aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon
Commit message (Collapse)AuthorAgeFilesLines
...
* Added strongswan.conf options to configure retransmission timeoutsMartin Willi2010-01-112-5/+28
|
* log EAP-only authentication proposalAndreas Steffen2010-01-111-3/+5
|
* EAP-MSCHAPv2 is indeed mutual, but is prone to MITM dictionary attacksMartin Willi2010-01-071-1/+1
|
* Support EAP-only authentication for mutual and key deriving EAP methodsMartin Willi2010-01-075-31/+96
|
* Indicate and dected support for EAP-only authenticationMartin Willi2010-01-072-7/+28
|
* Match to private use algorithms only if we know we are talking to strongSwanMartin Willi2010-01-078-22/+41
|
* Interpret private use BEET mode notify only if we know we are talking to ↵Martin Willi2010-01-071-1/+9
| | | | strongSwan
* Add an option to send a vendor ID, allows us to properly support private ↵Martin Willi2010-01-079-8/+205
| | | | extensions
* make error message about missing MD4 hasher more explicitAndreas Steffen2009-12-301-1/+1
|
* differentiate EAP method initialization errorsAndreas Steffen2009-12-301-12/+18
|
* enforce RFC 3779 address constraints on traffic selectorsAndreas Steffen2009-12-251-0/+61
|
* Adapted the load_tester kernel-interface to the changes introduced in 6ec949e02.Tobias Brunner2009-12-231-2/+3
|
* Added some IPv6 tweaks for Android.Tobias Brunner2009-12-231-1/+11
| | | | | Android 1.6 does not yet support the Advanced Sockets API for IPv6 as defined in RFC 3542. Also, in6addr_any is missing.
* Semicolon removed.Tobias Brunner2009-12-231-1/+1
|
* According to the man page (and the header files in Android) prctl takes a ↵Tobias Brunner2009-12-231-1/+2
| | | | total of 5 arguments.
* Cache queue locking in credential manager corrected.Tobias Brunner2009-12-231-2/+13
|
* Join worker threads when destroying the processor.Tobias Brunner2009-12-231-10/+24
|
* Callback job refactored and fixed.Tobias Brunner2009-12-232-47/+106
|
* Whitespace cleanup.Tobias Brunner2009-12-232-33/+33
|
* Using the thread wrapper in charon, libstrongswan and their plugins.Tobias Brunner2009-12-2324-159/+145
|
* Check if libpthread is required or not.Tobias Brunner2009-12-231-1/+1
|
* Separated the public interfaces of the threading primitives.Tobias Brunner2009-12-2331-32/+33
|
* Moved mutex.c to a separate folder in order to cleanly wrap other threading ↵Tobias Brunner2009-12-2331-31/+31
| | | | primitives (and utils/mutex.h is now threading.h).
* verify RFC3779 IP address blocks along X.509 certificate trust chainAndreas Steffen2009-12-232-8/+91
|
* moved traffic_selectors from charon to libstrongswanAndreas Steffen2009-12-2011-1171/+9
|
* fixed updown plugin for mixed IPv4/IPv6 tunnelsAndreas Steffen2009-12-171-2/+8
|
* Fixed BEET mode by installing SAs with negotiated address in traffic selectorMartin Willi2009-12-1710-26/+67
|
* provide attributes from SQL databaseAndreas Steffen2009-12-163-2/+16
|
* Install v6 routes via outgoing interface for nowMartin Willi2009-12-141-18/+7
|
* some code optimizationsAndreas Steffen2009-12-091-34/+37
|
* Support "_" and "-" variants of NetworkManager pkg-config packagesMartin Willi2009-12-081-1/+4
|
* Remove generated config.h.in from source treeMartin Willi2009-12-082-116/+1
|
* The attribute manager was moved from daemon_t to libstrongswan.Tobias Brunner2009-12-071-4/+4
|
* Do not execute the callback job if it has been cancelled since registrationMartin Willi2009-12-031-2/+8
|
* Cleanup library if daemon initialization failsMartin Willi2009-12-031-0/+2
|
* Do not install invalid 0.0.0.0 DNS serversMartin Willi2009-12-011-9/+14
|
* Prefer EAP-Identity for provider attribute/address lookupMartin Willi2009-12-011-4/+37
|
* Save EAP-Identity on auth configMartin Willi2009-12-011-3/+26
|
* Store completed authentication rounds permanently on IKE_SA, with flush optionMartin Willi2009-12-016-50/+110
|
* Removed obsolete and unused [gs]et_eap_identity() methodsMartin Willi2009-11-302-42/+0
|
* Do not propose transport mode as initiator if connection is NATedMartin Willi2009-11-301-0/+6
|
* Verify EAP-SIM/AKA AT_MAC before processing any attributesMartin Willi2009-11-304-36/+24
|
* SIM/AKA/Request/Reauthentication AT_MAC does not include NONCE_S, only the ↵Martin Willi2009-11-304-6/+4
| | | | response
* Extended SIM manager by hooks, currently featuring attribute and key hooksMartin Willi2009-11-302-1/+134
|
* Added a get_sa() method to the bus, allowing a thread to lookup its IKE_SAMartin Willi2009-11-302-0/+19
|
* Handle NOT_SUPPORTED or other errors properly in get_quintupletMartin Willi2009-11-301-4/+10
|
* Use transport mode ESP SA if IPcomp is used, IPcomp already applies outer IP ↵Martin Willi2009-11-261-3/+11
| | | | header
* Use full algorithm name for SHA384/512 HMACsMartin Willi2009-11-261-2/+2
|
* Support the Linux specific SHA256 96 bit truncation HMAC via "sha256_96" keywordMartin Willi2009-11-262-1/+2
|
* Install SHA256_128 auth algorithm with specified 128 bit truncationMartin Willi2009-11-261-1/+25
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-03 23:43:51 +0000