| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Use standard unsigned integer types | Andreas Steffen | 2016-03-24 | 1 | -1/+1 |
| | | |||||
| * | unknown-payload: Use a new private payload type and make original type available | Tobias Brunner | 2015-06-01 | 1 | -0/+2 |
| | | | | | | | | | | This fixes a DoS and potential remote code execution vulnerability that was caused because the original payload type that was returned previously was used to cast such payload objects to payloads of the indicated type (e.g. when logging notify payloads with a payload type for the wrong IKE version). Fixes CVE-2015-3991. | ||||
| * | ike: Allow creation of internally used payloads | Tobias Brunner | 2014-12-12 | 1 | -1/+1 |
| | | | | | | | | Since 42e0a317c64b ("ike: Only parse payloads valid for the current IKE version") payload types are checked before creating objects. This check failed for internally used payload types (e.g. proposal substructures), which have a type >= 256, i.e. outside the IKE payload type range. | ||||
| * | ike: Make check for known payloads depend on IKE version | Tobias Brunner | 2014-12-05 | 1 | -23/+37 |
| | | |||||
| * | ikev2: Add encrypted fragment payload | Tobias Brunner | 2014-10-10 | 1 | -11/+26 |
| | | |||||
| * | ike: Rename encryption_payload to encrypted_payload | Tobias Brunner | 2014-10-10 | 1 | -2/+2 |
| | | |||||
| * | payload: Use common prefixes for all payload type identifiers | Martin Willi | 2014-06-04 | 1 | -77/+77 |
| | | | | | | The old identifiers did not use a proper namespace and often clashed with other defines. | ||||
| * | Payload added to handle IKE fragments | Tobias Brunner | 2012-12-24 | 1 | -11/+18 |
| | | |||||
| * | Add support for draft-ietf-ipsec-nat-t-ike-03 and earlier | Volker Rümelin | 2012-12-19 | 1 | -30/+23 |
| | | | | | | This adds support for early versions of the draft that eventually resulted in RFC 3947. | ||||
| * | Merge branch 'ikev1' | Martin Willi | 2012-05-02 | 1 | -39/+120 |
| |\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Conflicts: configure.in man/ipsec.conf.5.in src/libcharon/encoding/generator.c src/libcharon/encoding/payloads/notify_payload.c src/libcharon/encoding/payloads/notify_payload.h src/libcharon/encoding/payloads/payload.c src/libcharon/network/receiver.c src/libcharon/sa/authenticator.c src/libcharon/sa/authenticator.h src/libcharon/sa/ikev2/tasks/ike_init.c src/libcharon/sa/task_manager.c src/libstrongswan/credentials/auth_cfg.c | ||||
| | * | Remove executable flag from source code files | Martin Willi | 2012-03-20 | 1 | -0/+0 |
| | | | |||||
| | * | certificate handling for XAuth responder. | Clavister OpenSource | 2012-03-20 | 1 | -1/+3 |
| | | | |||||
| | * | Added payloads for IKEv1 NAT-Traversal negotiation. | Tobias Brunner | 2012-03-20 | 1 | -3/+15 |
| | | | |||||
| | * | Merged IKEv1 attribute payload/data into configuration payload/attribute | Martin Willi | 2012-03-20 | 1 | -30/+26 |
| | | | |||||
| | * | IKEv1 ConfigMode: Added TRANSACTION exchange type. Added attribute_payload ↵ | Clavister OpenSource | 2012-03-20 | 1 | -14/+27 |
| | | | | | | | | | (IKEv2 equiv cp_payload) and data_attribute (IKEv2 equiv configuration_attribute) payload types. Did not combine with IKEv2 because it wasn't trivial to do so. This might be a task worth investigating in the future, because there is a decent amount of shared code here. | ||||
| | * | Register HASH_V1 in payload factory | Martin Willi | 2012-03-20 | 1 | -0/+3 |
| | | | |||||
| | * | Strings for ENCRYPTED_V1 payload added. | Tobias Brunner | 2012-03-20 | 1 | -10/+14 |
| | | | |||||
| | * | Use modified encryption payload to encrypt/decrypt complete IKEv1 messages. | Tobias Brunner | 2012-03-20 | 1 | -1/+2 |
| | | | |||||
| | * | Added IKEv1 support to delete payload | Martin Willi | 2012-03-20 | 1 | -1/+2 |
| | | | |||||
| | * | Added IKEv1 support to notify payload | Martin Willi | 2012-03-20 | 1 | -3/+4 |
| | | | |||||
| | * | Extended ID payload for (non-TS) IKEv1 use | Martin Willi | 2012-03-20 | 1 | -0/+1 |
| | | | |||||
| | * | Simplify signature of get_encoding_rules(), make all rules static | Martin Willi | 2012-03-20 | 1 | -3/+2 |
| | | | |||||
| | * | Extended KE payload for IKEv1 support | Martin Willi | 2012-03-20 | 1 | -1/+2 |
| | | | |||||
| | * | Extended nonce payload for IKEv1 support | Martin Willi | 2012-03-20 | 1 | -1/+2 |
| | | | |||||
| | * | Added additional IKEv1 payload and encoding identifiers | Martin Willi | 2012-03-20 | 1 | -8/+21 |
| | | | |||||
| | * | Extend sa_payload for IKEv1 support | Martin Willi | 2012-03-20 | 1 | -1/+2 |
| | | | |||||
| | * | Use vendor id payload for IKEv1 payloads, too | Martin Willi | 2012-03-20 | 1 | -1/+2 |
| | | | |||||
| | * | Added IKEv1 payload identifiers to "known" payload list | Martin Willi | 2012-03-20 | 1 | -2/+9 |
| | | | |||||
| | * | Added IKEv1 payload identifiers | Martin Willi | 2012-03-20 | 1 | -2/+30 |
| | | | |||||
| * | | added GSPM IKEv2 payload | Andreas Steffen | 2012-04-03 | 1 | -8/+15 |
| |/ | |||||
| * | Implemented a generic payload field lookup function | Martin Willi | 2011-01-05 | 1 | -0/+20 |
| | | |||||
| * | Use the payloads actual type in unknown_payload_t | Martin Willi | 2011-01-05 | 1 | -15/+29 |
| | | |||||
| * | Moving charon to libcharon. | Tobias Brunner | 2010-03-19 | 1 | -0/+184 |
 |
index : tteras/strongswan | |
| tteras' strongSwan tree | gitolite |
| aboutsummaryrefslogtreecommitdiffstats |