aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/sa/ikev1
Commit message (Expand)AuthorAgeFilesLines
...
* libcharon: Use lib->ns instead of charon->nameTobias Brunner2014-02-124-10/+10
* ikev1: Fix config switching due to failed authentication during Aggressive modeTobias Brunner2014-02-121-3/+1
* ike_sa: Defer task manager destruction after child destructionThomas Egerer2014-01-161-4/+3
* ikev1: Properly initialize list of fragments in case fragment ID is 0Volker RĂ¼melin2013-10-311-1/+1
* iv_gen: aead_t implementations provide an IV generatorTobias Brunner2013-10-111-0/+8
* ikev1: Delete quick modes with the negotiated SA protocolMartin Willi2013-10-111-1/+1
* ikev1: Negotiate SPI with the first/negotiated proposal protocolMartin Willi2013-10-111-3/+18
* ikev1: Fix double free when searching for redundant CHILD_SAsTobias Brunner2013-09-131-1/+1
* ikev1: For PFS prefer DH group from IKE_SA over first configuredThomas Egerer2013-09-101-18/+54
* ikev1: implement mode config push modeMartin Willi2013-09-045-76/+363
* xauth: add a configuration string option to be passed to XAuth instancesMartin Willi2013-09-031-1/+1
* ikev1: Fix calculation of the number of fragmentsTobias Brunner2013-08-151-1/+1
* ikev1: When sending fragments, use ports to decide if a non-ESP marker is addedTobias Brunner2013-08-151-6/+8
* ikev1: Always send ID payloads (traffic selectors) during Quick ModeTobias Brunner2013-07-251-26/+4
* ikev1: Reestablish IKE_SA/CHILD_SAs if it gets deleted by the peerTobias Brunner2013-07-171-0/+5
* ike: Migrate queued CHILD_SA-creating tasks when reestablishing an IKE_SATobias Brunner2013-07-171-0/+34
* ikev1: Support closeaction of CHILD_SA.Oliver Smith2013-07-171-7/+49
* child-sa: replace get_traffic_selectors() with create_ts_enumerator()Martin Willi2013-07-173-27/+37
* ike: Force NAT-T/UDP encapsulation if kernel interface requires itTobias Brunner2013-06-211-2/+16
* kernel-interface: add an exchange initiator parameter to add_sa()Martin Willi2013-06-111-8/+12
* ikev1: keep vendor ID task alive during full Main/Aggressive ModeMartin Willi2013-06-111-8/+75
* Allow IPComp on NATed connections, both for IKEv1 and IKEv2Martin Willi2013-06-111-26/+10
* Refactor check_for_rekeyed_child() in quick_mode taskMartin Willi2013-04-031-18/+24
* Reuse reqid of an existing Quick Mode, even if it has been rekeyedMartin Willi2013-04-031-1/+2
* Fixed some typos, courtesy of codespellTobias Brunner2013-03-251-1/+1
* Delete IKE_SAs if responder does not initiate XAuth exchange within a certain...Tobias Brunner2013-03-192-2/+16
* Added xauth-noauth pluginTobias Brunner2013-03-191-29/+37
* Make check whether to use IKEv1 fragmentation more readableMartin Willi2013-03-141-5/+14
* child_sa_t.get_usestats() can additionally return the number of processed pac...Martin Willi2013-03-141-2/+2
* Add missing XAuthRespPSK switch case to IKEv1 key derivationMartin Willi2013-03-121-0/+1
* Ignore fourth Qick Mode message sent by Windows servers.Martin Willi2013-03-111-0/+9
* As Quick Mode initiator, select a subset of the proposed and the returned TSMartin Willi2013-03-071-4/+11
* Merge branch 'opaque-ports'Martin Willi2013-03-011-2/+2
|\
| * Use a complete port range in traffic_selector_create_from_{subnet,cidr}Martin Willi2013-02-211-2/+2
* | Move initial message dropping to task managerMartin Willi2013-02-251-1/+15
|/
* Properly send IKEv1 packets if no ike_cfg is known yetTobias Brunner2013-01-141-2/+5
* Merge branch 'ikev1-fragmentation'Tobias Brunner2013-01-122-22/+371
|\
| * Added an option to configure the maximum size of a fragmentTobias Brunner2013-01-121-3/+10
| * Properly detect fragmentation capabilitiesTobias Brunner2013-01-121-3/+27
| * Added an option that allows to force IKEv1 fragmentationTobias Brunner2013-01-122-3/+6
| * Use a connection specific option to en-/disable IKEv1 fragmentationTobias Brunner2012-12-242-10/+7
| * Add an option to en-/disable IKE fragmentationTobias Brunner2012-12-242-5/+20
| * Split larger messages into fragments if IKE fragmentation is supported by peerTobias Brunner2012-12-241-14/+114
| * Log added NAT-T vendor IDsTobias Brunner2012-12-241-0/+1
| * Detect a peer's support for IKE fragmentationTobias Brunner2012-12-241-0/+4
| * Don't handle fragmented messages larger than charon.max_packetTobias Brunner2012-12-241-4/+39
| * Store inbound IKE fragments and reassemble the message when all fragments are...Tobias Brunner2012-12-241-3/+166
* | Streamline debug output when receiving intermediate CA certificates in IKEv1Martin Willi2013-01-111-1/+1
* | Refactored IKEv1 cert payload processing to multiple functionsMartin Willi2013-01-111-73/+102
* | IKEv1 support for PKCS#7 wrapped certificatesVolker RĂ¼melin2013-01-111-0/+70
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-26 10:14:22 +0000