| Commit message (Collapse) | Author | Age | Files | Lines | ||
|---|---|---|---|---|---|---|
| ... | ||||||
| | | * | Interpret attribute format correctly in IKEv1 configuration format | Martin Willi | 2012-03-20 | 1 | -2/+2 | |
| | | | | ||||||
| | | * | Encrypt INFORMATIONAL exchange if needed | Clavister OpenSource | 2012-03-20 | 1 | -11/+22 | |
| | | | | ||||||
| | | * | added functions for getting/setting ISAKMP SPI to notify payload | Clavister OpenSource | 2012-03-20 | 2 | -0/+51 | |
| | | | | ||||||
| | | * | En- and decode DH group attribute in quick mode SA payloads | Martin Willi | 2012-03-20 | 1 | -0/+13 | |
| | | | | ||||||
| | | * | Handle incoming delete messages | Clavister OpenSource | 2012-03-20 | 1 | -0/+25 | |
| | | | | ||||||
| | | * | use untoh64 instead of non-portable be64toh | Andreas Steffen | 2012-03-20 | 1 | -1/+1 | |
| | | | | ||||||
| | | * | Cleanup CERT payload constructors | Martin Willi | 2012-03-20 | 2 | -17/+22 | |
| | | | | ||||||
| | | * | Cleaned up certreq payload for IKEv2/IKEv1 use | Martin Willi | 2012-03-20 | 2 | -53/+52 | |
| | | | | ||||||
| | | * | Encode a single IP traffic selector as ID_IPV?_ADDRESS identity | Martin Willi | 2012-03-20 | 1 | -3/+16 | |
| | | | | ||||||
| | | * | Added missing break;s when converting ID_IP_ADDRESS types to ts, extracted ↵ | Martin Willi | 2012-03-20 | 1 | -10/+14 | |
| | | | | | | | | | | | | | function | |||||
| | | * | Don't use unportable htobe64 macro directly | Martin Willi | 2012-03-20 | 1 | -1/+1 | |
| | | | | ||||||
| | | * | certificate handling for XAuth responder. | Clavister OpenSource | 2012-03-20 | 4 | -11/+66 | |
| | | | | ||||||
| | | * | Setting transform number in esp proposal. | Clavister OpenSource | 2012-03-20 | 1 | -1/+1 | |
| | | | | | | | | | | | | | iPhone (racoon) fails quick mode when transform number is 0 | |||||
| | | * | ID_IPV4_ADDR and ID_IPV6_ADDR cases added to get_ts | Clavister OpenSource | 2012-03-20 | 1 | -0/+18 | |
| | | | | ||||||
| | | * | IKEv1: Added basic support for INFORMATIONAL exchange types, and for ↵ | Clavister OpenSource | 2012-03-20 | 2 | -10/+14 | |
| | | | | | | | | | | | | | NOTIFY_V1 messages in the 3rd message in quick_mode. | |||||
| | | * | Message rules for IKEv1 NAT-T payloads added. | Tobias Brunner | 2012-03-20 | 1 | -0/+17 | |
| | | | | ||||||
| | | * | Added payloads for IKEv1 NAT-Traversal negotiation. | Tobias Brunner | 2012-03-20 | 7 | -16/+51 | |
| | | | | ||||||
| | | * | Added an option to create a generator that does not log debug messages. | Tobias Brunner | 2012-03-20 | 2 | -24/+96 | |
| | | | | ||||||
| | | * | Handle invalid IKEv1 hashes more specifically. | Tobias Brunner | 2012-03-20 | 2 | -1/+3 | |
| | | | | ||||||
| | | * | Handle unsupported IKEv1 exchange types more specifically. | Tobias Brunner | 2012-03-20 | 1 | -1/+1 | |
| | | | | ||||||
| | | * | Handle INFORMATIONAL_V1 messages when no keys have been derived yet. | Tobias Brunner | 2012-03-20 | 1 | -2/+3 | |
| | | | | | | | | | | | | | | | | | | | | | | | | | This allows to gracefully process the INFORMATIONAL_V1 message rules which require the payloads to be encrypted and thus the exchange to be authenticated with a HASH payload. If such an exchange is now initiated before the ISAKMP_SA is established, the message is simply sent unencrypted and without HASH payload. | |||||
| | | * | Use proper enum types in proposal_substructure. | Tobias Brunner | 2012-03-20 | 1 | -2/+2 | |
| | | | | ||||||
| | | * | Map auth_class to auth method and IKEv1 proposal attribute | Martin Willi | 2012-03-20 | 1 | -2/+10 | |
| | | | | ||||||
| | | * | Removed obsolete transform attribute setters | Martin Willi | 2012-03-20 | 2 | -92/+13 | |
| | | | | ||||||
| | | * | Implemented IKEv1 attribute encoding in SA payload | Martin Willi | 2012-03-20 | 5 | -8/+247 | |
| | | | | ||||||
| | | * | Implemented encoding of additional IKEv1 proposal attributes | Martin Willi | 2012-03-20 | 5 | -123/+173 | |
| | | | | ||||||
| | | * | Added not-yet used sa_payload parameters used in IKEv1 | Martin Willi | 2012-03-20 | 2 | -10/+170 | |
| | | | | ||||||
| | | * | IKEv1 XAuth: Add XAUTH authentication types to the enum. Added the ability ↵ | Clavister OpenSource | 2012-03-20 | 1 | -0/+17 | |
| | | | | | | | | | | | | | to switch between hardcoded PSK and XAUTH_INIT_PSK authentications using a flag, default to PSK. | |||||
| | | * | IKEv1 ConfigMode: Fix configuration_attribute encoding rules for IKEv1 to ↵ | Clavister OpenSource | 2012-03-20 | 1 | -1/+1 | |
| | | | | | | | | | | | | | use the attribute type instead of the internal only payload type. | |||||
| | | * | IKEv1 ConfigMode: Fixed cp_payload to use CONFIGURATION_ATTRIBUTE_V1 in all ↵ | Clavister OpenSource | 2012-03-20 | 3 | -1/+3 | |
| | | | | | | | | | | | | | appropriate places, so the parsing is done correctly. | |||||
| | | * | Removed redundant '=>' when logging binary data in parser and generator. | Tobias Brunner | 2012-03-20 | 2 | -6/+6 | |
| | | | | ||||||
| | | * | Fixed encryption of IKEv2 messages. | Tobias Brunner | 2012-03-20 | 1 | -2/+2 | |
| | | | | ||||||
| | | * | Print message payload names after prepending IKEv1 HASH payload | Martin Willi | 2012-03-20 | 1 | -2/+2 | |
| | | | | ||||||
| | | * | Include hardcoded tunnel mode attribute in porposal, remove ESN attribute | Martin Willi | 2012-03-20 | 1 | -2/+2 | |
| | | | | ||||||
| | | * | Authenticate and verify Phase 2 IKEv1 messages with appropriate hashes. | Tobias Brunner | 2012-03-20 | 1 | -2/+44 | |
| | | | | ||||||
| | | * | Fixed verification of DELETE_V1 payloads. | Tobias Brunner | 2012-03-20 | 1 | -4/+13 | |
| | | | | ||||||
| | | * | Fixed header length calculation of DELETE payload. | Tobias Brunner | 2012-03-20 | 1 | -6/+6 | |
| | | | | ||||||
| | | * | Fixed conftests after extending CERT payload. | Tobias Brunner | 2012-03-20 | 1 | -2/+4 | |
| | | | | ||||||
| | | * | Merged IKEv1 attribute payload/data into configuration payload/attribute | Martin Willi | 2012-03-20 | 11 | -787/+249 | |
| | | | | ||||||
| | | * | IKEv1 ConfigMode: Added the payload handlers for attribute_payload and ↵ | Clavister OpenSource | 2012-03-20 | 4 | -0/+672 | |
| | | | | | | | | | | | | | data_attribute payload types. | |||||
| | | * | IKEv1 ConfigMode: Added TRANSACTION exchange type. Added attribute_payload ↵ | Clavister OpenSource | 2012-03-20 | 5 | -20/+76 | |
| | | | | | | | | | | | | | (IKEv2 equiv cp_payload) and data_attribute (IKEv2 equiv configuration_attribute) payload types. Did not combine with IKEv2 because it wasn't trivial to do so. This might be a task worth investigating in the future, because there is a decent amount of shared code here. | |||||
| | | * | Updated the CERT payload to work for both IKEv1 and IKEv2. | Clavister OpenSource | 2012-03-20 | 2 | -14/+25 | |
| | | | | ||||||
| | | * | Parse proposal substructure with multiple IKEv1 transforms to multiple proposals | Martin Willi | 2012-03-20 | 3 | -34/+33 | |
| | | | | ||||||
| | | * | Encode multiple IKEv1 proposals in a single transform substructure | Martin Willi | 2012-03-20 | 3 | -13/+74 | |
| | | | | ||||||
| | | * | Remove public sa_payload.add_proposal() method | Martin Willi | 2012-03-20 | 2 | -18/+12 | |
| | | | | ||||||
| | | * | Only add the first algorithm of a kind to IKEv1 transforms | Martin Willi | 2012-03-20 | 1 | -4/+4 | |
| | | | | ||||||
| | | * | Hardcode some SA lifetimes until we can configure them dynamically | Martin Willi | 2012-03-20 | 1 | -0/+12 | |
| | | | | ||||||
| | | * | Added missing comma after ME_CONNECT declaration. | Tobias Brunner | 2012-03-20 | 1 | -13/+14 | |
| | | | | ||||||
| | | * | Fixed creation of endpoint notifies. | Tobias Brunner | 2012-03-20 | 1 | -1/+1 | |
| | | | | ||||||
| | | * | Fixed diagram of IKEv1 encrypted "payload". | Tobias Brunner | 2012-03-20 | 1 | -2/+0 | |
| | | | | ||||||
 |
index : tteras/strongswan | |
| tteras' strongSwan tree | gitolite |
| aboutsummaryrefslogtreecommitdiffstats |