aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
...
* The signature of keystore_get was changed with Android 2.x.Tobias Brunner2010-06-221-2/+12
|
* Avoid a segmentation fault if opening the Android control socket failed.Tobias Brunner2010-06-221-1/+1
|
* Allow to enable the kernel-pfkey plugin via Android.mk.Tobias Brunner2010-06-221-0/+2
|
* Fixing the PF_KEY kernel interface on Android.Tobias Brunner2010-06-221-0/+2
| | | | In Android's in.h IPPROTO_COMP is not #defined but just an enum member.
* Fixing compilation of the OpenSSL plugin if ENGINE support is disabled.Tobias Brunner2010-06-222-2/+14
| | | | | That is, enable compilation if OpenSSL was configured with OPENSSL_NO_ENGINE.
* Fixing compilation of the OpenSSL plugin if Elliptic Curve support is disabled.Tobias Brunner2010-06-224-3/+25
| | | | | That is, enable compilation if OpenSSL was configured with OPENSSL_NO_EC.
* Ignore IKEv2 packets in pluto with any minor versionMartin Willi2010-06-221-1/+1
|
* Accept IKE packets with any minor version in RAW socketMartin Willi2010-06-221-6/+8
|
* Fixed plugin checks in Android.mk files.Tobias Brunner2010-06-222-4/+4
|
* Don't fail with an error if an attribute that is to be deleted does not existHeiko Hund2010-06-181-2/+0
|
* Fixed compiler warning.Tobias Brunner2010-06-151-1/+1
|
* Use vpn.dns* to store DNS servers (Android manages net.dns* using these).Tobias Brunner2010-06-151-2/+2
|
* Adding an interface that interacts with the Android Settings frontend.Tobias Brunner2010-06-154-0/+326
|
* Adding an Android specific credential set.Tobias Brunner2010-06-155-1/+369
|
* Adding an Android specific logger.Tobias Brunner2010-06-154-3/+163
|
* Adding support for the native Linux capabilities interface.Tobias Brunner2010-06-152-19/+66
| | | | | Note that this interface is deprecated and mainly added to support Android. Use libcap, if possible.
* Explicitly refer to LIBCAP in Makefiles.Tobias Brunner2010-06-152-2/+2
|
* Run as vpn user on Android.Tobias Brunner2010-06-151-0/+8
|
* Truncate the PID file so that even if we fail to unlink it, the daemon can ↵Tobias Brunner2010-06-151-11/+33
| | | | be restarted properly.
* Explicitly include stdint.h for UINT64_MAX.Tobias Brunner2010-06-151-0/+2
| | | | This is required on FreeBSD 8.
* Check for SADB_X_NAT_T_NEW_MAPPING in PF_KEY kernel interface.Tobias Brunner2010-06-151-4/+4
| | | | | FreeBSD 8 does not support SADB_X_NAT_T_NEW_MAPPING whereas Linux and the previous FreeBSD NAT-T patch both do.
* Set the ports of all hosts installed via the PF_KEY kernel interface to zero.Tobias Brunner2010-06-151-15/+37
|
* refer to correct PLUTO_XAUTH_ID variableAndreas Steffen2010-06-091-1/+1
|
* rename environment variable to PLUTO_XAUTH_IDAndreas Steffen2010-06-083-10/+11
|
* do not destroy xauth_id if phase2 equals phase1 connectionAndreas Steffen2010-06-081-7/+4
|
* make an optional XAUTH user ID available in the updown scriptAndreas Steffen2010-06-083-1/+19
|
* inherit XAUTH identities in Phase 2Heiko Hund2010-06-081-2/+22
|
* Adding a basic unit test for hashtable_t.Tobias Brunner2010-06-073-1/+114
|
* Adding a remove_at method to the hash table.Tobias Brunner2010-06-072-9/+36
| | | | This allows to remove key-value pairs while enumerating them.
* Migrated hashtable_t to INIT/METHOD macros.Tobias Brunner2010-06-071-59/+45
|
* Add extra information in debug output for IKE_SA check{out, in}Thomas Egerer2010-06-072-10/+27
| | | | | | | This output helps tracing checkout and checkin of IKE_SAs when there is more than one IKE_SAs with the same name. I also added the type of in-air-exchange to the debug output issued by the task_manager in case a task initiation is delayed, came in handy for me.
* traffic_selector_t is gone into libstrongswan, migrate printf hook ↵Martin Willi2010-06-072-10/+8
| | | | registration, too.
* Flush auth configs, create new keymat during SA resetMartin Willi2010-06-071-12/+16
|
* Recreate IKE_INIT/IKE_NATD/IKE_VENDOR tasks if we reset SA during IKE_AUTHMartin Willi2010-06-071-0/+11
|
* Reacquire keymat from new IKE_SA during task migrationMartin Willi2010-06-071-0/+1
|
* Flush certificate cache on CA deleteMartin Willi2010-06-071-1/+2
|
* Log non-empty task queues in statusallMartin Willi2010-06-071-0/+31
|
* Wrap task enumerator in ike_saMartin Willi2010-06-072-1/+16
|
* Migrated ike_sa_t to INIT/METHOD macrosMartin Willi2010-06-071-407/+239
|
* Added support for task enumeration in task_manager_tMartin Willi2010-06-072-0/+38
|
* Migrated task_manager_t to INIT/METHOD macrosMartin Willi2010-06-071-65/+45
|
* Accept ARP requests with an ethernet trailer, but trim itMartin Willi2010-06-031-2/+2
|
* Added a EAP-SIM/AKA backend reading triplets/quintuplets from a SQL databaseMartin Willi2010-06-0211-0/+682
|
* fixed configuration attribute type determinationAndreas Steffen2010-06-021-22/+15
|
* Disable close action for a redundant CHILD_SA resulting from a rekey collisionMartin Willi2010-06-021-0/+5
| | | | | | | | If a rekey collision is detected, the winning peer of the nonce compare will delete the redundant CHILD_SA. The other peer should not enforce the close action on this CHILD, as it would reestablish the redundat CHILD_SA. Thanks to Thomas Egerer from secunet for pointing this out and the initial patchset.
* Use wrapped getters for close/dpd actionMartin Willi2010-06-022-8/+10
|
* Wrap getters for dpd/close action into CHILD_SA, allows us to override themMartin Willi2010-06-022-0/+76
|
* ipsec pool --statusattr [--hexout] outputs attribute values in correct ↵Andreas Steffen2010-06-014-41/+117
| | | | format if known
* added unity_def_domain keyword tip ipsec poolAndreas Steffen2010-05-311-0/+1
|
* Added generated manpages to .gitignoreMartin Willi2010-05-313-0/+3
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 08:56:38 +0000