strongswan

Commit Graph

Author	SHA1	Message	Date
Martin Willi	d7376e2ab4	Accept NULL identities passed to peer config enumeration	2012-03-20 17:31:17 +01:00
Martin Willi	d08269c700	Added a get_rekey/reauth_time() jitter parameter to get time without randomization	2012-03-20 17:30:52 +01:00
Tobias Brunner	f7a8fcedc0	Use enum to define IKE version on peer_cfg_t. Replaced all those magic numbers.	2012-03-20 17:30:41 +01:00
Martin Willi	dc299da8e5	Added additional debug info to peer config matching	2011-10-11 09:46:24 +02:00
Tobias Brunner	6b444c5934	Migrated peer_cfg_t to INIT/METHOD macros.	2011-08-03 15:17:34 +02:00
Tobias Brunner	f3bb1bd039	Fixed common misspellings. Mostly found by 'codespell'.	2011-07-20 16:14:10 +02:00
Tobias Brunner	47daa0e6fe	Replaced more complex iterator usages.	2011-07-06 09:43:45 +02:00
Martin Willi	390b38b8c9	Add NO_EXT_SEQ_NUMBER to proposal only if it has not been specified in string	2011-04-20 12:26:58 +02:00
Martin Willi	f8b26c452a	Added proposal keywords for ESN support	2011-04-20 12:26:58 +02:00
Martin Willi	4536e669a8	Filter out non-matching ike_cfg in backend manager, so backends don't have to	2011-02-03 10:12:16 +01:00
Martin Willi	1038d9fee5	Added a null-safe strdup variant	2011-01-05 16:46:02 +01:00
Martin Willi	37788b1d06	Added a TFC padding option to child_cfg	2010-12-20 09:45:39 +01:00
Andreas Steffen	5932f41fcc	trace back crypto algorithms to the plugins that registered them	2010-12-18 16:31:12 +01:00
Andreas Steffen	a072c34a63	check for malformed IKE and ESP proposals	2010-12-01 09:50:30 +01:00
Andreas Steffen	c616d84c3f	start and route connections defined in an SQL database via start_action field and ipsec up %startall command	2010-11-28 11:57:49 +01:00
Andreas Steffen	31f6f1513d	Migrated child_cfg_t to INIT/METHOD macros	2010-11-26 16:32:15 +01:00
Andreas Steffen	efc1c86e21	Migrated backend_manager_t to INIT/METHOD macros	2010-11-25 22:43:19 +01:00
Martin Willi	bb16217581	Store proposal number in proposal_t to reuse it in the selected proposal According to RFC 5996 3.3.1, we MUST reuse the proposal number of the selected proposal in the SA payload reply.	2010-10-28 15:08:14 +02:00
Martin Willi	d454c586ab	Migrated proposal_t to INIT/METHOD macros	2010-10-28 13:06:20 +00:00
Tobias Brunner	08c0d340b8	Moved ipsec_transform_t to kernel_ipsec.h in libhydra. Because of this libfreeswan, pluto, starter etc. now depend on that file (and libhydra). This resolved some duplicate declarations.	2010-09-02 19:01:25 +02:00
Tobias Brunner	6f449d2efd	Moved kernel interface to libhydra.	2010-09-02 19:01:25 +02:00
Martin Willi	08a5a708fc	Include CCM/GCM algorithms in IKEv2 proposals, if supported	2010-08-19 19:05:05 +02:00
Martin Willi	7fc4b0814f	Make function to test if an encryption algorithm is an AEAD alg public	2010-08-19 19:02:16 +02:00
Martin Willi	c7776e0aa8	Support Camellia XCBC algorithms in proposal	2010-08-13 17:11:54 +02:00
Martin Willi	3b77c27a5b	Added Camellia, AES-CTR to default IKE proposal, if supported	2010-08-13 17:11:53 +02:00
Martin Willi	2ccc02a4fd	Moved credential manager to libstrongswan	2010-07-13 10:26:07 +02:00
Martin Willi	cfa1c07604	Group membership constraint is fulfilled if subject is member in one of the groups	2010-07-09 13:51:58 +02:00
Andreas Steffen	26c4d0102a	configuration of different marks for inbound and outbound direction	2010-07-09 09:06:07 +02:00
Martin Willi	4172574bfb	Use the group constraint in a more generic fashion, not only for attribute certificates	2010-07-05 09:41:04 +02:00
Andreas Steffen	ee26c537d7	support of xfrm marks for IKEv2	2010-07-02 23:46:09 +02:00
Tobias Brunner	4e9d313ff8	Explicitly include stdint.h for UINT64_MAX. This is required on FreeBSD 8.	2010-06-15 15:31:46 +02:00
Reto Buerki	277fcf9f86	Add reqid field and getter function to child_cfg_t.	2010-05-04 14:38:34 +02:00
Martin Willi	4590260b2d	Added support for DH groups 22, 23 and 24, patch contributed by Joy Latten	2010-04-19 14:41:20 +02:00
Tobias Brunner	08c5572602	Moving charon to libcharon.	2010-03-19 13:34:52 +01:00

1 2 3

134 Commits