI formattingMartin Willi2007-10-021-2/+2
|
* fixed sqlite database pathMartin Willi2007-10-021-2/+2
|
* ID payload with explicit payload typeTobias Brunner2007-10-024-69/+20
|
* get_first_payload_type for message_tTobias Brunner2007-10-022-2/+21
|
* dummy callback added to interface managerTobias Brunner2007-10-022-48/+34
|
* remove control sockets on startup, as we don't have privileges on shutdownMartin Willi2007-10-022-9/+5
|
* improved debugging code for traffic selector processingMartin Willi2007-10-021-7/+15
|
* moved force_encap to ike_config, enables responder to enforce udp encapsulationMartin Willi2007-10-018-42/+45
| | | | fixed bugs in force_encap code
* removed accidentally checked in debugging codeMartin Willi2007-10-011-4/+0
|
* implemented IKEv2 force_encap connection parameterMartin Willi2007-10-018-12/+87
| | | | | enforces UDP encapsulation by faking NAT detection payloads to hurdle restrictive firewalls
* fixed stuid()/setgid() and error handlingMartin Willi2007-10-011-2/+12
|
* implemented more aggressive MOBIKE path probingMartin Willi2007-09-284-24/+100
| | | | | do not queue more than one MOBIKE task
* fixed CHILD_SA SPI byte order in XML interfaceMartin Willi2007-09-281-1/+1
|
* changed inheritable capability set to the permitted one to execute firewall ↵Martin Willi2007-09-281-2/+1
| | | | script with CAP_NET_ADMIN
* reduced debbugging levelMartin Willi2007-09-271-1/+1
|
* made add_ip()/del_ip() calls synchron (waiting until kernel event received)Martin Willi2007-09-271-21/+90
| | | | this should fix MOBIKE route migration with virtual IPs
* typosTobias Brunner2007-09-273-4/+4
|
* refactored strongswan managerMartin Willi2007-09-264-30/+93
| | | | | | | | removed buggy request parsing code, use ClearSilvers CGI kit instead fixed CHILD_SA listing in manager (needs better design) using secure XML communication through unix sockets removed images with questionable (non-GPL) license
* improved MOBIKE roaming between interfacesMartin Willi2007-09-245-20/+31
|
* removed some empty linesAndreas Steffen2007-09-181-2/+0
|
* return argument has type size_tAndreas Steffen2007-09-181-1/+1
|
* prototype implemementation of an sqlite configuration backendMartin Willi2007-09-189-84/+454
|
* connection name to IKE_SA initiatingAndreas Steffen2007-09-152-2/+3
|
* put IKE_SA and CHILD_SA names in single quotesAndreas Steffen2007-09-153-6/+6
|
* log name of IKE_SA in state changesAndreas Steffen2007-09-151-1/+2
|
* log name of established IKE_SAAndreas Steffen2007-09-151-4/+8
|
* log name of established CHILD_SAAndreas Steffen2007-09-151-2/+4
|
* adapted format of IKE SPIs to strongSwan Manager's styleAndreas Steffen2007-09-151-2/+2
|
* added subnets of CHILD_SAs to xml interfaceMartin Willi2007-09-141-1/+36
| | | | a first design of Managers IKE_SA list page
* peer_cfg now knows about group membershipsAndreas Steffen2007-09-134-12/+70
|
* added missing 'break' in checkout_by_peerTobias Brunner2007-09-131-0/+1
|
* fixed 64bit issue with file descriptorMartin Willi2007-09-131-1/+9
|
* manager can query and list IKE_SA status (no layout yet)Martin Willi2007-09-131-2/+3
|
* only switch to port 4500 if we are on 500: fixed reauthentication in NAT Martin Willi2007-09-121-2/+9
| | | | scenarios
* removed unused chunk variableAndreas Steffen2007-09-121-3/+1
|
* moving virtual IP when interface changes due mobikeMartin Willi2007-09-121-0/+11
|
* fixed NAT detection with mobikeMartin Willi2007-09-122-7/+7
|
* fixed shutdown order to prevent crash when kernel interface schedules eventsMartin Willi2007-09-121-1/+1
|
* overwrite shared_key with random bytes before freeing itAndreas Steffen2007-09-111-2/+2
|
* check hash algorithms used in signaturesAndreas Steffen2007-09-111-1/+1
|
* removed rsa_private_key clone() functionAndreas Steffen2007-09-111-1/+1
|
* replaced get_rsa_private_key() by rsa_signature() in order restrict the ↵Andreas Steffen2007-09-112-46/+49
| | | | distribution of private key material
* overwrite storage used for shared secrets with pseudo-random bytes before ↵Andreas Steffen2007-09-101-27/+26
| | | | releasing it
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-23 21:16:16 +0000