aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
* fixed some compiler warnings4.0.4Martin Willi2006-09-213-10/+10
|
* extended statusall outputMartin Willi2006-09-213-11/+69
| | | | | added job/event-queue statistics added allocation statistics when using LEAK_DETECTIVE
* fixed include typoMartin Willi2006-09-211-1/+1
|
* public declaration of all HASH_SIZEs in hasher.hMartin Willi2006-09-204-14/+13
|
* support of encrypted private key filesAndreas Steffen2006-09-207-28/+61
|
* support of encrypted private key filesAndreas Steffen2006-09-201-1/+19
|
* added copyright notice to sha2_hasherMartin Willi2006-09-193-4/+5
| | | | included SHA2 in build process
* implemented sha2_hasher which supports SHA-256, SHA-384 and SHA-512Martin Willi2006-09-197-50/+741
|
* added support for 3DES encryption algorithm in IKEMartin Willi2006-09-197-8/+1613
|
* fixed the ids parsing bugAndreas Steffen2006-09-191-0/+1
|
* fixed the ids parsing bugAndreas Steffen2006-09-191-1/+4
|
* updated TODOsMartin Willi2006-09-181-9/+10
|
* fixed memleakMartin Willi2006-09-181-10/+27
| | | | | fixed proper handling of id parsing errors proper return value when no PSK found
* added HOST_ACCESS for firewall script as defaultMartin Willi2006-09-181-0/+1
|
* more debugging output for PSK authenticationMartin Willi2006-09-181-3/+11
|
* some cleanups here and thereMartin Willi2006-09-184-13/+9
|
* added auth_method fieldAndreas Steffen2006-09-181-0/+29
|
* added auth_method fieldAndreas Steffen2006-09-181-0/+1
|
* cosmeticsAndreas Steffen2006-09-181-1/+0
|
* verify_emsa_pkcs1_signature returns status_tAndreas Steffen2006-09-181-1/+1
|
* cosmeticsAndreas Steffen2006-09-181-2/+1
|
* added PSK supportAndreas Steffen2006-09-188-166/+433
|
* proper error handling for socket creationMartin Willi2006-09-181-12/+23
|
* handle certificate parsing error more generousMartin Willi2006-09-141-9/+16
|
* fixed certificate verification bug!Martin Willi2006-09-142-5/+19
|
* fixed memleak when receiving invalid certificateMartin Willi2006-09-141-0/+1
|
* version bump to 4.0.4Andreas Steffen2006-09-142-1/+7
|
* implemented updown script to handle firewallingMartin Willi2006-09-129-32/+207
|
* add priority management for kernel policyMartin Willi2006-09-0812-221/+256
| | | | | | | let ROUTED policies installed, until manuall removed introduced new naming scheme to allow proper shutdown of IKE/CHILD_SAs ike_sa_manager cleanups
* implemented handling of dpdaction and dpddelay ipsec.conf parametersMartin Willi2006-09-0811-26/+156
|
* reuse reqid when a ROUTED child_sa gets INSTALLEDMartin Willi2006-09-0535-477/+552
| | | | | | | | | fixed a bug in retransmission code added support for the "keyingtries" ipsec.conf parameter added support for the "dpddelay" ipsec.conf parameter done some work for "dpdaction" behavior some other cleanups and fixes
* fixed a at-least-one-year-old bug which caused crashed in the schedulerMartin Willi2006-08-313-8/+10
|
* added raw socket filter for IPv6Martin Willi2006-08-312-23/+16
|
* implemented NAT detection for IPv6Martin Willi2006-08-311-36/+19
|
* removed unneeded constructorMartin Willi2006-08-312-30/+2
|
* initial support for IPv6 (more testing needed)Martin Willi2006-08-3016-374/+1074
| | | | | | | | | socket works (without v6 filter) traffic selector handle IPv4/v4 cleanly improvements in traffic selector code kernel interface accepts v6 traffic selectors and hosts host_t class has full IPv6 support
* added stddef.h include for compilers which do not support the offsetof() ↵Martin Willi2006-08-281-0/+2
| | | | directive
* moved interface enumeration code to socket, where it belongsMartin Willi2006-08-2812-348/+207
| | | | | query interfaces every time we need it to respect changes in network config added address listing on startup and "ipsec statusall"
* fixed crash bug when doing "ipsec down" with an unknown connectionMartin Willi2006-08-251-2/+5
|
* added name property in CHILD_SA, allows proper status outputMartin Willi2006-08-255-14/+75
|
* (no commit message)Martin Willi2006-08-251-5/+0
|
* fixed bug which prevented port float when nat is detectedMartin Willi2006-08-251-0/+8
|
* 'sha' and 'sha1' are now treated as synonymsAndreas Steffen2006-08-231-0/+8
|
* updated Changelog and other docsMartin Willi2006-08-232-11/+10
|
* fixed rekeying behavior when proposing an inacceptable DH group ↵4.0.3Martin Willi2006-08-232-35/+26
| | | | (INVALID_KE_PAYLOAD)
* implement proper handling of most simultaneous IKE_SA rekeying casesMartin Willi2006-08-238-57/+288
|
* implemented proper refcounting using atomic operationsMartin Willi2006-07-288-6/+79
|
* implemented IKE_SA rekeyingMartin Willi2006-07-2730-317/+1696
| | | | | | uses ikelifetime, rekeymargin and rekeyfuzz config settings no handling of simultaneus exchanges yet!
* added possibility to route CHILD_SAs, without to set them upMartin Willi2006-07-2126-142/+1011
| | | | | | | support for auto=route parameter support for ipsec route and ipsec unroute initiating of CHILD and/or IKE_SAs based on kernel acquires
* reuse an existing IKE_SA to set up additional CHILD_SAsMartin Willi2006-07-2019-263/+344
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-03 18:29:59 +0000