aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
* fixed UDP decapsulation by adding inbound bypass policy for send socketMartin Willi2006-07-141-10/+17
|
* reenabled module tests for charonMartin Willi2006-07-144-25/+27
|
* fixed bug which erroneously detected KE payload when rekeyingMartin Willi2006-07-141-0/+1
|
* added IPsec bypass policy to receiving socket, allows incoming IKE traffic ↵Martin Willi2006-07-141-26/+29
| | | | on host2host tunnels when using NAT
* improved logging on verify errors for some payloadsMartin Willi2006-07-136-73/+59
| | | | | | enforcing IKE_SA shutdown, even when transactions are outstanding proper reject of CREATE_CHILD_SA message with KE payload
* fixed CREATE_CHILD_SA transaction dispatchingMartin Willi2006-07-131-37/+28
|
* added CHILD_SA states, which allows us to detect further simultaneous ↵Martin Willi2006-07-1318-132/+239
| | | | | | | transactions reimplemented the buggy message id handling
* updated some inline docsMartin Willi2006-07-124-4/+40
|
* fixed crypter/signer in/out to conform with standardMartin Willi2006-07-121-9/+9
|
* fixed payload orderMartin Willi2006-07-121-5/+4
|
* added message id loggingMartin Willi2006-07-121-2/+4
|
* added all currently known notify payload typesMartin Willi2006-07-122-1/+34
|
* added policy cache to kernel interfaceMartin Willi2006-07-127-568/+553
| | | | | | allows refcounting of multiple installed policies finally brings us stable simultaneous rekeying
* leak detective blanks memory on free & alloc, allows further membug detectionMartin Willi2006-07-123-14/+28
|
* code cleanupsMartin Willi2006-07-122-84/+43
|
* identification_t.matches() supports multiple wildcard countsAndreas Steffen2006-07-112-31/+19
|
* identification_t.matches() supports multiple wildcard countsAndreas Steffen2006-07-112-85/+124
|
* further work done for simultaneous rekeying/deleteMartin Willi2006-07-1015-229/+312
| | | | | still some cases which cause trouble
* fixed compiler warnings in parser when using -O2Martin Willi2006-07-071-3/+3
|
* reenabled check_expiryMartin Willi2006-07-071-6/+6
|
* updated copyright informationMartin Willi2006-07-07208-218/+421
|
* reimplemented CHILD_SA rekeying & deleteMartin Willi2006-07-0721-294/+1582
| | | | | no simultanous transaction with CHILD_SAs yet!
* removed NAT_TRAVERSAL and VIRTUAL_IP compile optionsAndreas Steffen2006-07-071-18/+18
|
* removed NAT_TRAVERSAL compile optionAndreas Steffen2006-07-078-71/+26
|
* removed NAT_TRAVERSAL and VIRTUAL_IP compile optionsAndreas Steffen2006-07-0721-482/+198
|
* added support for leftprotoport and rightprotoportMartin Willi2006-07-056-11/+32
|
* improved CHILD_SA output for "ipsec statusall"Martin Willi2006-07-051-61/+106
|
* updated whitelist (getprotobynumber)Martin Willi2006-07-051-0/+2
|
* redesigned IKE_SA using a transaction mechanism:Martin Willi2006-07-0571-8081/+4767
| | | | | | | | | | | | removed old state machine reimplemented IKE_SA setup and delete implemented dead peer detection implemented keep-alives a lot of fixes no rekeying yet
* fixed compiler warningsMartin Willi2006-07-058-30/+26
|
* made thread ids unsigned again, to avoid negative thread ids on some systemsMartin Willi2006-07-044-4/+4
|
* fixed memleak when initiating a connection already upMartin Willi2006-07-041-0/+1
|
* updated leak detective whitelistMartin Willi2006-07-041-5/+6
|
* applied latest NATT patch with some fixes and cleanupsMartin Willi2006-07-042-9/+16
|
* log entries start with lowcercase characterAndreas Steffen2006-07-042-25/+33
|
* restored lost IKEv2 packet suppressionAndreas Steffen2006-07-031-0/+13
|
* fixed natd_hash memory leakAndreas Steffen2006-07-031-2/+7
|
* support of cert payloadsAndreas Steffen2006-07-0327-634/+1082
|
* lowercase log entriesAndreas Steffen2006-07-031-1/+1
|
* distributed by ITAAndreas Steffen2006-07-031-2/+1
|
* added support of updown parameterAndreas Steffen2006-07-031-0/+1
|
* generation of default keyAndreas Steffen2006-07-031-0/+23
|
* cosmeticsAndreas Steffen2006-07-031-1/+1
|
* added support of updown parameterAndreas Steffen2006-07-031-0/+1
|
* version bump to 4.0.2Andreas Steffen2006-06-282-1/+7
|
* added X.509 trust chain verificationAndreas Steffen2006-06-2715-101/+901
|
* applied new changes from NATT teamMartin Willi2006-06-2320-226/+358
| | | | | DPD only done when no IPsec and IKE traffic processed minor changes here and there
* some message code cleanupsMartin Willi2006-06-233-38/+46
|
* fixed identification_t clone to apply function pointersMartin Willi2006-06-231-0/+3
|
* cleaner error handling on UDP encapsultion sockopt failureMartin Willi2006-06-221-8/+7
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-09 11:06:21 +0000