aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon
Commit message (Collapse)AuthorAgeFilesLines
...
* Raise an alert if CHILD_SA proposals mismatchMartin Willi2012-12-192-0/+4
|
* Raise an alert if IKE proposals mismatchMartin Willi2012-12-192-0/+7
|
* Raise an alert of generating local authentication data failsMartin Willi2012-12-192-6/+12
|
* Fix deadlock in IMC/IMV managersTobias Brunner2012-12-182-8/+36
| | | | | | | | | Since reserve_id() might be called from e.g. notify_connection_change() using a write lock will not work as this can't be acquired while holding the read lock. Also, with the previous code it was possible that two IMCs/IMVs added by two threads at the same time would get the same ID assigned.
* Properly select IMC/IMV according to given primary ID in reserve_id()Tobias Brunner2012-12-182-2/+2
|
* If load-tester requests a virtual IP, use a dynamic local traffic selectorMartin Willi2012-12-171-2/+8
|
* Fix traffic selectors also as initiator in case of transport mode over NATTobias Brunner2012-12-131-1/+1
|
* Fix debug output if responder selected invalid traffic selectors during QMTobias Brunner2012-12-131-2/+2
|
* Migrate RADIUS accounting state while IKE_SA unique id changes during rekeyMartin Willi2012-12-111-0/+23
|
* Migrate cache and fire lookip events for unique_id change during IKE_SA rekeyMartin Willi2012-12-101-0/+13
|
* Inherit virtual IP and attributes from old to new, not from new to oldMartin Willi2012-12-101-5/+5
|
* optionally skip dlclose() of IMCs/IMVs in order to track memory leaksAndreas Steffen2012-12-092-2/+6
|
* Properly trigger ike_updown() event if IKEv1 DPD times outMartin Willi2012-12-041-0/+1
| | | | Fixes missing RADIUS Accounting Stop, #257.
* Fix GPL license header to properly "sed" itMartin Willi2012-11-301-1/+1
|
* Add locking to IMC/IMV managers to add/remove IMC/IMVs on the flyMartin Willi2012-11-302-7/+67
|
* Add wrappers to IMC/IMV managers loading IMC/IMVs from function pointersMartin Willi2012-11-302-1/+64
|
* If adding an IMC/IMV fails, terminate() it only if it has been initialize()dMartin Willi2012-11-302-25/+17
|
* Add an IMV constructor taking a set of custom TNC_IMV functionsMartin Willi2012-11-303-5/+78
|
* Add an IMC constructor taking a set of custom TNC_IMC functionsMartin Willi2012-11-302-3/+60
|
* Clean up memory management when loading IMC/IMVs from filesMartin Willi2012-11-304-52/+34
|
* Fix passing of IKE_SA unique_id over lookip socketMartin Willi2012-11-301-0/+1
|
* Store load-tester address leases in a hashtable for fast removalMartin Willi2012-11-291-24/+81
|
* Don't wait while removing external IPs used for load testingMartin Willi2012-11-293-4/+5
|
* Install virtual IPs via interface name, and use an interface lookup where ↵Martin Willi2012-11-293-36/+38
| | | | required
* load-tester can dynamically install a dedicated external IP for each IKE_SAMartin Willi2012-11-295-15/+220
| | | | | | | For consistency, the local/remote parameters have been replaced by the initiator/responder options. As initiator, the initiator option can be overriden by an addrs section taking key/value pairs with address pools to use on a specific interface.
* Add an optional kernel-interface parameter to install IPs with a custom prefixMartin Willi2012-11-292-6/+6
|
* Add a delay option to load-tester socketMartin Willi2012-11-292-7/+11
|
* Indicate message retransmissions while initiating load-test batchesMartin Willi2012-11-291-0/+26
|
* Add alerts for sent/received message retransmissions and timeoutMartin Willi2012-11-293-0/+14
|
* Initiate each load-testing connection with a fresh peer configMartin Willi2012-11-291-19/+23
|
* Initiate IKE_SAs trigger over load-tester socket in parallelMartin Willi2012-11-291-9/+145
|
* Add a simple load-tester utility to initiate over control socketMartin Willi2012-11-293-0/+108
|
* Add a load-tester control socket to manually trigger initiationMartin Willi2012-11-294-1/+271
|
* Lookip plugin additionally reports the IKE_SA unique identifierMartin Willi2012-11-295-10/+21
|
* Do not send 0.0.0.0/0 traffic selectors as Split-Include Unity attributesMartin Willi2012-11-221-2/+6
| | | | It seems that iOS devices don't like them.
* Add an ikesa_limit option to limit number of IKE_SAs as responderMartin Willi2012-11-161-19/+39
|
* Pass PLUTO_XAUTH_ID to updown scriptMartin Willi2012-11-161-1/+21
|
* libcharon can be initialized more than onceMartin Willi2012-11-142-5/+34
|
* centralized processing of assessment informationAndreas Steffen2012-11-121-4/+3
|
* Include 'aggressive' when comparing peer_cfg_t objectsTobias Brunner2012-11-071-0/+1
|
* Fixed output of longer debug messagesTobias Brunner2012-11-071-0/+1
| | | | | (v)snprintf(3) returns the length without terminating null byte but the length given as parameter must include it.
* 'signal' is a keyword in MySQL 5.5Tobias Brunner2012-11-071-1/+2
| | | | Fixes #251.
* Log sent vendor IDs for IKEv1Tobias Brunner2012-11-021-0/+1
|
* Compiler warning fixedTobias Brunner2012-11-021-1/+1
|
* Exclude dynamic TS from Unity Split-Include attributesMartin Willi2012-10-301-0/+1
|
* Fixed log message when no shared secret is found during IKEv1 Main ModeTobias Brunner2012-10-291-1/+1
|
* Remove all ESP proposals with non-matching DH group during Quick ModeTobias Brunner2012-10-241-10/+22
| | | | | | According to RFC 2409, section 5.5, if PFS is used all proposals MUST include the selected DH group, so we remove proposals without the proposed group and remove other DH groups from the remaining proposals.
* proposal_t.strip_dh() takes a DH group to keep, using MODP_NONE will remove allTobias Brunner2012-10-243-6/+15
|
* Moved debug.[ch] to utils folderTobias Brunner2012-10-2445-51/+51
|
* Moved data structures to new collections subfolderTobias Brunner2012-10-2493-105/+105
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-11 18:27:38 +0000