| Commit message (Collapse) | Author | Age | Files | Lines | ||
|---|---|---|---|---|---|---|
| ... | ||||||
| * | | Fixed some typos in comments | Volker Rümelin | 2013-01-11 | 2 | -4/+4 | |
| |/ | ||||||
| * | Fixed some typos, courtesy of codespell | Tobias Brunner | 2012-12-20 | 1 | -1/+1 | |
| | | ||||||
| * | Add support for draft-ietf-ipsec-nat-t-ike-03 and earlier | Volker Rümelin | 2012-12-19 | 8 | -54/+100 | |
| | | | | | | This adds support for early versions of the draft that eventually resulted in RFC 3947. | |||||
| * | Moved data structures to new collections subfolder | Tobias Brunner | 2012-10-24 | 17 | -17/+17 | |
| | | ||||||
| * | Moved packet_t and tun_device_t to networking folder | Tobias Brunner | 2012-10-24 | 1 | -1/+1 | |
| | | ||||||
| * | Moved host_t and host_resolver_t to a new networking subfolder | Tobias Brunner | 2012-10-24 | 1 | -1/+1 | |
| | | ||||||
| * | Increase the limit of acceptable IKEv1 CERTREQ payloads to 20 | Martin Willi | 2012-10-24 | 1 | -1/+1 | |
| | | ||||||
| * | Correctly initialize payload length of encrypted payload | Tobias Brunner | 2012-09-28 | 1 | -1/+1 | |
| | | ||||||
| * | Added method to enumerate EAP types contained in an EAP-Nak | Tobias Brunner | 2012-08-31 | 2 | -11/+79 | |
| | | ||||||
| * | Encode EAP-Naks in expanded format if we got an expanded type request | Tobias Brunner | 2012-08-31 | 2 | -2/+15 | |
| | | | | | | Since methods defined by the IETF (vendor ID 0) could also be encoded in expanded type format the previous check was insufficient. | |||||
| * | Allow clients to request a configured EAP method via EAP-Nak | Tobias Brunner | 2012-08-31 | 2 | -2/+11 | |
| | | ||||||
| * | Send EAP-Nak with supported types if requested type is unsupported | Tobias Brunner | 2012-08-31 | 2 | -6/+71 | |
| | | ||||||
| * | Moved packet_t to libstrongswan | Tobias Brunner | 2012-08-08 | 1 | -1/+1 | |
| | | ||||||
| * | Include stdint.h for UINTxx_MAX defines | Tobias Brunner | 2012-07-27 | 1 | -2/+3 | |
| | | | | | Fixes #205. | |||||
| * | Don't print hexdumps on loglevel 1 if hash verification fails | Martin Willi | 2012-07-20 | 1 | -3/+3 | |
| | | ||||||
| * | Cleaned up memory management and return values for encryption payload | Martin Willi | 2012-07-16 | 3 | -33/+31 | |
| | | ||||||
| * | Add a return value to keymat_v1_t.{get,update,confirm}_iv | Martin Willi | 2012-07-16 | 1 | -9/+36 | |
| | | ||||||
| * | Check rng return value when encrypting encryption payload | Tobias Brunner | 2012-07-16 | 1 | -2/+8 | |
| | | ||||||
| * | Use a bool return value in keymat_v1_t.get_hash_phase2() | Martin Willi | 2012-07-16 | 1 | -4/+2 | |
| | | ||||||
| * | Add a return value to aead_t.encrypt() | Martin Willi | 2012-07-16 | 1 | -2/+10 | |
| | | ||||||
| * | Map XAuth responder authentication methods between IKEv1 and IKEv2 | Martin Willi | 2012-06-27 | 1 | -1/+13 | |
| | | ||||||
| * | Added encapsulation mode transform attribute to IPComp proposal. | Tobias Brunner | 2012-05-25 | 3 | -5/+10 | |
| | | ||||||
| * | Add an additional proposal without IPComp to SA payload. | Tobias Brunner | 2012-05-24 | 1 | -17/+15 | |
| | | ||||||
| * | Added support for IKEv1 IPComp proposals in SA payload. | Tobias Brunner | 2012-05-24 | 2 | -8/+92 | |
| | | ||||||
| * | Added support for IKEv1 IPComp proposals in proposal substructure. | Tobias Brunner | 2012-05-24 | 2 | -9/+126 | |
| | | ||||||
| * | Properly filter IKEv1 proposals consisting of multiple proposal payloads. | Tobias Brunner | 2012-05-24 | 1 | -9/+15 | |
| | | | | | | | | Since a proposal_t object is created for each transform contained in the proposal payload, it does not work to simply remove the last proposal_t object added to the list (there may be several other extracted from the previous proposal payload). | |||||
| * | fixed mapping of IKEv1 algorithms | Andreas Steffen | 2012-05-05 | 1 | -29/+184 | |
| | | ||||||
| * | inserted space | Andreas Steffen | 2012-05-05 | 5 | -1/+1 | |
| | | ||||||
| * | Merge branch 'ikev1' | Martin Willi | 2012-05-02 | 54 | -1608/+4673 | |
| |\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Conflicts: configure.in man/ipsec.conf.5.in src/libcharon/encoding/generator.c src/libcharon/encoding/payloads/notify_payload.c src/libcharon/encoding/payloads/notify_payload.h src/libcharon/encoding/payloads/payload.c src/libcharon/network/receiver.c src/libcharon/sa/authenticator.c src/libcharon/sa/authenticator.h src/libcharon/sa/ikev2/tasks/ike_init.c src/libcharon/sa/task_manager.c src/libstrongswan/credentials/auth_cfg.c | |||||
| | * | Merge branch 'ikev1-clean' into ikev1-master | Martin Willi | 2012-03-20 | 54 | -1604/+4673 | |
| | |\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Conflicts: configure.in man/ipsec.conf.5.in src/libcharon/daemon.c src/libcharon/plugins/eap_ttls/eap_ttls_peer.c src/libcharon/plugins/eap_radius/eap_radius_accounting.c src/libcharon/plugins/eap_radius/eap_radius_forward.c src/libcharon/plugins/farp/farp_listener.c src/libcharon/sa/ike_sa.c src/libcharon/sa/keymat.c src/libcharon/sa/task_manager.c src/libcharon/sa/trap_manager.c src/libstrongswan/plugins/x509/x509_cert.c src/libstrongswan/utils.h Applied lost changes of moved files keymat.c and task_manager.c. Updated listener_t.message hook signature in new plugins. | |||||
| | | * | Store the major IKE version on ike_sa_id_t. | Tobias Brunner | 2012-03-20 | 1 | -0/+1 | |
| | | | | ||||||
| | | * | Parse IKEv1 Cisco Load Balancing notify (can't act on it yet). | Tobias Brunner | 2012-03-20 | 2 | -2/+8 | |
| | | | | ||||||
| | | * | Fixed transform numbering in IKEv1 proposal. | Tobias Brunner | 2012-03-20 | 1 | -0/+1 | |
| | | | | ||||||
| | | * | Fix mapping of IKEv1 encapsulation mode | Martin Willi | 2012-03-20 | 1 | -1/+1 | |
| | | | | ||||||
| | | * | Support encoding of IKEv1 ECDSA proposals | Martin Willi | 2012-03-20 | 1 | -6/+16 | |
| | | | | ||||||
| | | * | Renamed CONFIGURATION_ATTRIBUTE_LENGTH to streamline it with other ATTRIBUTE ↵ | Martin Willi | 2012-03-20 | 5 | -10/+10 | |
| | | | | | | | | | | | | | rules | |||||
| | | * | Use ATTRIBUTE_VALUE rule in configuration attribute to parse it with correct ↵ | Martin Willi | 2012-03-20 | 1 | -1/+1 | |
| | | | | | | | | | | | | | length | |||||
| | | * | Added missing short enum names for DPD notify types | Martin Willi | 2012-03-20 | 1 | -1/+4 | |
| | | | | ||||||
| | | * | Print IKEv1 notify types in message summary | Martin Willi | 2012-03-20 | 1 | -1/+2 | |
| | | | | ||||||
| | | * | Support IKEv1 notifies in message_t.get_notify() | Martin Willi | 2012-03-20 | 1 | -1/+2 | |
| | | | | ||||||
| | | * | DPD_R_U_THERE defines added | Clavister OpenSource | 2012-03-20 | 2 | -1/+14 | |
| | | | | ||||||
| | | * | Accept unencrypted Aggressive Mode messages. | Tobias Brunner | 2012-03-20 | 1 | -1/+2 | |
| | | | | | | | | | | | | | Racoon does not encrypt the third message during Aggressive Mode. | |||||
| | | * | Encrypt payloads of third aggressive mode message | Martin Willi | 2012-03-20 | 1 | -3/+3 | |
| | | | | ||||||
| | | * | Support IKEv1 proposal encodings having both lifebytes and a lifetime | Martin Willi | 2012-03-20 | 1 | -67/+58 | |
| | | | | ||||||
| | | * | Add functions to set mode cfg identifier | Clavister OpenSource | 2012-03-20 | 2 | -0/+27 | |
| | | | | ||||||
| | | * | Accept IKEv1 INVALID_KE_INFORMATION notifies without data | Martin Willi | 2012-03-20 | 1 | -2/+2 | |
| | | | | ||||||
| | | * | IKEv1 ATTRIBUTES_NOT_SUPPORTED error notify added. | Tobias Brunner | 2012-03-20 | 2 | -2/+7 | |
| | | | | ||||||
| | | * | Give a hint that decryption failed if payload length invalid | Martin Willi | 2012-03-20 | 1 | -0/+7 | |
| | | | | ||||||
| | | * | Cast keymat safely, not based on external input | Martin Willi | 2012-03-20 | 1 | -36/+44 | |
| | | | | ||||||
| | | * | Use IPSEC DOI also for ISAKMP SA deletes. | Tobias Brunner | 2012-03-20 | 1 | -1/+1 | |
| | | | | ||||||
 |
index : tteras/strongswan | |
| tteras' strongSwan tree | gitolite |
| aboutsummaryrefslogtreecommitdiffstats |