| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| ... | |
| * | As Quick Mode initiator, select a subset of the proposed and the returned TS | Martin Willi | 2013-03-07 | 1 | -4/+11 |
| * | Use a complete port range in traffic_selector_create_from_{subnet,cidr} | Martin Willi | 2013-02-21 | 1 | -2/+2 |
| * | Merge branch 'ikev1-fragmentation' | Tobias Brunner | 2013-01-12 | 1 | -5/+44 |
| |\ |
|
| | * | Properly detect fragmentation capabilities | Tobias Brunner | 2013-01-12 | 1 | -3/+27 |
| | * | Added an option that allows to force IKEv1 fragmentation | Tobias Brunner | 2013-01-12 | 1 | -1/+1 |
| | * | Use a connection specific option to en-/disable IKEv1 fragmentation | Tobias Brunner | 2012-12-24 | 1 | -2/+4 |
| | * | Add an option to en-/disable IKE fragmentation | Tobias Brunner | 2012-12-24 | 1 | -4/+12 |
| | * | Log added NAT-T vendor IDs | Tobias Brunner | 2012-12-24 | 1 | -0/+1 |
| | * | Detect a peer's support for IKE fragmentation | Tobias Brunner | 2012-12-24 | 1 | -0/+4 |
| * | | Streamline debug output when receiving intermediate CA certificates in IKEv1 | Martin Willi | 2013-01-11 | 1 | -1/+1 |
| * | | Refactored IKEv1 cert payload processing to multiple functions | Martin Willi | 2013-01-11 | 1 | -73/+102 |
| * | | IKEv1 support for PKCS#7 wrapped certificates | Volker Rümelin | 2013-01-11 | 1 | -0/+70 |
| * | | Fixed some typos in comments | Volker Rümelin | 2013-01-11 | 1 | -1/+1 |
| |/ |
|
| * | Add parantheses to avoid compiler warning | Martin Willi | 2012-12-24 | 1 | -1/+1 |
| * | Fixed some typos, courtesy of codespell | Tobias Brunner | 2012-12-20 | 1 | -1/+1 |
| * | Add support for draft-ietf-ipsec-nat-t-ike-03 and earlier | Volker Rümelin | 2012-12-19 | 5 | -36/+204 |
| * | Fix traffic selectors also as initiator in case of transport mode over NAT | Tobias Brunner | 2012-12-13 | 1 | -1/+1 |
| * | Fix debug output if responder selected invalid traffic selectors during QM | Tobias Brunner | 2012-12-13 | 1 | -2/+2 |
| * | Log sent vendor IDs for IKEv1 | Tobias Brunner | 2012-11-02 | 1 | -0/+1 |
| * | Remove all ESP proposals with non-matching DH group during Quick Mode | Tobias Brunner | 2012-10-24 | 1 | -10/+22 |
| * | Missed one in 6c10cece | Tobias Brunner | 2012-09-28 | 1 | -0/+2 |
| * | Completed state handling in isakmp_cert_pre | Tobias Brunner | 2012-09-28 | 1 | -0/+4 |
| * | Don't complain about multiple TS in IKEv1, as it supported with Unity | Martin Willi | 2012-09-18 | 1 | -5/+0 |
| * | Derive a dynamic TS to multiple virtual IPs | Martin Willi | 2012-09-18 | 1 | -23/+28 |
| * | Use the vararg list constructor in quick mode task | Martin Willi | 2012-09-18 | 1 | -16/+8 |
| * | Change traffic selectors during Quick Mode in case of a NAT in transport mode | Tobias Brunner | 2012-09-14 | 1 | -9/+19 |
| * | Always send a configuration payload in IKEv1 TRANSACTIONs, even if it is empty | Martin Willi | 2012-09-11 | 1 | -29/+14 |
| * | Don't use host address for dynamic TS in IKEv1 if a virtual IP was expected | Martin Willi | 2012-09-11 | 1 | -40/+57 |
| * | Pass the full list of pools to acquire_address, enumerate in providers | Martin Willi | 2012-09-11 | 1 | -20/+6 |
| * | Add a responder narrow() hook to change TS in the kernel, but not on the wire | Martin Willi | 2012-09-11 | 1 | -2/+20 |
| * | Clear virtual IPs before storing assigned ones on the IKE_SA | Tobias Brunner | 2012-09-05 | 1 | -0/+4 |
| * | In mode_config, destroy temporary pool list instead of the virtual IP list twice | Martin Willi | 2012-09-05 | 1 | -1/+1 |
| * | Request and acquire multiple virtual IPs in IKEv1 Mode Config | Martin Willi | 2012-08-30 | 1 | -47/+61 |
| * | Pass all configured pool names to attribute provider enumerator | Martin Willi | 2012-08-30 | 1 | -2/+9 |
| * | Pass a list instead of a single virtual IP to attribute enumerators | Martin Willi | 2012-08-30 | 1 | -11/+35 |
| * | Support multiple address pools configured on a peer_cfg | Martin Willi | 2012-08-30 | 3 | -5/+12 |
| * | Support multiple virtual IPs on peer_cfg and ike_sa classes | Martin Willi | 2012-08-30 | 4 | -23/+46 |
| * | Merge branch 'android-ndk' | Tobias Brunner | 2012-08-13 | 1 | -1/+2 |
| |\ |
|
| | * | Replaced usages of CHARON_*_PORT with calls to get_port(). | Tobias Brunner | 2012-08-08 | 1 | -1/+2 |
| | * | Make the UDP ports charon listens for packets on (and uses as source ports) c... | Tobias Brunner | 2012-08-08 | 1 | -1/+1 |
| * | | Use actual daemon name to enable XAuth/PSK with aggressive mode | Martin Willi | 2012-08-10 | 1 | -2/+3 |
| |/ |
|
| * | Implement late peer config switching after XAuth authentication | Martin Willi | 2012-07-26 | 1 | -15/+80 |
| * | Check if XAuth round complies to configured authentication round | Martin Willi | 2012-07-26 | 1 | -7/+18 |
| * | Merge auth config items added from XAuth backends to IKE_SA | Martin Willi | 2012-07-26 | 1 | -0/+1 |
| * | Add a return value to hasher_t.allocate_hash() | Martin Willi | 2012-07-16 | 1 | -3/+17 |
| * | Check rng return value when generating fake NAT detection payloads | Tobias Brunner | 2012-07-16 | 1 | -2/+3 |
| * | Nonce: Let get_nonce, allocate_nonce return boolean | Reto Buerki | 2012-07-16 | 1 | -1/+6 |
| * | Send cert request based on peers configured authentication class | Martin Willi | 2012-07-10 | 1 | -3/+30 |
| * | Don't send CERTREQs when initiating aggressive mode PSK | Martin Willi | 2012-07-09 | 1 | -0/+4 |
| * | As a responder, don't start a TRANSACTION request if we expect one from the i... | Martin Willi | 2012-06-29 | 2 | -2/+4 |
