aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon
Commit message (Collapse)AuthorAgeFilesLines
...
* Moved kernel interface to libhydra.Tobias Brunner2010-09-0212-1620/+8
|
* Removed references to protocol_id_t from kernel interface.Tobias Brunner2010-09-0210-199/+193
| | | | | Instead we use the actual IP protocol identifier (the conversion now happens in child_sa_t and kernel_handler_t).
* Migrated child_sa_t to INIT/METHOD macros.Tobias Brunner2010-09-021-202/+132
|
* Moved roam job creation to kernel event handler.Tobias Brunner2010-09-023-21/+56
|
* Refer to scheduler via hydra and not charon.Tobias Brunner2010-09-0214-29/+32
|
* Moved scheduler_t to libhydra.Tobias Brunner2010-09-026-499/+0
|
* Moved migrate job creation to kernel event handler.Tobias Brunner2010-09-023-15/+22
|
* Moved update SA job creation to kernel event handler.Tobias Brunner2010-09-024-19/+22
|
* Moved delete/rekey CHILD_SA job creation to kernel event handler.Tobias Brunner2010-09-024-53/+39
|
* Moved acquire job creation to kernel event handler.Tobias Brunner2010-09-024-21/+31
|
* Added kernel event handler stub.Tobias Brunner2010-09-025-0/+120
|
* All kernel listener hooks are optional.Tobias Brunner2010-09-022-5/+11
|
* Added listener handling to kernel interface.Tobias Brunner2010-09-022-2/+202
|
* Added an interface for kernel event listeners.Tobias Brunner2010-09-023-0/+96
|
* Some whitespace and code style fixes.Tobias Brunner2010-09-024-25/+33
|
* Move callback_job_t to libhydra.Tobias Brunner2010-09-024-392/+0
|
* Fixing Doxygen groups after moving processor.Tobias Brunner2010-09-0218-20/+20
|
* Refer to processor via hydra and not charon.Tobias Brunner2010-09-0233-71/+100
|
* Move processor_t (thread-pool) to libhydra.Tobias Brunner2010-09-027-437/+3
|
* Respect key types in stroke key/certificate backendMartin Willi2010-09-021-15/+24
|
* increase number of message due to large certificate payloadsAndreas Steffen2010-09-011-1/+1
|
* Load a left/rightcert2 for EAP-TLS even if no left/rightauth2 is definedMartin Willi2010-08-311-1/+10
|
* Use the AAA Identity for EAP authentication, if givenMartin Willi2010-08-312-1/+14
|
* Added support for the ipsec.conf aaa_identity keywordMartin Willi2010-08-312-0/+7
|
* Added strongswan.conf options for EAP-TLS/TTLS fragment sizeMartin Willi2010-08-312-9/+20
|
* Migrated EAP-TTLS to the generic TLS helperMartin Willi2010-08-311-281/+21
|
* Migrated EAP-TLS to the generic TLS helperMartin Willi2010-08-311-272/+19
|
* Support output fragmentation of TLS recordsMartin Willi2010-08-312-4/+6
|
* Moved EAP type/code definitions to a seprate header file in libstrongswanMartin Willi2010-08-312-35/+1
|
* Enable the generation of unencrypted messages (e.g. ME connectivity checks).Tobias Brunner2010-08-301-9/+10
|
* fixed copy-and-paste errorsAndreas Steffen2010-08-302-2/+2
|
* created an eap-tnc method hullAndreas Steffen2010-08-306-0/+363
|
* for the time being assume a single request/response exchange for a given EAP ↵Andreas Steffen2010-08-301-2/+3
| | | | method
* Port floating patch partially reversed.Tobias Brunner2010-08-302-12/+8
| | | | | | If MOBIKE is enabled, we do have to switch to port 4500 with the IKE_AUTH request, that is, before we know whether the other peer actually supports MOBIKE or not.
* Slightly refactored port floating.Tobias Brunner2010-08-305-35/+39
| | | | In case of MOBIKE, only float to port 4500 if the other peer actually supports MOBIKE.
* Fixed ME after introduction of AEAD wrapper.Tobias Brunner2010-08-301-1/+1
|
* Win7 might send up to 7k of certificate requestsAndreas Steffen2010-08-273-3/+3
|
* Update delete_payload length when adding SPIsMartin Willi2010-08-251-0/+1
|
* Migrated delete_payload to INIT/METHOD macros, replaced iteratorMartin Willi2010-08-253-130/+108
|
* Use different return values in payload decryption to distinguish between ↵Martin Willi2010-08-253-12/+16
| | | | integrity and syntax errors
* Check if colliding rekey actually created an IKE_INITThomas Egerer2010-08-251-37/+42
| | | | | | In some cases (especially if a child is half-open) the colliding rekey-job might not have created the ike_init member. If so, the nonce check fails with SIGSEGV.
* Added a ike_name logger option to prefix the IKE_SA name on each lineMartin Willi2010-08-255-19/+69
|
* removed tls_record_t definitionAndreas Steffen2010-08-241-10/+0
|
* Pass NULL peer identity to omit TLS peer authentication, added ↵Martin Willi2010-08-242-2/+7
| | | | eap-ttls.request_peer_auth option
* support fragmentation in AVPsAndreas Steffen2010-08-243-21/+118
|
* Client sends empty EAP-TTLS packet on fatal alerts to properly shut down TLSMartin Willi2010-08-241-0/+6
|
* Moved TLS record parsing/generation to tls.cMartin Willi2010-08-242-122/+8
|
* EAP-TLS clients send an empty packet on failure to properly shut down a TLS ↵Martin Willi2010-08-231-0/+6
| | | | session
* Accept encryption payloads with no wrapped payloadsMartin Willi2010-08-231-1/+1
|
* Use enum mappings to resolve debug groupMartin Willi2010-08-231-16/+1
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-27 08:22:49 +0000