aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
...
* parse xfrm and pf_key acquire messages and subscribe to migrate messagesAndreas Steffen2008-10-314-37/+216
|
* reverted changeset 4529:Martin Willi2008-10-301-2/+1
| | | | | Camellia is 22 in IKEv1, but not-yet defined in IKEv2 in IKEv2, 22 is reserved for AES-XTS
* added hooks for IKE and CHILD keymatMartin Willi2008-10-309-44/+179
|
* store plain skd, not the prfMartin Willi2008-10-302-23/+19
|
* added Camellia CBC to list of encryption algorithmsAndreas Steffen2008-10-301-1/+2
|
* corrected parameter descriptionAndreas Steffen2008-10-301-1/+1
|
* moved CHILD_SA key derivation to keymat_tMartin Willi2008-10-297-440/+438
| | | | passing key chunks to CHILD_SA, not the PRF
* prf handles zero-length allocations gracefulMartin Willi2008-10-291-3/+10
|
* do not store DH redundant in keymatMartin Willi2008-10-293-52/+30
|
* upgrade to linux-2.6.28 headers with support for kmaddress structAndreas Steffen2008-10-292-1/+29
|
* moved key derivation and management into keymat objectMartin Willi2008-10-2813-585/+748
| | | | | | allows secured implementation of key management (e.g. in kernel or HW) only IKE keys for now
* store IKE proposal implicitly during derive_keysMartin Willi2008-10-284-46/+18
|
* fixed reauthentication time in statusallMartin Willi2008-10-281-1/+1
|
* refining changeset 4483 by introducing charon.dh_exponent_ansi_x9_42 keyAndreas Steffen2008-10-283-27/+62
|
* use more generic stats getter, introducing new statsMartin Willi2008-10-274-80/+62
|
* including a "none" tundev to make NM happyMartin Willi2008-10-271-44/+28
|
* fixed some compiler warningsMartin Willi2008-10-276-9/+11
|
* remove unused local DH_EXPONENT_ENTROPY definitionAndreas Steffen2008-10-271-2/+0
|
* use 512 bits of entropy for secret DH exponentsAndreas Steffen2008-10-264-2/+10
|
* additional getters for ipcomp and UDP encapMartin Willi2008-10-243-7/+37
|
* more CHILD_SA refactoringsMartin Willi2008-10-244-131/+135
|
* initiate connections simultaneously in load testerMartin Willi2008-10-221-2/+9
|
* a load testing plugin, to:Martin Willi2008-10-2110-0/+836
| | | | | find multi-threading issues do performance profiling
* fixed enumeration of CHILD_SA traffic selectorsMartin Willi2008-10-211-24/+25
|
* reset threads IKE_SA after checking other IKE_SAsMartin Willi2008-10-204-9/+26
| | | | invoke updown script only if we have valid IKE_SA
* re-established all previous AUD level messagesAndreas Steffen2008-10-173-6/+7
|
* fixed perl oid generationMartin Willi2008-10-161-2/+2
|
* moved updown script invocation to an optional pluginMartin Willi2008-10-1611-243/+351
|
* bus uses finally recusive lockingMartin Willi2008-10-161-47/+58
| | | | other small fixes
* condvar->wait() can handle recursive mutexMartin Willi2008-10-161-20/+76
|
* added a guest.mconsole() method to script mconsole (e.g. add additional conX=)Martin Willi2008-10-155-14/+33
|
* cache keys for in and outbound ESP SAsMartin Willi2008-10-154-202/+241
| | | | | removed redundant storing of traffic selectors in CHILD_SA (sa_policy_t) creating TS pairs dynamically using create_policy_enumerator()
* store ESP keys in CHILD_SAMartin Willi2008-10-154-57/+78
|
* passing chunks, not prf+, to kernel interfaceMartin Willi2008-10-147-210/+263
| | | | gives us better control of keymat in CHILD_SA
* typosTobias Brunner2008-10-141-6/+6
|
* reintegrated bus-refactoring branchMartin Willi2008-10-1430-911/+939
|
* merging kernel_pfkey plugin back from kernel-interface branchTobias Brunner2008-10-1422-274/+2176
|
* version bump to 4.2.9Andreas Steffen2008-10-142-1/+3
|
* set guest-specific kernel parametersMartin Willi2008-10-106-47/+41
| | | | removed memory setting, use mem= instead
* reintegrated two-sim branch providing SIM card plugin APIMartin Willi2008-10-1019-423/+1154
|
* use busybox compatible killMartin Willi2008-10-101-4/+4
|
* fixed MOBIKE roaming if clients address changesMartin Willi2008-10-092-5/+20
|
* faster implementation of addr_in_subnet()Andreas Steffen2008-10-091-13/+14
|
* added proposal parsing of uncommon DH groups 3072/6144Martin Willi2008-10-081-0/+8
|
* ignore routing events for our own routesMartin Willi2008-10-081-0/+6
|
* mobike: try to keep existing source address before switching to anotherMartin Willi2008-10-087-29/+43
|
* implemented ipsec listalgs as a stroke commandAndreas Steffen2008-10-087-21/+81
|
* correct fix that replaces Changeset 4378Andreas Steffen2008-10-081-4/+6
|
* removing fix applied by Changeset 4378Andreas Steffen2008-10-081-4/+2
|
* get_subject() of a CERT_TRUSTED_PUBKEY object returns ID_PUBKEY_INFO_SHA1 ↵Andreas Steffen2008-10-081-1/+1
| | | | hash consistent with the IKEv2 keyid philosophy
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 19:11:56 +0000