aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon
Commit message (Collapse)AuthorAgeFilesLines
...
* support of xfrm marks for IKEv2Andreas Steffen2010-07-0217-149/+483
|
* Recreate IKE_SA_INIT related tasks only if they have completedMartin Willi2010-06-301-11/+35
|
* Use enumerator for queued_tasks migration to avoid infinite loopThomas Egerer2010-06-301-3/+5
|
* Correct check of traffic selectors before destructionThomas Egerer2010-06-291-2/+2
|
* Migrate queued_tasks tasks, to avoid dangling pointersThomas Egerer2010-06-291-0/+7
|
* The signature of keystore_get changed again.Tobias Brunner2010-06-281-1/+3
| | | | | With Android 2.2 (Froyo) the interface of keystore_get was changed once again. The change was made to allow the keys to contain \0 characters.
* Compiler warning fixed.Tobias Brunner2010-06-281-1/+3
|
* Show contents of the CP payload in message_t stringificationMartin Willi2010-06-241-0/+34
|
* Increased the loglevel for the arguments received via Android control socket.Tobias Brunner2010-06-241-1/+1
|
* Terminate charon from the Android plugin if the tunnel goes down after it ↵Tobias Brunner2010-06-241-0/+24
| | | | was initiated successfully.
* Initiate the tunnel in the Android plugin asynchronously.Tobias Brunner2010-06-241-6/+39
| | | | Also track its initiation using the registered listener.
* Implement the listener_t interface in the Android plugin to track the status ↵Tobias Brunner2010-06-242-2/+47
| | | | of an SA.
* Helper function added to notify the Android frontend about status changes.Tobias Brunner2010-06-241-4/+14
|
* Initiate consumes a child_sa reference, so get an additional one.Tobias Brunner2010-06-241-0/+2
|
* Use the same error code constants as in the Java frontend.Tobias Brunner2010-06-241-1/+15
|
* Flush and destroy the send queue before unloading the socket plugins.Tobias Brunner2010-06-241-1/+1
|
* Do not install routes in the PF_KEY kernel interface if interface lookup failed.Tobias Brunner2010-06-231-15/+23
|
* The signature of keystore_get was changed with Android 2.x.Tobias Brunner2010-06-221-2/+12
|
* Avoid a segmentation fault if opening the Android control socket failed.Tobias Brunner2010-06-221-1/+1
|
* Allow to enable the kernel-pfkey plugin via Android.mk.Tobias Brunner2010-06-221-0/+2
|
* Fixing the PF_KEY kernel interface on Android.Tobias Brunner2010-06-221-0/+2
| | | | In Android's in.h IPPROTO_COMP is not #defined but just an enum member.
* Accept IKE packets with any minor version in RAW socketMartin Willi2010-06-221-6/+8
|
* Fixed plugin checks in Android.mk files.Tobias Brunner2010-06-221-2/+2
|
* Use vpn.dns* to store DNS servers (Android manages net.dns* using these).Tobias Brunner2010-06-151-2/+2
|
* Adding an interface that interacts with the Android Settings frontend.Tobias Brunner2010-06-154-0/+326
|
* Adding an Android specific credential set.Tobias Brunner2010-06-155-1/+369
|
* Adding an Android specific logger.Tobias Brunner2010-06-154-3/+163
|
* Adding support for the native Linux capabilities interface.Tobias Brunner2010-06-151-8/+31
| | | | | Note that this interface is deprecated and mainly added to support Android. Use libcap, if possible.
* Explicitly refer to LIBCAP in Makefiles.Tobias Brunner2010-06-151-1/+1
|
* Explicitly include stdint.h for UINT64_MAX.Tobias Brunner2010-06-151-0/+2
| | | | This is required on FreeBSD 8.
* Check for SADB_X_NAT_T_NEW_MAPPING in PF_KEY kernel interface.Tobias Brunner2010-06-151-4/+4
| | | | | FreeBSD 8 does not support SADB_X_NAT_T_NEW_MAPPING whereas Linux and the previous FreeBSD NAT-T patch both do.
* Set the ports of all hosts installed via the PF_KEY kernel interface to zero.Tobias Brunner2010-06-151-15/+37
|
* Adding a basic unit test for hashtable_t.Tobias Brunner2010-06-073-1/+114
|
* Add extra information in debug output for IKE_SA check{out, in}Thomas Egerer2010-06-072-10/+27
| | | | | | | This output helps tracing checkout and checkin of IKE_SAs when there is more than one IKE_SAs with the same name. I also added the type of in-air-exchange to the debug output issued by the task_manager in case a task initiation is delayed, came in handy for me.
* traffic_selector_t is gone into libstrongswan, migrate printf hook ↵Martin Willi2010-06-071-5/+0
| | | | registration, too.
* Flush auth configs, create new keymat during SA resetMartin Willi2010-06-071-12/+16
|
* Recreate IKE_INIT/IKE_NATD/IKE_VENDOR tasks if we reset SA during IKE_AUTHMartin Willi2010-06-071-0/+11
|
* Reacquire keymat from new IKE_SA during task migrationMartin Willi2010-06-071-0/+1
|
* Flush certificate cache on CA deleteMartin Willi2010-06-071-1/+2
|
* Log non-empty task queues in statusallMartin Willi2010-06-071-0/+31
|
* Wrap task enumerator in ike_saMartin Willi2010-06-072-1/+16
|
* Migrated ike_sa_t to INIT/METHOD macrosMartin Willi2010-06-071-407/+239
|
* Added support for task enumeration in task_manager_tMartin Willi2010-06-072-0/+38
|
* Migrated task_manager_t to INIT/METHOD macrosMartin Willi2010-06-071-65/+45
|
* Accept ARP requests with an ethernet trailer, but trim itMartin Willi2010-06-031-2/+2
|
* Added a EAP-SIM/AKA backend reading triplets/quintuplets from a SQL databaseMartin Willi2010-06-0211-0/+682
|
* Disable close action for a redundant CHILD_SA resulting from a rekey collisionMartin Willi2010-06-021-0/+5
| | | | | | | | If a rekey collision is detected, the winning peer of the nonce compare will delete the redundant CHILD_SA. The other peer should not enforce the close action on this CHILD, as it would reestablish the redundat CHILD_SA. Thanks to Thomas Egerer from secunet for pointing this out and the initial patchset.
* Use wrapped getters for close/dpd actionMartin Willi2010-06-022-8/+10
|
* Wrap getters for dpd/close action into CHILD_SA, allows us to override themMartin Willi2010-06-022-0/+76
|
* Do not install trap policy if remote host is %any.Tobias Brunner2010-05-281-1/+1
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 12:09:07 +0000