| Commit message (Collapse) | Author | Age | Files | Lines | ||
|---|---|---|---|---|---|---|
| ... | ||||||
| * | fixed NAT detection with mobike | Martin Willi | 2007-09-12 | 2 | -7/+7 | |
| | | ||||||
| * | implemented routeability checks for mobike (experimental) | Martin Willi | 2007-09-03 | 2 | -14/+110 | |
| | | ||||||
| * | added mobike=yes|no connection option | Martin Willi | 2007-08-29 | 1 | -11/+18 | |
| | | | | | | | | yes: include mobike support notifies as initiator no: only enable mobike as responder when initiator supports it default: yes | |||||
| * | not touching IKE_SA_INIT from ike_mobike_t anymore | Martin Willi | 2007-07-19 | 1 | -1/+1 | |
| | | ||||||
| * | fixed payload order (Nonce, KE) for IKE_SA_INIT | Martin Willi | 2007-07-16 | 1 | -3/+11 | |
| | | ||||||
| * | fixed responder initiated CHILD_SA rekeying when using virtual IPs | Martin Willi | 2007-07-04 | 1 | -11/+45 | |
| | | ||||||
| * | improved MOBIKE: | Martin Willi | 2007-07-03 | 2 | -36/+80 | |
| | | | | | | | | | prefer address family already used do not change address implicit when mobike supported handle multiple simultaneous roaming requests more properly proper enabling/disabling of UDP encapsulation | |||||
| * | DBG1 level for 'peer supports MOBIKE' debug message | Andreas Steffen | 2007-07-02 | 1 | -1/+1 | |
| | | ||||||
| * | further mobike improvements, regarding to NAT-T | Martin Willi | 2007-06-27 | 2 | -18/+49 | |
| | | ||||||
| * | simple roaming of the client works (not MOBIKE conform yet!) | Martin Willi | 2007-06-26 | 1 | -8/+9 | |
| | | ||||||
| * | further fixed for mobike roaming | Martin Willi | 2007-06-25 | 1 | -3/+48 | |
| | | ||||||
| * | further MOBIKE stuff: | Martin Willi | 2007-06-21 | 9 | -21/+412 | |
| | | | | | | | | | | kernel properly reports network reconfiguration and informs all IKE_SAs MOBIKE in IKE_AUTH: MOBIKE_SUPPORTED notify and address exchange reestablishment of IKE_SAs on network reconfiguration kinda works not stable yet! | |||||
| * | added extensions management to IKE_SA | Martin Willi | 2007-06-18 | 1 | -0/+3 | |
| | | | | | fixed NATD payload (port) when using route lookup | |||||
| * | source address lookup in kernel interface | Martin Willi | 2007-06-18 | 1 | -17/+33 | |
| | | | | | | | use it for NAT detection if no source address known from config support for %any...%any connections | |||||
| * | implemented address change notification (for MOBIKE) | Martin Willi | 2007-06-14 | 1 | -6/+5 | |
| | | | | | | implemented up to date address list cache to list interfaces | |||||
| * | added missing files to the last commit | Martin Willi | 2007-06-14 | 2 | -0/+232 | |
| | | ||||||
| * | proper reauthentication: | Martin Willi | 2007-06-14 | 2 | -2/+5 | |
| | | | | | | IKE_SA is closed completely before the new is initiated, resolves some issues when a dynamic IP is requested from a pool | |||||
| * | introduced callback_job: | Martin Willi | 2007-06-11 | 2 | -3/+3 | |
| | | | | | | | | | | | | | simple asynchronous method invocation use daemons thread pool for all threads proper cancellation and cleanups cancellation mechanism to dynamically unload multithreaded code unified event_queue and scheduler => scheduler unified job_queue and thread_pool => processor removed job_type_t, not really needed fixes here, there and everywhere | |||||
| * | removed misleading warning when rekeying | Martin Willi | 2007-05-23 | 1 | -1/+0 | |
| | | ||||||
| * | support for virtual IP definition on client side: | Martin Willi | 2007-05-22 | 2 | -4/+13 | |
| | | | | | | | | if leftsourceip is defined, it is requested. server may define rightsourceip=%config to accept any, or it may overwrite it using rightsourceip. if server does not return an IP, client enforces its configured leftsourceip. | |||||
| * | fixed memleak | Martin Willi | 2007-05-22 | 1 | -0/+1 | |
| | | ||||||
| * | support of CA-based ipsec policies | Andreas Steffen | 2007-05-18 | 1 | -9/+11 | |
| | | ||||||
| * | cosmetics | Andreas Steffen | 2007-05-15 | 1 | -5/+5 | |
| | | ||||||
| * | adapted authentication failure text to those in the authenticators | Andreas Steffen | 2007-05-15 | 1 | -3/+3 | |
| | | ||||||
| * | cosmetics | Andreas Steffen | 2007-05-15 | 1 | -9/+7 | |
| | | ||||||
| * | properly implemented interface_managers initiate, terminte_[ike|child] | Martin Willi | 2007-05-09 | 1 | -0/+22 | |
| | | | | | | proper thread release when stroke is CTRL+C'ed fixed some permission issues | |||||
| * | restructuring of configuration backends | Martin Willi | 2007-04-27 | 1 | -1/+1 | |
| | | | | | | | | | | added propotypes of new control interfaces (xml & dbus) introduced loadable: configuration backends control interfaces using pluggable modules as in EAP | |||||
| * | properly checking received IDr as initiator | Martin Willi | 2007-04-25 | 1 | -1/+8 | |
| | | ||||||
| * | added PDF support for CHILD_SAs | Martin Willi | 2007-04-19 | 4 | -106/+227 | |
| | | | | | support for INVALID_KE_PAYLOAD negotiation for rekeying | |||||
| * | cleaned up apidoc | Martin Willi | 2007-04-11 | 2 | -4/+3 | |
| | | | | | | | added some comments removed configuration.[ch], as it does not make sense like it is | |||||
| * | edited comment and debug output | Andreas Steffen | 2007-04-10 | 1 | -3/+3 | |
| | | ||||||
| * | requesting the same virtual IP on reauthentication | Martin Willi | 2007-04-10 | 1 | -2/+14 | |
| | | ||||||
| * | restructured file layout | Martin Willi | 2007-04-10 | 10 | -144/+135 | |
| | | | | | | | | | | new configuration structure: peer_cfg: configuration related to a peer (authenitcation, ...= ike_cfg: config to use for IKE setup (proposals) child_Cfg: config for CHILD_SA (proposals, traffic selectors) a peer_cfg has one ike_cfg and multiple child_cfg's stroke now uses fixed count of threads | |||||
| * | added IKE_SA_INIT retransmission detection | Martin Willi | 2007-03-29 | 1 | -8/+4 | |
| | | | | | fixed thread exhaustion when IKE_SA is blocked for a longer time | |||||
| * | added retry limit for IKE_SA_INIT (give up after 5 cookie failures) | Martin Willi | 2007-03-29 | 1 | -0/+15 | |
| | | ||||||
| * | fixed state and logging of IKE_SA when using EAP authentication | Martin Willi | 2007-03-27 | 1 | -5/+16 | |
| | | ||||||
| * | fixed deferred CHILD_SA rekeying while IKE_SA rekeying in progress | Martin Willi | 2007-03-27 | 1 | -2/+2 | |
| | | ||||||
| * | added CHILD_SA compare check for rekeying collisions | Martin Willi | 2007-03-22 | 5 | -8/+47 | |
| | | ||||||
| * | fixed some rekey collision issues | Martin Willi | 2007-03-21 | 2 | -4/+20 | |
| | | | | | added retry with jitter when rekeying fails | |||||
| * | fixed child rekey collision | Martin Willi | 2007-03-21 | 7 | -64/+147 | |
| | | | | | | implemented ike rekey collision | |||||
| * | handling of CHILD_SA rekeying collisions | Martin Willi | 2007-03-21 | 5 | -45/+124 | |
| | | ||||||
| * | fixed inproper delete of CHILD_SA | Martin Willi | 2007-03-21 | 1 | -4/+7 | |
| | | ||||||
| * | fixed some exchange collisions (except IKE/CHILD rekeying) | Martin Willi | 2007-03-20 | 5 | -64/+84 | |
| | | ||||||
| * | fixed nat detection bug | Martin Willi | 2007-03-20 | 1 | -2/+2 | |
| | | ||||||
| * | adjusted loglevels | Martin Willi | 2007-03-20 | 1 | -13/+6 | |
| | | ||||||
| * | fixed CHILD_SA rekeying/delete bug on 64bit machines | Martin Willi | 2007-03-19 | 1 | -3/+3 | |
| | | | | | removed obsolete methods in delete_payload | |||||
| * | removed cfg-payload dns test code | Martin Willi | 2007-03-14 | 1 | -2/+2 | |
| | | ||||||
| * | not detaching from bus when IKE_SA_INIT is retried | Martin Willi | 2007-03-13 | 2 | -7/+10 | |
| | | ||||||
| * | fixed memleaks when using EAP authentication | Martin Willi | 2007-03-08 | 2 | -43/+64 | |
| | | | | | | fixed configuration payloads when using EAP | |||||
| * | including peers certificate when his certreq is empty | Martin Willi | 2007-03-08 | 1 | -2/+11 | |
| | | ||||||
 |
index : tteras/strongswan | |
| tteras' strongSwan tree | gitolite |
| aboutsummaryrefslogtreecommitdiffstats |