aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
...
* make starter behave more gracefully in the presence of non-fatal errorsAndreas Steffen2007-06-253-96/+124
|
* further MOBIKE stuff:Martin Willi2007-06-2122-366/+1125
| | | | | | | | | kernel properly reports network reconfiguration and informs all IKE_SAs MOBIKE in IKE_AUTH: MOBIKE_SUPPORTED notify and address exchange reestablishment of IKE_SAs on network reconfiguration kinda works not stable yet!
* don't modify des/3des input key anymoreMartin Willi2007-06-191-2/+3
|
* fixed virtua IP: adding virtual IP to interface address list cache directlyMartin Willi2007-06-191-16/+30
| | | | corrected debug targets
* set nexthop to him when instantiating rightallowyes template with ↵Andreas Steffen2007-06-181-0/+4
| | | | leftnexthop == right
* support of right|leftallowany flagAndreas Steffen2007-06-188-16/+46
|
* added extensions management to IKE_SAMartin Willi2007-06-183-1/+64
| | | | fixed NATD payload (port) when using route lookup
* source address lookup in kernel interfaceMartin Willi2007-06-184-19/+125
| | | | | | use it for NAT detection if no source address known from config support for %any...%any connections
* support for left=%any change our address dynamicallyMartin Willi2007-06-181-4/+6
|
* increased receive buffer to handle more interfacesMartin Willi2007-06-181-1/+1
|
* fixed typoAndreas Steffen2007-06-161-1/+1
|
* recognize strongswan-2.8.5 VIDAndreas Steffen2007-06-162-12/+14
|
* implemented more flexible iterator hook APIMartin Willi2007-06-155-234/+418
| | | | kernel interface handles interface changes and updates address list
* implemented address change notification (for MOBIKE)Martin Willi2007-06-145-204/+364
| | | | | implemented up to date address list cache to list interfaces
* fixed memleak when initiating to %anyMartin Willi2007-06-141-0/+1
|
* added missing files to the last commitMartin Willi2007-06-142-0/+232
|
* proper reauthentication:Martin Willi2007-06-147-78/+28
| | | | | IKE_SA is closed completely before the new is initiated, resolves some issues when a dynamic IP is requested from a pool
* case insensitive identification_t.equals() for FQDN and RFC822ADDRMartin Willi2007-06-141-3/+25
|
* ported interfaces to new threading functions (incomplete)Martin Willi2007-06-112-143/+129
|
* added setsid() to properly detach from consoleMartin Willi2007-06-111-0/+1
|
* documentation fixes and updatesMartin Willi2007-06-114-9/+26
|
* introduced callback_job:Martin Willi2007-06-1136-1778/+1606
| | | | | | | | | | | | simple asynchronous method invocation use daemons thread pool for all threads proper cancellation and cleanups cancellation mechanism to dynamically unload multithreaded code unified event_queue and scheduler => scheduler unified job_queue and thread_pool => processor removed job_type_t, not really needed fixes here, there and everywhere
* disabling leak detective at runtime by setting LEAK_DETECTIVE_DISABLE env varMartin Willi2007-06-081-3/+14
|
* do not delete existing routes with NETKEYAndreas Steffen2007-06-081-0/+7
|
* insert route only in case of sourceipAndreas Steffen2007-06-061-10/+24
|
* do not print nexthop in ipsec status[all]Andreas Steffen2007-06-061-61/+5
|
* included patch from Rene Mayrhofer to respect DESTDIR in make installMartin Willi2007-06-061-10/+10
|
* version bump to 4.1.4Andreas Steffen2007-05-262-1/+3
|
* moved assignment of CERT_UNKNOWN4.1.3Andreas Steffen2007-05-251-2/+2
|
* log trust pathlenAndreas Steffen2007-05-251-4/+6
|
* included a certificate label in the is_trusted() methodAndreas Steffen2007-05-253-10/+9
|
* DBG1 level now shows stepping up through the certifiate hierarchy up to the ↵Andreas Steffen2007-05-251-2/+2
| | | | trust anchor
* set certinfo status to CERT_UNKNOWN before crl and|or ocsp verificationAndreas Steffen2007-05-251-3/+7
|
* x509_t* argument in get_issuer() method is not constant any more because a ↵Andreas Steffen2007-05-251-1/+1
| | | | short cut to the ca might be set
* added parsing of charging and group attributesAndreas Steffen2007-05-251-14/+63
|
* version bump to 4.1.3Andreas Steffen2007-05-252-1/+5
|
* fixed man pageMartin Willi2007-05-251-1/+1
|
* updated man-page for left/rightsourceipMartin Willi2007-05-251-1/+10
|
* removed paranoid module checkingMartin Willi2007-05-252-26/+0
|
* added compatibility names (pluto) for sha2 algorithms (sha2_256, ...)Martin Willi2007-05-251-4/+11
|
* added #define LDAP_DEPRECATED in order to use old ldap_init() functionAndreas Steffen2007-05-242-0/+6
|
* removed unneeded libdes files speed.c and des_opts.cAndreas Steffen2007-05-243-951/+2
|
* defined ietfAttr_t type and its destroy functionAndreas Steffen2007-05-231-2/+26
|
* removed old FreeS/WAN cvs revision entriesAndreas Steffen2007-05-2318-1587/+0
|
* added #include <linux/types.h> required by 2.6.21 linux headersAndreas Steffen2007-05-231-138/+1
|
* proper thread cancellation when using the charon->interfacesMartin Willi2007-05-238-5/+100
|
* fixed crash when using 0.0.0.0/0 subnetsMartin Willi2007-05-231-0/+1
|
* removed misleading warning when rekeyingMartin Willi2007-05-231-1/+0
|
* support for virtual IP definition on client side:Martin Willi2007-05-226-31/+59
| | | | | | | if leftsourceip is defined, it is requested. server may define rightsourceip=%config to accept any, or it may overwrite it using rightsourceip. if server does not return an IP, client enforces its configured leftsourceip.
* fixed memleakMartin Willi2007-05-221-0/+1
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-05 00:03:41 +0000