aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon
Commit message (Collapse)AuthorAgeFilesLines
...
* Scheduler and processor have been moved to libstrongswan.Tobias Brunner2010-09-021-1/+1
| | | | | Also reverts 0c21dc000d3cd5c82eb22c4481e6459978456364 as the dependency to libcharon is no longer required.
* Adapted child_sa_t to changed kernel interface.Tobias Brunner2010-09-021-25/+49
|
* Fixing installation of trap policies (SPI=0) in kernel interface.Tobias Brunner2010-09-021-3/+2
|
* Added an option to specify the type of a policy to kernel_ipsec.add_policy.Tobias Brunner2010-09-021-18/+18
| | | | | This will later allow us to support pluto's passthrough and drop policies in charon.
* Replaced the protocol argument in add_policy with an optional SPI for an AH SA.Tobias Brunner2010-09-022-19/+38
|
* Refer to scheduler and processor via lib and not hydra.Tobias Brunner2010-09-0230-89/+67
|
* Moved all kernel plugins to libhydra.Tobias Brunner2010-09-0227-10728/+0
|
* Moved ipsec_transform_t to kernel_ipsec.h in libhydra.Tobias Brunner2010-09-022-26/+0
| | | | | Because of this libfreeswan, pluto, starter etc. now depend on that file (and libhydra). This resolved some duplicate declarations.
* Refer to kernel interface via hydra and not charon.Tobias Brunner2010-09-0224-144/+161
|
* Moved kernel interface to libhydra.Tobias Brunner2010-09-0212-1620/+8
|
* Removed references to protocol_id_t from kernel interface.Tobias Brunner2010-09-0210-199/+193
| | | | | Instead we use the actual IP protocol identifier (the conversion now happens in child_sa_t and kernel_handler_t).
* Migrated child_sa_t to INIT/METHOD macros.Tobias Brunner2010-09-021-202/+132
|
* Moved roam job creation to kernel event handler.Tobias Brunner2010-09-023-21/+56
|
* Refer to scheduler via hydra and not charon.Tobias Brunner2010-09-0214-29/+32
|
* Moved scheduler_t to libhydra.Tobias Brunner2010-09-026-499/+0
|
* Moved migrate job creation to kernel event handler.Tobias Brunner2010-09-023-15/+22
|
* Moved update SA job creation to kernel event handler.Tobias Brunner2010-09-024-19/+22
|
* Moved delete/rekey CHILD_SA job creation to kernel event handler.Tobias Brunner2010-09-024-53/+39
|
* Moved acquire job creation to kernel event handler.Tobias Brunner2010-09-024-21/+31
|
* Added kernel event handler stub.Tobias Brunner2010-09-025-0/+120
|
* All kernel listener hooks are optional.Tobias Brunner2010-09-022-5/+11
|
* Added listener handling to kernel interface.Tobias Brunner2010-09-022-2/+202
|
* Added an interface for kernel event listeners.Tobias Brunner2010-09-023-0/+96
|
* Some whitespace and code style fixes.Tobias Brunner2010-09-024-25/+33
|
* Move callback_job_t to libhydra.Tobias Brunner2010-09-024-392/+0
|
* Fixing Doxygen groups after moving processor.Tobias Brunner2010-09-0218-20/+20
|
* Refer to processor via hydra and not charon.Tobias Brunner2010-09-0233-71/+100
|
* Move processor_t (thread-pool) to libhydra.Tobias Brunner2010-09-027-437/+3
|
* Respect key types in stroke key/certificate backendMartin Willi2010-09-021-15/+24
|
* increase number of message due to large certificate payloadsAndreas Steffen2010-09-011-1/+1
|
* Load a left/rightcert2 for EAP-TLS even if no left/rightauth2 is definedMartin Willi2010-08-311-1/+10
|
* Use the AAA Identity for EAP authentication, if givenMartin Willi2010-08-312-1/+14
|
* Added support for the ipsec.conf aaa_identity keywordMartin Willi2010-08-312-0/+7
|
* Added strongswan.conf options for EAP-TLS/TTLS fragment sizeMartin Willi2010-08-312-9/+20
|
* Migrated EAP-TTLS to the generic TLS helperMartin Willi2010-08-311-281/+21
|
* Migrated EAP-TLS to the generic TLS helperMartin Willi2010-08-311-272/+19
|
* Support output fragmentation of TLS recordsMartin Willi2010-08-312-4/+6
|
* Moved EAP type/code definitions to a seprate header file in libstrongswanMartin Willi2010-08-312-35/+1
|
* Enable the generation of unencrypted messages (e.g. ME connectivity checks).Tobias Brunner2010-08-301-9/+10
|
* fixed copy-and-paste errorsAndreas Steffen2010-08-302-2/+2
|
* created an eap-tnc method hullAndreas Steffen2010-08-306-0/+363
|
* for the time being assume a single request/response exchange for a given EAP ↵Andreas Steffen2010-08-301-2/+3
| | | | method
* Port floating patch partially reversed.Tobias Brunner2010-08-302-12/+8
| | | | | | If MOBIKE is enabled, we do have to switch to port 4500 with the IKE_AUTH request, that is, before we know whether the other peer actually supports MOBIKE or not.
* Slightly refactored port floating.Tobias Brunner2010-08-305-35/+39
| | | | In case of MOBIKE, only float to port 4500 if the other peer actually supports MOBIKE.
* Fixed ME after introduction of AEAD wrapper.Tobias Brunner2010-08-301-1/+1
|
* Win7 might send up to 7k of certificate requestsAndreas Steffen2010-08-273-3/+3
|
* Update delete_payload length when adding SPIsMartin Willi2010-08-251-0/+1
|
* Migrated delete_payload to INIT/METHOD macros, replaced iteratorMartin Willi2010-08-253-130/+108
|
* Use different return values in payload decryption to distinguish between ↵Martin Willi2010-08-253-12/+16
| | | | integrity and syntax errors
* Check if colliding rekey actually created an IKE_INITThomas Egerer2010-08-251-37/+42
| | | | | | In some cases (especially if a child is half-open) the colliding rekey-job might not have created the ike_init member. If so, the nonce check fails with SIGSEGV.
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-23 12:35:18 +0000