| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Defined functions in the kernel interface to flush SAD and SPD entries. | Tobias Brunner | 2011-10-21 | 1 | -0/+14 |
| | | |||||
| * | Added kernel_ipsec/net plugin feature loading callbacks | Martin Willi | 2011-10-14 | 1 | -0/+15 |
| | | |||||
| * | Install fallback drop policies to avoid transmitting unencrypted packets. | Tobias Brunner | 2011-07-27 | 1 | -0/+2 |
| | | | | | | | | During the update of a CHILD_SA (e.g. caused by MOBIKE) the old policy is first uninstalled and then the new one is installed. In the short time in between, where no policy is available in the kernel, unencrypted packets could have been transmitted. | ||||
| * | Remove policies in kernel interfaces based on their priority. | Tobias Brunner | 2011-07-27 | 1 | -4/+16 |
| | | | | | | | This allows to unroute a connection while the same connection is currently established. In this case both CHILD_SAs share the same reqid but the installed policies have different priorities. | ||||
| * | Add the reqid to kernel_ipsec_t.del_policy. | Tobias Brunner | 2011-07-06 | 1 | -3/+4 |
| | | |||||
| * | implemented PASS and DROP shunt policies | Andreas Steffen | 2011-06-28 | 1 | -0/+4 |
| | | |||||
| * | Added an esn parameter to the kernel interface add_sa functions | Martin Willi | 2011-04-20 | 1 | -1/+2 |
| | | |||||
| * | Implemented Traffic Flow Confidentiality padding in kernel_interface | Martin Willi | 2010-12-20 | 1 | -1/+2 |
| | | |||||
| * | Fixing installation of trap policies (SPI=0) in kernel interface. | Tobias Brunner | 2010-09-02 | 1 | -9/+27 |
| | | |||||
| * | Added an option to specify the type of a policy to kernel_ipsec.add_policy. | Tobias Brunner | 2010-09-02 | 1 | -2/+16 |
| | | | | | | This will later allow us to support pluto's passthrough and drop policies in charon. | ||||
| * | Replaced the protocol argument in add_policy with an optional SPI for an AH SA. | Tobias Brunner | 2010-09-02 | 1 | -3/+3 |
| | | |||||
| * | Moved ipsec_transform_t to kernel_ipsec.h in libhydra. | Tobias Brunner | 2010-09-02 | 1 | -1/+18 |
| | | | | | | Because of this libfreeswan, pluto, starter etc. now depend on that file (and libhydra). This resolved some duplicate declarations. | ||||
| * | Moved kernel interface to libhydra. | Tobias Brunner | 2010-09-02 | 1 | -0/+319 |
 |
index : tteras/strongswan | |
| tteras' strongSwan tree | gitolite |
| aboutsummaryrefslogtreecommitdiffstats |