aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/sa
Commit message (Collapse)AuthorAgeFilesLines
...
* improved P2P_NAT debuggingAndreas Steffen2008-02-272-4/+7
|
* refactored connect_manager_t to use the find functions on linked listsTobias Brunner2008-02-141-157/+65
|
* split connections with different virtual IPs in different peer_cfgsMartin Willi2008-02-052-19/+25
| | | | respect different peer_cfg's when initiating a CHILD_SA within an existing IKE_SA
* implemented IKEV2 EAP-SIM server and client test module that use triplets ↵Andreas Steffen2008-02-043-140/+719
| | | | stored in a file. For details see the scenario 'ikev2/rw-eap-sim-rsa'
* use identifiers in EAP_SUCCESS/EAP_FAILURE payloadsMartin Willi2008-02-041-7/+8
|
* NAT-T conditions were not inherited during IKE_SA rekeyingAndreas Steffen2008-01-291-1/+8
|
* added missing hasher includeMartin Willi2008-01-031-0/+1
|
* fixed EAP-MD5 to accept Name attribute in challengeMartin Willi2007-12-181-1/+2
|
* implemented Expanded EAP types to support vendor specific methodsMartin Willi2007-12-138-54/+142
|
* fixed actual ID length when AT_IDENTITY gets paddedMartin Willi2007-12-131-1/+2
|
* ported EAP-AKA branch into trunkMartin Willi2007-12-132-0/+1578
|
* merged EAP-MD5 into trunkMartin Willi2007-12-122-0/+339
|
* removed c++ style comments4.1.9Martin Willi2007-12-045-97/+86
| | | | | fixed compiler warnings
* fixed mobike/auth_lifetime in conjunction with p2p-nattMartin Willi2007-12-042-6/+6
|
* removed redundant server reflexive endpoint debug messageAndreas Steffen2007-12-041-1/+0
|
* improved P2P_ENDPOINT debuggingAndreas Steffen2007-12-033-2/+6
|
* moved AUTH_LIFETIME handling in its own task (cleaner separation, proper ↵Martin Willi2007-12-037-34/+293
| | | | payload order)
* improving [3361]: moved one of the added return valuesTobias Brunner2007-11-221-1/+2
|
* added two return statements comitted by Marius TomaschewskiAndreas Steffen2007-11-211-1/+2
|
* implemented RFC4478 (repeated authentication)Martin Willi2007-11-204-47/+204
| | | | | changed %V printf handler to take a time delta, %#V now takes two arguments
* fixed NO_PROPOSAL_CHOSEN response on IKE_SA_INITMartin Willi2007-11-141-0/+2
|
* fixed _updown target for ipv6Andreas Steffen2007-11-061-1/+1
|
* adding new virtual ip before deleting old one to keep IP on reauthenticationMartin Willi2007-10-251-7/+7
|
* experimental P2P-NAT-T for IKEv2 merged back from branchTobias Brunner2007-10-0312-12/+3458
|
* ID payload with explicit payload typeTobias Brunner2007-10-021-2/+2
|
* moved force_encap to ike_config, enables responder to enforce udp encapsulationMartin Willi2007-10-012-9/+10
| | | | fixed bugs in force_encap code
* removed accidentally checked in debugging codeMartin Willi2007-10-011-4/+0
|
* implemented IKEv2 force_encap connection parameterMartin Willi2007-10-014-6/+55
| | | | | enforces UDP encapsulation by faking NAT detection payloads to hurdle restrictive firewalls
* implemented more aggressive MOBIKE path probingMartin Willi2007-09-284-24/+100
| | | | | do not queue more than one MOBIKE task
* typosTobias Brunner2007-09-272-3/+3
|
* improved MOBIKE roaming between interfacesMartin Willi2007-09-244-15/+25
|
* connection name to IKE_SA initiatingAndreas Steffen2007-09-152-2/+3
|
* put IKE_SA and CHILD_SA names in single quotesAndreas Steffen2007-09-153-6/+6
|
* log name of IKE_SA in state changesAndreas Steffen2007-09-151-1/+2
|
* log name of established IKE_SAAndreas Steffen2007-09-151-4/+8
|
* log name of established CHILD_SAAndreas Steffen2007-09-151-2/+4
|
* added missing 'break' in checkout_by_peerTobias Brunner2007-09-131-0/+1
|
* only switch to port 4500 if we are on 500: fixed reauthentication in NAT Martin Willi2007-09-121-2/+9
| | | | scenarios
* removed unused chunk variableAndreas Steffen2007-09-121-3/+1
|
* moving virtual IP when interface changes due mobikeMartin Willi2007-09-121-0/+11
|
* fixed NAT detection with mobikeMartin Willi2007-09-122-7/+7
|
* overwrite shared_key with random bytes before freeing itAndreas Steffen2007-09-111-2/+2
|
* replaced get_rsa_private_key() by rsa_signature() in order restrict the ↵Andreas Steffen2007-09-111-18/+5
| | | | distribution of private key material
* implemented routeability checks for mobike (experimental)Martin Willi2007-09-034-48/+156
|
* added mobike=yes|no connection optionMartin Willi2007-08-292-17/+33
| | | | | | | yes: include mobike support notifies as initiator no: only enable mobike as responder when initiator supports it default: yes
* rerouting CHILD_SA if its IKE_SA gets deletedMartin Willi2007-08-271-99/+149
|
* corrected debug outputAndreas Steffen2007-08-101-1/+1
|
* backports from the p2p-nat-t branch:Tobias Brunner2007-07-191-2/+2
| | | | | | * double assignment of function ''destroy'' in some jobs * typos
* not touching IKE_SA_INIT from ike_mobike_t anymoreMartin Willi2007-07-191-1/+1
|
* fixed payload order (Nonce, KE) for IKE_SA_INITMartin Willi2007-07-161-3/+11
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 09:51:01 +0000