aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
...
* Added encapsulation mode transform attribute to IPComp proposal.Tobias Brunner2012-05-253-5/+10
|
* Add an additional proposal without IPComp to SA payload.Tobias Brunner2012-05-241-17/+15
|
* Added log message if peer does not accept/provide IPComp proposal.Tobias Brunner2012-05-241-2/+12
|
* Added support to negotiate IPComp during Quick Mode.Tobias Brunner2012-05-241-11/+91
|
* Added support for IKEv1 IPComp proposals in SA payload.Tobias Brunner2012-05-245-14/+98
|
* Added support for IKEv1 IPComp proposals in proposal substructure.Tobias Brunner2012-05-244-10/+129
|
* Fix memleak during Quick Mode in case no SPI can be allocated from kernel.Tobias Brunner2012-05-241-8/+8
|
* Properly filter IKEv1 proposals consisting of multiple proposal payloads.Tobias Brunner2012-05-241-9/+15
| | | | | | | Since a proposal_t object is created for each transform contained in the proposal payload, it does not work to simply remove the last proposal_t object added to the list (there may be several other extracted from the previous proposal payload).
* Fixed check for loaded plugins with feature types that are not compared exactly.Tobias Brunner2012-05-241-25/+13
| | | | | Previously e.g. RNGs with weaker strength would have overwritten stronger ones.
* get_match() method added to hashtable_t.Tobias Brunner2012-05-242-5/+34
|
* Use a hashtable to check for already loaded plugin features.Tobias Brunner2012-05-231-20/+37
|
* Hash function for plugin features added.Tobias Brunner2012-05-232-0/+68
|
* Apply IDir before deriving keys as aggressive initiatorMartin Willi2012-05-231-4/+4
|
* Use received identity to look up PSK as aggressive responderMartin Willi2012-05-231-2/+9
|
* Check if we actually have an initiating packet to free while processing ↵Martin Willi2012-05-231-1/+1
| | | | responses
* list IKEv1 Aggressive Mode in ipsec statusallAndreas Steffen2012-05-231-2/+9
|
* Switch to alternative peer config in IKEv1 Main and Aggressive Mode.Tobias Brunner2012-05-214-24/+85
|
* Cancel pending retransmits when flushing active task queueMartin Willi2012-05-211-0/+4
|
* Cancel active quick mode task when receiving INFORMATIONAL errorMartin Willi2012-05-211-0/+30
|
* Flush task queues explicitly, not implicitly if task returns ALREADY_DONEMartin Willi2012-05-216-12/+20
|
* Wrap task managers flush_queue() in IKE_SAMartin Willi2012-05-212-0/+14
|
* Make task managers flush_queue() method publicMartin Willi2012-05-213-20/+62
|
* Destroy Netlink socket only after deleting remaining source routes.Tobias Brunner2012-05-211-2/+1
|
* Enumerate correct list while removing nonce_gens, fix deregistrationMartin Willi2012-05-211-1/+1
|
* Added a convenience function to dump backtraces for gdb-less debuggingMartin Willi2012-05-212-0/+26
|
* Fix IKEv1 DPD clear, destroying IKE_SA even if reestablish not neededMartin Willi2012-05-211-9/+3
|
* Properly munmap/close file if loading IMC/IMV fails.Tobias Brunner2012-05-181-7/+7
|
* Remove executable flag from source files.Tobias Brunner2012-05-1832-0/+0
|
* Use separate Doxygen groups for IKEv1 and IKEv2 entities (authenticators, ↵Tobias Brunner2012-05-1846-51/+66
| | | | tasks etc.).
* Removed superfluous @param in bus.h.Tobias Brunner2012-05-181-1/+0
|
* whitelist: Make sure listed IDs are null-terminated.Tobias Brunner2012-05-181-0/+1
|
* pkcs8: Initialize salt and IV properly.Tobias Brunner2012-05-181-1/+1
|
* List registered nonce generators in statusall output.Tobias Brunner2012-05-181-2/+18
|
* Add enumerator for registered nonce generators.Tobias Brunner2012-05-182-9/+33
|
* Use nonce_gen instead of rng to generate noncesAdrian-Ken Rueegsegger2012-05-184-34/+34
| | | | | Replace usage of rng plugin with nonce generator to create nonces in IKE_INIT, CHILD_CREATE and QUICK_MODE tasks and the IKEv1 phase 1 helper.
* Add create_nonce_gen function to keymat interfaceAdrian-Ken Rueegsegger2012-05-183-0/+24
| | | | This function returns a nonce generator object.
* Add nonce plugin implementationAdrian-Ken Rueegsegger2012-05-186-0/+271
| | | | | | | This nonce generator uses an RNG to generate nonces. The RNG quality is currently set to RNG_WEAK which is the same value used in IKE init. The plugin is enabled and thus built by default.
* Add nonce generator interfaceAdrian-Ken Rueegsegger2012-05-186-0/+163
| | | | | | | Nonce generators (nonce_gen_t) can be used to get or allocate nonces. Users can request nonce generators from the crypto factory while nonce plugins register/remove themselves to/from the crypto factory.
* make IKEv1 DPD timeout configurable in charonAndreas Steffen2012-05-1719-25/+76
|
* Moved IKEv1 DPD processing to task manager, fix sequence issuesMartin Willi2012-05-153-73/+72
|
* Consider inbound ESP as a sign of liveness for DPD timeoutMartin Willi2012-05-151-2/+15
|
* Schedule a DPD timeout job that enforces the IKE message timeout policyMartin Willi2012-05-154-0/+177
|
* Send unanswered follow up R_U_THERE messages with the same DPD seqMartin Willi2012-05-151-1/+7
|
* Do not send IKEv1 DPD retransmit, but create a new INFORMATIONALMartin Willi2012-05-151-11/+0
|
* Free name of application using libcharon.Tobias Brunner2012-05-151-0/+1
|
* starter: Initialize thread pool so kernel events are consumed.Tobias Brunner2012-05-151-0/+9
|
* Explicitly cast from strict_t to crl_policy_tMartin Willi2012-05-141-1/+1
|
* Use correct integrity_algorithm_t enum type in bench_signer()Martin Willi2012-05-141-1/+1
|
* Make function pointer defined with METHOD() macro non-constMartin Willi2012-05-141-2/+2
| | | | | clang complains about it being const, and the object code generated from gcc is the same.
* Remove unused return value of INIT(), making clang happyMartin Willi2012-05-141-3/+2
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-13 20:44:40 +0000