aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
| * | Support multiple address pools configured on a peer_cfgMartin Willi2012-08-3025-55/+151
| | |
| * | Support multiple virtual IPs on peer_cfg and ike_sa classesMartin Willi2012-08-3034-264/+447
| | |
| * | Add a getter for the mem_pool_t base addressMartin Willi2012-08-242-0/+14
| | |
| * | Remove unused ipsec.conf left/rightnatip keywordMartin Willi2012-08-216-34/+0
| | |
| * | Add description about DNS server variables to _updownMartin Willi2012-08-211-0/+6
| | |
| * | Add a DNS attribute handler to updown, passing servers to updown scriptMartin Willi2012-08-216-4/+377
| | |
| * | Add a description of the leftdns option to ipsec.conf.5Martin Willi2012-08-211-0/+10
| | |
| * | Add a stroke attribute_handler requesting DNS servers given with leftdnsMartin Willi2012-08-214-0/+307
| | |
| * | Serve ipsec.conf rightdns servers through stroke attribute providerMartin Willi2012-08-211-10/+143
| | |
| * | Add a left/rightdns keyword to configure connection specific DNS attributesMartin Willi2012-08-217-0/+11
| | |
* | | Merge branch 'eap-client-select'Tobias Brunner2012-08-3120-83/+983
|\ \ \ | | | | | | | | | | | | | | | | | | | | This brings support for EAP-Nak payloads on the client (to select a specific or supported method), and the server (via the eap-dynamic plugin which selects a method supported/requested by the client).
| * | | NEWS about eap-dynamic plugin addedTobias Brunner2012-08-311-0/+9
| | | |
| * | | Documentation for eap-dynamic addedTobias Brunner2012-08-312-0/+11
| | | |
| * | | Log the proper type for virtual EAP methodsTobias Brunner2012-08-311-1/+5
| | | |
| * | | Added an option to prefer types sent by peer in eap-dynamic pluginTobias Brunner2012-08-311-14/+42
| | | |
| * | | eap-dynamic plugin handles EAP-Nak messages and selects a method supported ↵Tobias Brunner2012-08-311-1/+72
| | | | | | | | | | | | | | | | by the peer
| * | | Preferred EAP methods for eap-dynamic can be configuredTobias Brunner2012-08-311-1/+59
| | | |
| * | | The eap-dynamic plugin uses the first supported method as defaultTobias Brunner2012-08-311-1/+91
| | | |
| * | | Added eap-dynamic plugin which can proxy any other EAP methodTobias Brunner2012-08-319-1/+332
| | | |
| * | | Use eap_vendor_type_from_string() in strokeTobias Brunner2012-08-311-38/+7
| | | |
| * | | Function added that parses EAP method strings ([eap-]type[-vendor])Tobias Brunner2012-08-312-0/+86
| | | |
| * | | Added method to enumerate EAP types contained in an EAP-NakTobias Brunner2012-08-312-11/+79
| | | |
| * | | Encode EAP-Naks in expanded format if we got an expanded type requestTobias Brunner2012-08-315-6/+19
| | | | | | | | | | | | | | | | | | | | Since methods defined by the IETF (vendor ID 0) could also be encoded in expanded type format the previous check was insufficient.
| * | | Allow clients to request a configured EAP method via EAP-NakTobias Brunner2012-08-315-8/+37
| | | |
| * | | Virtual EAP methods handle EAP-Naks themselvesTobias Brunner2012-08-311-5/+17
| | | |
| * | | Send EAP-Nak with supported types if requested type is unsupportedTobias Brunner2012-08-315-12/+81
| | | |
| * | | Filter invalid EAP authentication types when enumerating themTobias Brunner2012-08-312-1/+10
| | | | | | | | | | | | | | | | Valid authentication types defined by the IETF are 4-253 and 255.
| * | | Move our pseudo EAP types out of the range of valid EAP methodsTobias Brunner2012-08-312-14/+14
| | | |
| * | | Added a method to enumerate registered EAP methodsTobias Brunner2012-08-212-0/+43
| |/ /
* | | version bump to 5.0.1dr4Andreas Steffen2012-08-311-1/+1
| | |
* | | Ported tun_device de-/initialization to FreeBSDTobias Brunner2012-08-291-5/+47
| | |
* | | struct iphdr is Linux specific use struct ip insteadTobias Brunner2012-08-291-6/+6
| | |
* | | Include stdint.h for UINT32_MAX on FreeBSDTobias Brunner2012-08-291-0/+1
| | |
* | | Ported tun_device initialization to OS X utunMartin Willi2012-08-281-19/+85
| |/ |/|
* | Ewa did the new Polish translationAndreas Steffen2012-08-241-0/+95
| |
* | Log configured IKE_SA proposals as initiatorTobias Brunner2012-08-241-0/+2
| |
* | Log configured CHILD_SA proposals as initiatorTobias Brunner2012-08-241-0/+2
| |
* | Fall back to local address as IKEv1 identity if nothing else is configuredTobias Brunner2012-08-241-2/+14
| |
* | Removed deprecated options from ipsec.conf templateTobias Brunner2012-08-241-9/+1
| |
* | Apply send delay before adding non-ESP markerTobias Brunner2012-08-241-16/+16
| | | | | | | | | | Otherwise the packet header could not be parsed correctly when NAT-T is used.
* | use pen_type_t for PA Message SubtypeAndreas Steffen2012-08-233-32/+29
|/
* Remove unused src/dst variables in send_no_marker()Martin Willi2012-08-211-5/+0
|
* use pen_type_t for attribute request entriesAndreas Steffen2012-08-211-25/+4
|
* define pen_type_t as a vendor-specific typeAndreas Steffen2012-08-2035-624/+301
|
* Don't use POSIX semaphores if a MONOTONIC clock is availableMartin Willi2012-08-201-0/+8
| | | | | | POSIX semaphores use CLOCK_REALTIME, but our semaphore_t abstraction expects CLOCK_MONOTONIC based times. Use the mutex/condvar based fallback if time_monotonic() actuall returns monotonic times.
* Remove the unused second IKE_SA entry match function argumentMartin Willi2012-08-201-4/+4
| | | | LLVMs clang complains about this parameter, so remove it.
* Add a mutex/condvar based semaphore implementation if sem_timedwait is ↵Martin Willi2012-08-202-2/+69
| | | | | | unavailable Fixes #214.
* added IBM and OpenPTS Private Enterprise NumbersAndreas Steffen2012-08-202-2/+8
|
* Add keymat_t constructor registration functionAdrian-Ken Rueegsegger2012-08-202-3/+45
| | | | | | Using the register_constructor function enables custom keymat_t implementations per IKE version. If no constructor is registered the default behavior is preserved.
* fixed captionAndreas Steffen2012-08-201-1/+1
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-10 21:23:20 +0000