Tobias Brunner
|
eba64cef41
|
Separated the public interfaces of the threading primitives.
|
2009-12-23 17:01:53 +01:00 |
Tobias Brunner
|
14f7091280
|
Moved mutex.c to a separate folder in order to cleanly wrap other threading primitives (and utils/mutex.h is now threading.h).
|
2009-12-23 17:00:58 +01:00 |
Martin Willi
|
6ec949e022
|
Fixed BEET mode by installing SAs with negotiated address in traffic selector
|
2009-12-17 10:52:07 +01:00 |
Martin Willi
|
323f9f990f
|
replaces four spaces by tabs, where appropriate
|
2009-09-04 14:50:23 +02:00 |
Martin Willi
|
7daf5226b7
|
removed trailing spaces ([[:space:]]+$)
|
2009-09-04 13:46:09 +02:00 |
Tobias Brunner
|
e75f423753
|
Refactored the lifetime_cfg_t struct to be simpler and more expressive. Initialization is now static.
|
2009-09-01 12:54:33 +02:00 |
Tobias Brunner
|
1087b9cebb
|
Set the packet and byte limits in the netlink and pfkey kernel interfaces.
|
2009-09-01 12:53:44 +02:00 |
Tobias Brunner
|
888af96343
|
Adapted the kernel interfaces to the new lifetime configuration.
|
2009-09-01 12:53:13 +02:00 |
Martin Willi
|
6180a55852
|
use time_monotonic() instead of time() for statistics and time difference calculations
|
2009-08-31 18:00:28 +02:00 |
Tobias Brunner
|
3901937d14
|
OpenSolaris defines MUTEX_DEFAULT therefore we rename the members of the enums mutex/condvar/rwlock_type_t.
|
2009-08-14 13:30:59 +02:00 |
Tobias Brunner
|
79ff614144
|
Use LONG_MAX instead of a hard-coded value.
|
2009-08-06 18:22:01 +02:00 |
Tobias Brunner
|
bfca7aa5ed
|
FreeBSD returns the current policy use time only after specifying a hard lifetime when installing the policy.
|
2009-08-06 18:14:44 +02:00 |
Tobias Brunner
|
1e7b4b0028
|
Reversed the check for udp.h, fixes compilation on Linux.
|
2009-08-06 10:01:59 +02:00 |
Tobias Brunner
|
524f9ac470
|
FreeBSD only reports a policy's usetime if a lifetime has been specified when the policy was added (we only specify a lifetime on the SA, not on the policy).
|
2009-08-04 11:08:58 +02:00 |
Tobias Brunner
|
56ee8fcc96
|
FreeBSD and Mac OS X both set the sequence number of an SADB_X_SPDGET response to zero, we accept that for now.
|
2009-08-04 11:08:58 +02:00 |
Andreas Steffen
|
f35f229fd6
|
implemented query_sa() for PFKEYv2
|
2009-08-02 11:46:33 +02:00 |
Andreas Steffen
|
2ad51539f6
|
display transmitted bytes per SA
|
2009-07-30 21:33:19 +02:00 |
Tobias Brunner
|
eab05274f4
|
Handling of unsupported policy directions (FWD) fixed.
|
2009-07-30 14:06:26 +02:00 |
Tobias Brunner
|
e20bd8b6ea
|
Enabling NAT-T on Mac OS X using the private SADB_X_EXT_NATT flag and sadb_sa_2 struct.
|
2009-07-30 14:06:26 +02:00 |
Tobias Brunner
|
617e59b7bc
|
Portably check for IPSEC_* constants (defined in ipsec.h).
The problem is that FreeBSD defines them as #defines whereas Linux defines them as enums.
|
2009-05-20 20:15:06 +02:00 |
Tobias Brunner
|
7cdb1ddf08
|
Mac OS X doesn't have SADB_X_AALG_AES_XCBC_MAC
|
2009-05-14 17:38:36 +02:00 |
Tobias Brunner
|
9f090745cf
|
added another possible location for the ipsec.h header file
|
2009-05-14 17:38:32 +02:00 |
Tobias Brunner
|
8c5d72cd0b
|
removing svn keyword $Id$ from all files
|
2009-04-30 13:19:35 +00:00 |
Tobias Brunner
|
d24a74c5b4
|
merging changes from portability branch back to trunk
important change for developers: %Y replaces %D to print identities!
|
2009-04-30 11:37:54 +00:00 |
Tobias Brunner
|
f55a7a76dd
|
address extensions refactored
|
2008-12-11 13:39:30 +00:00 |
Andreas Steffen
|
9b6f9d14ab
|
fixed double free of host in sadb_address2ts
|
2008-12-04 01:08:19 +00:00 |
Martin Willi
|
addfea95df
|
moved the IPV6_IPSEC_POLICY definition to the ipsec plugins, fixes uClibc build
|
2008-11-24 08:22:05 +00:00 |
Andreas Steffen
|
7a915d627d
|
completed migration of MIPv6 connections
|
2008-11-16 21:19:58 +00:00 |
Martin Willi
|
8d50c19833
|
also use correct encap parameter in PF_KEY
|
2008-11-14 13:15:26 +00:00 |
Martin Willi
|
3d2dbebd70
|
#defing out compress algs to avoid compiler warning
|
2008-11-11 18:35:10 +00:00 |
Tobias Brunner
|
e7c27b4f3f
|
fixing a memory leak
|
2008-11-11 09:56:47 +00:00 |
Tobias Brunner
|
ea625fabf9
|
merging kernel_klips plugin back into trunk
|
2008-11-11 09:22:00 +00:00 |
Andreas Steffen
|
f11a54bc89
|
SADB_X_EXT_KMADDRESS is not present in old kernels
|
2008-11-07 03:38:56 +00:00 |
Andreas Steffen
|
2c81539395
|
added retrieval of remote kmaddress via PF_KEY
|
2008-11-07 03:23:59 +00:00 |
Martin Willi
|
3ac5a0db8c
|
replaced most pthread_mutex/cond_t by wrapped mutex/condvar_t variant
|
2008-11-05 11:29:56 +00:00 |
Andreas Steffen
|
c636285878
|
updated copyright of kernel interface code
|
2008-11-03 23:34:23 +00:00 |
Andreas Steffen
|
bab075b166
|
added support for xfrm remote kmaddress
|
2008-11-03 23:29:34 +00:00 |
Andreas Steffen
|
a54e3d51c1
|
removed unused variables
|
2008-11-03 03:56:03 +00:00 |
Andreas Steffen
|
ef6d339c09
|
migrate_job() finds a matching child_cfg
|
2008-11-03 02:05:41 +00:00 |
Andreas Steffen
|
5145ae48be
|
fully implemented the parsing of XFRM and PF_KEY MIGRATE messages
|
2008-11-02 21:34:52 +00:00 |
Andreas Steffen
|
e526d22818
|
parse xfrm and pf_key acquire messages and subscribe to migrate messages
|
2008-10-31 01:43:23 +00:00 |
Martin Willi
|
e517b4b174
|
passing chunks, not prf+, to kernel interface
gives us better control of keymat in CHILD_SA
|
2008-10-14 15:17:44 +00:00 |
Tobias Brunner
|
1adaa02bb2
|
merging kernel_pfkey plugin back from kernel-interface branch
|
2008-10-14 08:46:31 +00:00 |