| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | ikev1: Make sure proposed IPsec mode matches our own | Tobias Brunner | 2014-09-09 | 1 | -1/+2 |
| * | ikev1: Accept Quick Mode DELETES while Quick Mode rekeying is active | Martin Willi | 2014-08-25 | 1 | -2/+21 |
| * | payload: Use common prefixes for all payload type identifiers | Martin Willi | 2014-06-04 | 1 | -11/+11 |
| * | ikev1: Fix debugging log when remote traffic selector selection fails | Martin Willi | 2014-05-14 | 1 | -1/+1 |
| * | libcharon: Use lib->ns instead of charon->name | Tobias Brunner | 2014-02-12 | 1 | -1/+1 |
| * | ikev1: Negotiate SPI with the first/negotiated proposal protocol | Martin Willi | 2013-10-11 | 1 | -3/+18 |
| * | ikev1: For PFS prefer DH group from IKE_SA over first configured | Thomas Egerer | 2013-09-10 | 1 | -18/+54 |
| * | ikev1: Always send ID payloads (traffic selectors) during Quick Mode | Tobias Brunner | 2013-07-25 | 1 | -26/+4 |
| * | child-sa: replace get_traffic_selectors() with create_ts_enumerator() | Martin Willi | 2013-07-17 | 1 | -4/+10 |
| * | kernel-interface: add an exchange initiator parameter to add_sa() | Martin Willi | 2013-06-11 | 1 | -8/+12 |
| * | Allow IPComp on NATed connections, both for IKEv1 and IKEv2 | Martin Willi | 2013-06-11 | 1 | -26/+10 |
| * | Refactor check_for_rekeyed_child() in quick_mode task | Martin Willi | 2013-04-03 | 1 | -18/+24 |
| * | Reuse reqid of an existing Quick Mode, even if it has been rekeyed | Martin Willi | 2013-04-03 | 1 | -1/+2 |
| * | As Quick Mode initiator, select a subset of the proposed and the returned TS | Martin Willi | 2013-03-07 | 1 | -4/+11 |
| * | Use a complete port range in traffic_selector_create_from_{subnet,cidr} | Martin Willi | 2013-02-21 | 1 | -2/+2 |
| * | Add support for draft-ietf-ipsec-nat-t-ike-03 and earlier | Volker RĂ¼melin | 2012-12-19 | 1 | -4/+61 |
| * | Fix traffic selectors also as initiator in case of transport mode over NAT | Tobias Brunner | 2012-12-13 | 1 | -1/+1 |
| * | Fix debug output if responder selected invalid traffic selectors during QM | Tobias Brunner | 2012-12-13 | 1 | -2/+2 |
| * | Remove all ESP proposals with non-matching DH group during Quick Mode | Tobias Brunner | 2012-10-24 | 1 | -10/+22 |
| * | Don't complain about multiple TS in IKEv1, as it supported with Unity | Martin Willi | 2012-09-18 | 1 | -5/+0 |
| * | Derive a dynamic TS to multiple virtual IPs | Martin Willi | 2012-09-18 | 1 | -23/+28 |
| * | Use the vararg list constructor in quick mode task | Martin Willi | 2012-09-18 | 1 | -16/+8 |
| * | Change traffic selectors during Quick Mode in case of a NAT in transport mode | Tobias Brunner | 2012-09-14 | 1 | -9/+19 |
| * | Don't use host address for dynamic TS in IKEv1 if a virtual IP was expected | Martin Willi | 2012-09-11 | 1 | -40/+57 |
| * | Add a responder narrow() hook to change TS in the kernel, but not on the wire | Martin Willi | 2012-09-11 | 1 | -2/+20 |
| * | Support multiple virtual IPs on peer_cfg and ike_sa classes | Martin Willi | 2012-08-30 | 1 | -14/+30 |
| * | Nonce: Let get_nonce, allocate_nonce return boolean | Reto Buerki | 2012-07-16 | 1 | -1/+6 |
| * | Fix SIGSEGV if kernel install fails during Quick Mode as responder. | Tobias Brunner | 2012-06-22 | 1 | -4/+8 |
| * | Use traffic selectors passed to quick mode constructor as initiator | Martin Willi | 2012-06-08 | 1 | -2/+10 |
| * | Added log message if peer does not accept/provide IPComp proposal. | Tobias Brunner | 2012-05-24 | 1 | -2/+12 |
| * | Added support to negotiate IPComp during Quick Mode. | Tobias Brunner | 2012-05-24 | 1 | -11/+91 |
| * | Added support for IKEv1 IPComp proposals in SA payload. | Tobias Brunner | 2012-05-24 | 1 | -2/+2 |
| * | Fix memleak during Quick Mode in case no SPI can be allocated from kernel. | Tobias Brunner | 2012-05-24 | 1 | -8/+8 |
| * | Flush task queues explicitly, not implicitly if task returns ALREADY_DONE | Martin Willi | 2012-05-21 | 1 | -0/+3 |
| * | Remove executable flag from source files. | Tobias Brunner | 2012-05-18 | 1 | -0/+0 |
| * | Use nonce_gen instead of rng to generate nonces | Adrian-Ken Rueegsegger | 2012-05-18 | 1 | -6/+6 |
| * | allow private algorithms | Andreas Steffen | 2012-05-05 | 1 | -2/+8 |
| * | Use name from initialization to access settings in libcharon. | Tobias Brunner | 2012-05-03 | 1 | -1/+1 |
| * | Use UDP encapsulation even in non-NAT situation if initiator requests it | Martin Willi | 2012-03-20 | 1 | -13/+14 |
| * | Support inactivity timeout in IKEv1 CHILD_SAs | Martin Willi | 2012-03-20 | 1 | -1/+24 |
| * | Invoke bus_t.narrow hook in quick mode exchange | Martin Willi | 2012-03-20 | 1 | -7/+36 |
| * | Invoke child_rekey hook instead of child_updown when rekeying a quick mode | Martin Willi | 2012-03-20 | 1 | -2/+28 |
| * | Simplified DPD handling by using a task for a single message only | Martin Willi | 2012-03-20 | 1 | -1/+1 |
| * | Isakmp_dpd task added. | Clavister OpenSource | 2012-03-20 | 1 | -1/+1 |
| * | Enforce encapsulation mode of configuration, in case initiator proposes both | Martin Willi | 2012-03-20 | 1 | -1/+2 |
| * | Install quick mode CHILD_SAs with negotiated encapsulation mode | Martin Willi | 2012-03-20 | 1 | -12/+17 |
| * | As responder, try to reuse the reqid of the CHILD_SA the initiator is rekeying | Martin Willi | 2012-03-20 | 1 | -0/+38 |
| * | Reply quick mode with the same SA lifetime that we received | Martin Willi | 2012-03-20 | 1 | -4/+4 |
| * | Do not query CHILD_SA during delete if they already expired | Martin Willi | 2012-03-20 | 1 | -1/+1 |
| * | Support installing of quick mode SAs with a specific reqid | Martin Willi | 2012-03-20 | 1 | -2/+14 |
