aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/sa
Commit message (Collapse)AuthorAgeFilesLines
* Moving charon to libcharon.Tobias Brunner2010-03-1968-24284/+0
|
* Check if we are not using a vendor EAP method in EAP_IDENTITY comparison.Martin Willi2010-03-031-1/+1
| | | | Bug reported by Ingo Kubbilun with a patch from Reinhard Pfau, secunet AG.
* Process ike_vendor task before ike_init, fixes support for private algs in IKEMartin Willi2010-02-262-5/+5
|
* Use message instead of attributes in hookMartin Willi2010-02-262-31/+23
|
* Use src/dst ports as configured in ike_cfgMartin Willi2010-02-264-16/+41
|
* Invoke missing message() hook for incoming responsesMartin Willi2010-02-171-0/+1
|
* Adding support for AES GMAC (RFC4543).Tobias Brunner2010-02-121-4/+5
|
* Do not build own authentication data before we've verified others, we need ↵4.3.6Martin Willi2010-02-091-28/+33
| | | | the other identity in EAP
* Some whitespace and code cleanups concerning the mediation extension.Tobias Brunner2010-02-021-2/+2
|
* Made inactivity_timeout a per CHILD_SA config optionMartin Willi2010-01-271-7/+7
|
* Support for closing CHILD/IKE_SA if a CHILD_SA is inactive.Martin Willi2010-01-121-0/+25
|
* Added strongswan.conf options to configure retransmission timeoutsMartin Willi2010-01-112-5/+28
|
* log EAP-only authentication proposalAndreas Steffen2010-01-111-3/+5
|
* Support EAP-only authentication for mutual and key deriving EAP methodsMartin Willi2010-01-075-31/+96
|
* Indicate and dected support for EAP-only authenticationMartin Willi2010-01-072-7/+28
|
* Match to private use algorithms only if we know we are talking to strongSwanMartin Willi2010-01-072-3/+8
|
* Interpret private use BEET mode notify only if we know we are talking to ↵Martin Willi2010-01-071-1/+9
| | | | strongSwan
* Add an option to send a vendor ID, allows us to properly support private ↵Martin Willi2010-01-078-8/+204
| | | | extensions
* differentiate EAP method initialization errorsAndreas Steffen2009-12-301-12/+18
|
* enforce RFC 3779 address constraints on traffic selectorsAndreas Steffen2009-12-251-0/+61
|
* Using the thread wrapper in charon, libstrongswan and their plugins.Tobias Brunner2009-12-231-0/+1
|
* Separated the public interfaces of the threading primitives.Tobias Brunner2009-12-235-5/+6
|
* Moved mutex.c to a separate folder in order to cleanly wrap other threading ↵Tobias Brunner2009-12-235-5/+5
| | | | primitives (and utils/mutex.h is now threading.h).
* Fixed BEET mode by installing SAs with negotiated address in traffic selectorMartin Willi2009-12-173-9/+31
|
* provide attributes from SQL databaseAndreas Steffen2009-12-161-2/+4
|
* Prefer EAP-Identity for provider attribute/address lookupMartin Willi2009-12-011-4/+37
|
* Save EAP-Identity on auth configMartin Willi2009-12-011-3/+26
|
* Store completed authentication rounds permanently on IKE_SA, with flush optionMartin Willi2009-12-013-43/+105
|
* Removed obsolete and unused [gs]et_eap_identity() methodsMartin Willi2009-11-302-42/+0
|
* Do not propose transport mode as initiator if connection is NATedMartin Willi2009-11-301-0/+6
|
* Extended SIM manager by hooks, currently featuring attribute and key hooksMartin Willi2009-11-302-1/+134
|
* Handle NOT_SUPPORTED or other errors properly in get_quintupletMartin Willi2009-11-301-4/+10
|
* Support the Linux specific SHA256 96 bit truncation HMAC via "sha256_96" keywordMartin Willi2009-11-261-0/+1
|
* Check existing path in mobike probing only if we still have a routeMartin Willi2009-11-262-8/+6
|
* added more debugging in configuration attribute handlingAndreas Steffen2009-11-241-0/+4
|
* Do not recreate existing create_child subtask when retrying with different ↵Martin Willi2009-11-231-2/+5
| | | | DH group
* Avoid potentially unaligned half-word readMartin Willi2009-11-231-5/+8
|
* Message stringification supports more detailed EAP payload informationMartin Willi2009-11-182-0/+36
|
* Fixed memleak in attribute handlingMartin Willi2009-11-171-0/+1
|
* Give plugins more control of which configuration attributes to request, and ↵Martin Willi2009-11-173-74/+131
| | | | pass received attributes back to the requesting handler
* Invoke message hook before generation, allowing plugins to mangle itMartin Willi2009-11-121-3/+2
|
* Support variable RES length in AKA quintupletsMartin Willi2009-11-122-12/+29
|
* Ported pseudonym/reauth functionality to EAP-AKAMartin Willi2009-11-121-0/+4
|
* Use new identity constructor in EAP-SIMMartin Willi2009-11-121-0/+5
|
* Moved card/provider enumeration to SIM manager, providing wrapped functions ↵Martin Willi2009-11-122-22/+503
| | | | for both SIM and AKA plugins
* Query triplet/quintuplet functions with permanent identity only,Martin Willi2009-11-121-31/+40
| | | | extended sim_provider with a is_pseudonym() function.
* Added missing hasher includeMartin Willi2009-11-121-0/+1
|
* sim_provider_t API gained support for pseudonym/fast reauthenticationMartin Willi2009-11-121-16/+46
|
* sim_card_t API gained support for pseudonym/fast reauthenticationMartin Willi2009-11-121-16/+55
|
* Fixed all doxygen warningsMartin Willi2009-10-222-2/+2
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-31 14:29:01 +0000