aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/sa
Commit message (Collapse)AuthorAgeFilesLines
* demoted more notify debug messages to level 24.2.0Andreas Steffen2008-04-022-3/+3
|
* fixing some memory leaksTobias Brunner2008-04-023-3/+28
|
* generate debug output if ocsp response does not contain status information ↵Andreas Steffen2008-04-021-1/+1
| | | | for a given certificate
* demoted received notify debug message to level 2Andreas Steffen2008-04-011-1/+1
|
* stopping connectivity checks on the responders side after receiving an ↵Tobias Brunner2008-04-015-8/+132
| | | | IKE_SA_INIT request with the proper ME_CONNECTID
* timing of connectivity checks adjustedTobias Brunner2008-03-311-28/+39
|
* signal fixedTobias Brunner2008-03-311-2/+2
|
* changed error messageAndreas Steffen2008-03-291-1/+1
|
* replaced get_public() by create_public_enumerator() to try multiple public ↵Martin Willi2008-03-271-9/+12
| | | | keys for signature verification
* checking the size of ME_* notify payloadsTobias Brunner2008-03-271-8/+1
|
* replaced the COOKIE notify payload in connectivity checks with a ↵Tobias Brunner2008-03-271-14/+14
| | | | ME_CONNECTAUTH notify payload
* mediation extension adapted to the naming convention of the current version ↵Tobias Brunner2008-03-2611-286/+286
| | | | of the draft. note: the external interface (config, autotools) has not yet been changed
* added equals() method to peer_cfg, ike_cfg, proposals, auth_infoMartin Willi2008-03-264-59/+52
| | | | | | allows easier merging of ipsec.conf connections replaced some iterators through enumerators made proposals algorithm_t private using enumerator
* added support for certificate requests for not yet known CAsMartin Willi2008-03-201-5/+6
|
* attempt to achieve consistent debugging outputAndreas Steffen2008-03-194-31/+31
|
* correctly unregister IKE_SA at the bus Martin Willi2008-03-151-1/+1
|
* two small fixesTobias Brunner2008-03-132-3/+3
|
* merged the modularization branch (credentials) back to trunkMartin Willi2008-03-1370-5428/+1654
|
* improved P2P_NAT debuggingAndreas Steffen2008-02-272-4/+7
|
* refactored connect_manager_t to use the find functions on linked listsTobias Brunner2008-02-141-157/+65
|
* split connections with different virtual IPs in different peer_cfgsMartin Willi2008-02-052-19/+25
| | | | respect different peer_cfg's when initiating a CHILD_SA within an existing IKE_SA
* implemented IKEV2 EAP-SIM server and client test module that use triplets ↵Andreas Steffen2008-02-043-140/+719
| | | | stored in a file. For details see the scenario 'ikev2/rw-eap-sim-rsa'
* use identifiers in EAP_SUCCESS/EAP_FAILURE payloadsMartin Willi2008-02-041-7/+8
|
* NAT-T conditions were not inherited during IKE_SA rekeyingAndreas Steffen2008-01-291-1/+8
|
* added missing hasher includeMartin Willi2008-01-031-0/+1
|
* fixed EAP-MD5 to accept Name attribute in challengeMartin Willi2007-12-181-1/+2
|
* implemented Expanded EAP types to support vendor specific methodsMartin Willi2007-12-138-54/+142
|
* fixed actual ID length when AT_IDENTITY gets paddedMartin Willi2007-12-131-1/+2
|
* ported EAP-AKA branch into trunkMartin Willi2007-12-132-0/+1578
|
* merged EAP-MD5 into trunkMartin Willi2007-12-122-0/+339
|
* removed c++ style comments4.1.9Martin Willi2007-12-045-97/+86
| | | | | fixed compiler warnings
* fixed mobike/auth_lifetime in conjunction with p2p-nattMartin Willi2007-12-042-6/+6
|
* removed redundant server reflexive endpoint debug messageAndreas Steffen2007-12-041-1/+0
|
* improved P2P_ENDPOINT debuggingAndreas Steffen2007-12-033-2/+6
|
* moved AUTH_LIFETIME handling in its own task (cleaner separation, proper ↵Martin Willi2007-12-037-34/+293
| | | | payload order)
* improving [3361]: moved one of the added return valuesTobias Brunner2007-11-221-1/+2
|
* added two return statements comitted by Marius TomaschewskiAndreas Steffen2007-11-211-1/+2
|
* implemented RFC4478 (repeated authentication)Martin Willi2007-11-204-47/+204
| | | | | changed %V printf handler to take a time delta, %#V now takes two arguments
* fixed NO_PROPOSAL_CHOSEN response on IKE_SA_INITMartin Willi2007-11-141-0/+2
|
* fixed _updown target for ipv6Andreas Steffen2007-11-061-1/+1
|
* adding new virtual ip before deleting old one to keep IP on reauthenticationMartin Willi2007-10-251-7/+7
|
* experimental P2P-NAT-T for IKEv2 merged back from branchTobias Brunner2007-10-0312-12/+3458
|
* ID payload with explicit payload typeTobias Brunner2007-10-021-2/+2
|
* moved force_encap to ike_config, enables responder to enforce udp encapsulationMartin Willi2007-10-012-9/+10
| | | | fixed bugs in force_encap code
* removed accidentally checked in debugging codeMartin Willi2007-10-011-4/+0
|
* implemented IKEv2 force_encap connection parameterMartin Willi2007-10-014-6/+55
| | | | | enforces UDP encapsulation by faking NAT detection payloads to hurdle restrictive firewalls
* implemented more aggressive MOBIKE path probingMartin Willi2007-09-284-24/+100
| | | | | do not queue more than one MOBIKE task
* typosTobias Brunner2007-09-272-3/+3
|
* improved MOBIKE roaming between interfacesMartin Willi2007-09-244-15/+25
|
* connection name to IKE_SA initiatingAndreas Steffen2007-09-152-2/+3
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 01:04:14 +0000