aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/sa/ikev1/tasks
Commit message (Expand)AuthorAgeFilesLines
* Merge branch 'ikev1-fragmentation'Tobias Brunner2013-01-121-5/+44
|\
| * Properly detect fragmentation capabilitiesTobias Brunner2013-01-121-3/+27
| * Added an option that allows to force IKEv1 fragmentationTobias Brunner2013-01-121-1/+1
| * Use a connection specific option to en-/disable IKEv1 fragmentationTobias Brunner2012-12-241-2/+4
| * Add an option to en-/disable IKE fragmentationTobias Brunner2012-12-241-4/+12
| * Log added NAT-T vendor IDsTobias Brunner2012-12-241-0/+1
| * Detect a peer's support for IKE fragmentationTobias Brunner2012-12-241-0/+4
* | Streamline debug output when receiving intermediate CA certificates in IKEv1Martin Willi2013-01-111-1/+1
* | Refactored IKEv1 cert payload processing to multiple functionsMartin Willi2013-01-111-73/+102
* | IKEv1 support for PKCS#7 wrapped certificatesVolker Rümelin2013-01-111-0/+70
* | Fixed some typos in commentsVolker Rümelin2013-01-111-1/+1
|/
* Add parantheses to avoid compiler warningMartin Willi2012-12-241-1/+1
* Fixed some typos, courtesy of codespellTobias Brunner2012-12-201-1/+1
* Add support for draft-ietf-ipsec-nat-t-ike-03 and earlierVolker Rümelin2012-12-195-36/+204
* Fix traffic selectors also as initiator in case of transport mode over NATTobias Brunner2012-12-131-1/+1
* Fix debug output if responder selected invalid traffic selectors during QMTobias Brunner2012-12-131-2/+2
* Log sent vendor IDs for IKEv1Tobias Brunner2012-11-021-0/+1
* Remove all ESP proposals with non-matching DH group during Quick ModeTobias Brunner2012-10-241-10/+22
* Missed one in 6c10ceceTobias Brunner2012-09-281-0/+2
* Completed state handling in isakmp_cert_preTobias Brunner2012-09-281-0/+4
* Don't complain about multiple TS in IKEv1, as it supported with UnityMartin Willi2012-09-181-5/+0
* Derive a dynamic TS to multiple virtual IPsMartin Willi2012-09-181-23/+28
* Use the vararg list constructor in quick mode taskMartin Willi2012-09-181-16/+8
* Change traffic selectors during Quick Mode in case of a NAT in transport modeTobias Brunner2012-09-141-9/+19
* Always send a configuration payload in IKEv1 TRANSACTIONs, even if it is emptyMartin Willi2012-09-111-29/+14
* Don't use host address for dynamic TS in IKEv1 if a virtual IP was expectedMartin Willi2012-09-111-40/+57
* Pass the full list of pools to acquire_address, enumerate in providersMartin Willi2012-09-111-20/+6
* Add a responder narrow() hook to change TS in the kernel, but not on the wireMartin Willi2012-09-111-2/+20
* Clear virtual IPs before storing assigned ones on the IKE_SATobias Brunner2012-09-051-0/+4
* In mode_config, destroy temporary pool list instead of the virtual IP list twiceMartin Willi2012-09-051-1/+1
* Request and acquire multiple virtual IPs in IKEv1 Mode ConfigMartin Willi2012-08-301-47/+61
* Pass all configured pool names to attribute provider enumeratorMartin Willi2012-08-301-2/+9
* Pass a list instead of a single virtual IP to attribute enumeratorsMartin Willi2012-08-301-11/+35
* Support multiple address pools configured on a peer_cfgMartin Willi2012-08-303-5/+12
* Support multiple virtual IPs on peer_cfg and ike_sa classesMartin Willi2012-08-304-23/+46
* Merge branch 'android-ndk'Tobias Brunner2012-08-131-1/+2
|\
| * Replaced usages of CHARON_*_PORT with calls to get_port().Tobias Brunner2012-08-081-1/+2
| * Make the UDP ports charon listens for packets on (and uses as source ports) c...Tobias Brunner2012-08-081-1/+1
* | Use actual daemon name to enable XAuth/PSK with aggressive modeMartin Willi2012-08-101-2/+3
|/
* Implement late peer config switching after XAuth authenticationMartin Willi2012-07-261-15/+80
* Check if XAuth round complies to configured authentication roundMartin Willi2012-07-261-7/+18
* Merge auth config items added from XAuth backends to IKE_SAMartin Willi2012-07-261-0/+1
* Add a return value to hasher_t.allocate_hash()Martin Willi2012-07-161-3/+17
* Check rng return value when generating fake NAT detection payloadsTobias Brunner2012-07-161-2/+3
* Nonce: Let get_nonce, allocate_nonce return booleanReto Buerki2012-07-161-1/+6
* Send cert request based on peers configured authentication classMartin Willi2012-07-101-3/+30
* Don't send CERTREQs when initiating aggressive mode PSKMartin Willi2012-07-091-0/+4
* As a responder, don't start a TRANSACTION request if we expect one from the i...Martin Willi2012-06-292-2/+4
* Queue a mode config task as responder if we need a virtual IPMartin Willi2012-06-272-4/+16
* Add basic support for XAuth responder authenticationMartin Willi2012-06-272-8/+10
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-31 21:44:07 +0000