aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/plugins
Commit message (Collapse)AuthorAgeFilesLines
...
* kernel-wfp: Add support for trap policies and acquiresMartin Willi2014-06-042-1/+304
|
* socket-win: Install IKE bypass policies using bypass_socket()Martin Willi2014-06-042-0/+12
|
* kernel-wfp: Implement bypass_socket() using dedicated filter rulesMartin Willi2014-06-041-2/+117
|
* kernel-wfp: Register for WFP Net eventsMartin Willi2014-06-042-0/+48
|
* kernel-wfp: Add some missing IPv6 GUIDs, fix IPv6 host conversionMartin Willi2014-06-042-2/+29
|
* kernel-wfp: Add an ipsecdump "filters" command to print IPsec related filtersMartin Willi2014-06-041-1/+282
|
* kernel-wfp: Add an ipsecdump utility to show installed SAs/SPs on WindowsMartin Willi2014-06-043-0/+432
|
* kernel-wfp: Depend on used RNG plugin featuresMartin Willi2014-06-041-0/+2
|
* kernel-wfp: Implement update_sa()Martin Willi2014-06-043-1/+114
|
* kernel-wfp: Configure ports for SAs using UDP encapsulationMartin Willi2014-06-041-0/+31
|
* kernel-wfp: Refactor SA context construction, and use IPsecSaContextCreate1()Martin Willi2014-06-041-19/+32
|
* kernel-iph: Fire roam events for detected address changesMartin Willi2014-06-041-0/+60
|
* kernel-wfp: Allocate SPIs pseudo-randomly using a 0xc prefixMartin Willi2014-06-041-2/+59
|
* kernel-wfp: Install appropriate routes for tunnel mode policiesMartin Willi2014-06-041-1/+208
|
* kernel-iph: Implement add/del_route()Martin Willi2014-06-041-6/+80
|
* kernel-iph: Implement get_nexthop()Martin Willi2014-06-041-0/+32
|
* kernel-iph: Implement get_source_addr()Martin Willi2014-06-041-1/+23
|
* kernel-iph: Implement address enumerationMartin Willi2014-06-041-1/+79
|
* kernel-iph: Implement get_interface() methodMartin Willi2014-06-041-1/+38
|
* kernel-iph: Create and maintain a cache of interfaces and associated addressesMartin Willi2014-06-041-0/+328
|
* kernel-iph: Add a stub for a Windows IP Helper based networking backendMartin Willi2014-06-045-0/+299
|
* kernel-wfp: Disable IPsec policy updatesMartin Willi2014-06-041-4/+11
| | | | | It seems that WFP requires an update of the SA context only, but not for the filters. This allows us to omit support for (fallback) drop policies.
* kernel-wfp: Increment SPIs properly, that is while in host orderMartin Willi2014-06-041-2/+2
|
* kernel-wfp: Triggering expire events for SAs to rekey/deleteMartin Willi2014-06-041-0/+108
|
* kernel-wfp: Enforce hard lifetimes of SAsMartin Willi2014-06-041-0/+8
|
* kernel-wfp: Add some notes about query_sa/policy() supportMartin Willi2014-06-041-0/+5
|
* kernel-wfp: Reference SA/SP sets by SPI and destination, not reqidMartin Willi2014-06-041-255/+149
| | | | | This allows us to have multiple CHILD_SAs for the same reqid, and brings rekeying support.
* kernel-wfp: Add support for tunnel mode connectionsMartin Willi2014-06-042-25/+215
|
* kernel-wfp: Register a WFP provider to manage IPsec tunnelsMartin Willi2014-06-041-0/+22
|
* kernel-wfp: Preliminary support for transport mode connectionsMartin Willi2014-06-042-3/+698
|
* kernel-wfp: Fix/Complete some fwpuclnt functionality in MinGWMartin Willi2014-06-044-3/+133
| | | | | | | | | While MinGW declares all the required symbols, some of them are missing in the library files. We provide missing variables locally, functions get a stub that call the GetProcAddress()ed function from the DLL. Also some MinGW headers define some enum values incorrectly, we overload these using defines.
* kernel-wfp: Open and close a WFP engineMartin Willi2014-06-041-1/+33
|
* kernel-wfp: Create userland state for SAs/policies to install in kernelMartin Willi2014-06-041-5/+364
|
* kernel-wfp: Add a stub for a Windows Filtering Platform based IPsec backendMartin Willi2014-06-045-0/+354
|
* socket-win: Implement a Windows socket plugin using Winsock2Martin Willi2014-06-045-0/+690
|
* vici: Add Windows supportMartin Willi2014-06-047-13/+54
|
* payload: Use common prefixes for all payload type identifiersMartin Willi2014-06-047-24/+24
| | | | | The old identifiers did not use a proper namespace and often clashed with other defines.
* plugins: Don't link with -rdynamic on WindowsMartin Willi2014-06-0456-56/+56
|
* Detect RADIUS packet retransmissionsAndreas Steffen2014-05-311-2/+89
|
* ike: Add an additional but separate AEAD proposal to CHILD configMartin Willi2014-05-166-2/+16
| | | | | | | This currently has no effect: We don't include AEAD algorithms in the default ESP proposal, as we don't know if it is supported by the backend. But as we hopefully get an algorithm query mechanism on kernel interfaces some day, we add the appropriate functionality nonetheless.
* ike: Add an additional but separate AEAD proposal to IKE config, if supportedMartin Willi2014-05-167-10/+32
|
* enum: Return boolean result for enum_from_name() lookupMartin Willi2014-05-165-11/+12
| | | | | | | | | | | Handling the result for enum_from_name() is difficult, as checking for negative return values requires a cast if the enum type is unsigned. The new signature clearly differentiates lookup result from lookup value. Further, this actually allows to convert real -1 enum values, which could not be distinguished from "not-found" and the -1 return value. This also fixes several clang warnings where enums are unsigned.
* xauth-pam: Fix header include guardMartin Willi2014-05-161-1/+1
|
* eap-peap: Remove dead SoH code from PEAPMartin Willi2014-05-161-15/+0
| | | | clang complains about the unused variables.
* vici: Support the close_action keyword, as we have it documentedMartin Willi2014-05-141-1/+6
|
* Implemented PT-EAP protocol (RFC 7171)Andreas Steffen2014-05-124-29/+91
|
* vici: Check if header has been received before processing an empty messageMartin Willi2014-05-071-1/+2
| | | | | | If do_read() returns with EWOULDBLOCK, we must ensure that we actually have processed the full length header before checking the zero-initialized buffer length.
* vici: Properly filter by CHILD_SA name while undoing start actionsMartin Willi2014-05-071-2/+5
|
* vici: Fallback to socket listening port if no explicit local port specifiedMartin Willi2014-05-071-1/+4
|
* vici: Support a "mtu" value for the tfc_padding optionMartin Willi2014-05-071-2/+16
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-02 22:39:03 +0000