Commit message (Collapse) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
* | generate debug output if ocsp response does not contain status information ↵ | Andreas Steffen | 2008-04-02 | 1 | -1/+1 | |
| | | | | for a given certificate | |||||
* | demoted received notify debug message to level 2 | Andreas Steffen | 2008-04-01 | 1 | -1/+1 | |
| | ||||||
* | stopping connectivity checks on the responders side after receiving an ↵ | Tobias Brunner | 2008-04-01 | 5 | -8/+132 | |
| | | | | IKE_SA_INIT request with the proper ME_CONNECTID | |||||
* | timing of connectivity checks adjusted | Tobias Brunner | 2008-03-31 | 1 | -28/+39 | |
| | ||||||
* | signal fixed | Tobias Brunner | 2008-03-31 | 1 | -2/+2 | |
| | ||||||
* | changed error message | Andreas Steffen | 2008-03-29 | 1 | -1/+1 | |
| | ||||||
* | replaced get_public() by create_public_enumerator() to try multiple public ↵ | Martin Willi | 2008-03-27 | 1 | -9/+12 | |
| | | | | keys for signature verification | |||||
* | checking the size of ME_* notify payloads | Tobias Brunner | 2008-03-27 | 1 | -8/+1 | |
| | ||||||
* | replaced the COOKIE notify payload in connectivity checks with a ↵ | Tobias Brunner | 2008-03-27 | 1 | -14/+14 | |
| | | | | ME_CONNECTAUTH notify payload | |||||
* | mediation extension adapted to the naming convention of the current version ↵ | Tobias Brunner | 2008-03-26 | 11 | -286/+286 | |
| | | | | of the draft. note: the external interface (config, autotools) has not yet been changed | |||||
* | added equals() method to peer_cfg, ike_cfg, proposals, auth_info | Martin Willi | 2008-03-26 | 4 | -59/+52 | |
| | | | | | | allows easier merging of ipsec.conf connections replaced some iterators through enumerators made proposals algorithm_t private using enumerator | |||||
* | added support for certificate requests for not yet known CAs | Martin Willi | 2008-03-20 | 1 | -5/+6 | |
| | ||||||
* | attempt to achieve consistent debugging output | Andreas Steffen | 2008-03-19 | 4 | -31/+31 | |
| | ||||||
* | correctly unregister IKE_SA at the bus | Martin Willi | 2008-03-15 | 1 | -1/+1 | |
| | ||||||
* | two small fixes | Tobias Brunner | 2008-03-13 | 2 | -3/+3 | |
| | ||||||
* | merged the modularization branch (credentials) back to trunk | Martin Willi | 2008-03-13 | 70 | -5428/+1654 | |
| | ||||||
* | improved P2P_NAT debugging | Andreas Steffen | 2008-02-27 | 2 | -4/+7 | |
| | ||||||
* | refactored connect_manager_t to use the find functions on linked lists | Tobias Brunner | 2008-02-14 | 1 | -157/+65 | |
| | ||||||
* | split connections with different virtual IPs in different peer_cfgs | Martin Willi | 2008-02-05 | 2 | -19/+25 | |
| | | | | respect different peer_cfg's when initiating a CHILD_SA within an existing IKE_SA | |||||
* | implemented IKEV2 EAP-SIM server and client test module that use triplets ↵ | Andreas Steffen | 2008-02-04 | 3 | -140/+719 | |
| | | | | stored in a file. For details see the scenario 'ikev2/rw-eap-sim-rsa' | |||||
* | use identifiers in EAP_SUCCESS/EAP_FAILURE payloads | Martin Willi | 2008-02-04 | 1 | -7/+8 | |
| | ||||||
* | NAT-T conditions were not inherited during IKE_SA rekeying | Andreas Steffen | 2008-01-29 | 1 | -1/+8 | |
| | ||||||
* | added missing hasher include | Martin Willi | 2008-01-03 | 1 | -0/+1 | |
| | ||||||
* | fixed EAP-MD5 to accept Name attribute in challenge | Martin Willi | 2007-12-18 | 1 | -1/+2 | |
| | ||||||
* | implemented Expanded EAP types to support vendor specific methods | Martin Willi | 2007-12-13 | 8 | -54/+142 | |
| | ||||||
* | fixed actual ID length when AT_IDENTITY gets padded | Martin Willi | 2007-12-13 | 1 | -1/+2 | |
| | ||||||
* | ported EAP-AKA branch into trunk | Martin Willi | 2007-12-13 | 2 | -0/+1578 | |
| | ||||||
* | merged EAP-MD5 into trunk | Martin Willi | 2007-12-12 | 2 | -0/+339 | |
| | ||||||
* | removed c++ style comments4.1.9 | Martin Willi | 2007-12-04 | 5 | -97/+86 | |
| | | | | | fixed compiler warnings | |||||
* | fixed mobike/auth_lifetime in conjunction with p2p-natt | Martin Willi | 2007-12-04 | 2 | -6/+6 | |
| | ||||||
* | removed redundant server reflexive endpoint debug message | Andreas Steffen | 2007-12-04 | 1 | -1/+0 | |
| | ||||||
* | improved P2P_ENDPOINT debugging | Andreas Steffen | 2007-12-03 | 3 | -2/+6 | |
| | ||||||
* | moved AUTH_LIFETIME handling in its own task (cleaner separation, proper ↵ | Martin Willi | 2007-12-03 | 7 | -34/+293 | |
| | | | | payload order) | |||||
* | improving [3361]: moved one of the added return values | Tobias Brunner | 2007-11-22 | 1 | -1/+2 | |
| | ||||||
* | added two return statements comitted by Marius Tomaschewski | Andreas Steffen | 2007-11-21 | 1 | -1/+2 | |
| | ||||||
* | implemented RFC4478 (repeated authentication) | Martin Willi | 2007-11-20 | 4 | -47/+204 | |
| | | | | | changed %V printf handler to take a time delta, %#V now takes two arguments | |||||
* | fixed NO_PROPOSAL_CHOSEN response on IKE_SA_INIT | Martin Willi | 2007-11-14 | 1 | -0/+2 | |
| | ||||||
* | fixed _updown target for ipv6 | Andreas Steffen | 2007-11-06 | 1 | -1/+1 | |
| | ||||||
* | adding new virtual ip before deleting old one to keep IP on reauthentication | Martin Willi | 2007-10-25 | 1 | -7/+7 | |
| | ||||||
* | experimental P2P-NAT-T for IKEv2 merged back from branch | Tobias Brunner | 2007-10-03 | 12 | -12/+3458 | |
| | ||||||
* | ID payload with explicit payload type | Tobias Brunner | 2007-10-02 | 1 | -2/+2 | |
| | ||||||
* | moved force_encap to ike_config, enables responder to enforce udp encapsulation | Martin Willi | 2007-10-01 | 2 | -9/+10 | |
| | | | | fixed bugs in force_encap code | |||||
* | removed accidentally checked in debugging code | Martin Willi | 2007-10-01 | 1 | -4/+0 | |
| | ||||||
* | implemented IKEv2 force_encap connection parameter | Martin Willi | 2007-10-01 | 4 | -6/+55 | |
| | | | | | enforces UDP encapsulation by faking NAT detection payloads to hurdle restrictive firewalls | |||||
* | implemented more aggressive MOBIKE path probing | Martin Willi | 2007-09-28 | 4 | -24/+100 | |
| | | | | | do not queue more than one MOBIKE task | |||||
* | typos | Tobias Brunner | 2007-09-27 | 2 | -3/+3 | |
| | ||||||
* | improved MOBIKE roaming between interfaces | Martin Willi | 2007-09-24 | 4 | -15/+25 | |
| | ||||||
* | connection name to IKE_SA initiating | Andreas Steffen | 2007-09-15 | 2 | -2/+3 | |
| | ||||||
* | put IKE_SA and CHILD_SA names in single quotes | Andreas Steffen | 2007-09-15 | 3 | -6/+6 | |
| | ||||||
* | log name of IKE_SA in state changes | Andreas Steffen | 2007-09-15 | 1 | -1/+2 | |
| |