| Commit message (Collapse) | Author | Age | Files | Lines | ||
|---|---|---|---|---|---|---|
| ... | ||||||
| * | Pass all configured pool names to attribute provider enumerator | Martin Willi | 2012-08-30 | 1 | -2/+9 | |
| | | ||||||
| * | Pass a list instead of a single virtual IP to attribute enumerators | Martin Willi | 2012-08-30 | 1 | -11/+36 | |
| | | ||||||
| * | Support multiple address pools configured on a peer_cfg | Martin Willi | 2012-08-30 | 1 | -3/+11 | |
| | | ||||||
| * | Support multiple virtual IPs on peer_cfg and ike_sa classes | Martin Willi | 2012-08-30 | 3 | -55/+68 | |
| | | ||||||
| * | Moved packet_t to libstrongswan | Tobias Brunner | 2012-08-08 | 1 | -1/+1 | |
| | | ||||||
| * | Replaced usages of CHARON_*_PORT with calls to get_port(). | Tobias Brunner | 2012-08-08 | 1 | -2/+6 | |
| | | ||||||
| * | Make the UDP ports charon listens for packets on (and uses as source ports) ↵ | Tobias Brunner | 2012-08-08 | 1 | -5/+5 | |
| | | | | | configurable. | |||||
| * | Add a return value to hasher_t.allocate_hash() | Martin Willi | 2012-07-16 | 2 | -9/+38 | |
| | | ||||||
| * | Check rng return value when generating ME CONNECT_ID and KEY | Tobias Brunner | 2012-07-16 | 1 | -2/+14 | |
| | | ||||||
| * | Check rng return value when generating COOKIE2 during MOBIKE | Tobias Brunner | 2012-07-16 | 1 | -6/+11 | |
| | | ||||||
| * | Check rng return value when generating fake NAT detection payloads | Tobias Brunner | 2012-07-16 | 1 | -2/+2 | |
| | | ||||||
| * | Nonce: Let get_nonce, allocate_nonce return boolean | Reto Buerki | 2012-07-16 | 2 | -3/+19 | |
| | | ||||||
| * | Simplify NAT-D payload creation if UDP encapsulation is forced | Tobias Brunner | 2012-07-13 | 1 | -2/+2 | |
| | | | | | | We don't need any address lookups in that case as the content of the payload is generated randomly anyway. | |||||
| * | Ignore a received %any virtual IP for installation | Martin Willi | 2012-06-26 | 1 | -1/+2 | |
| | | ||||||
| * | Try to rekey without KE exchange if peer returns INVALID_KE_PAYLOAD(NONE) | Martin Willi | 2012-06-08 | 1 | -1/+8 | |
| | | | | | | | According to RFC5996, implementations should just ignore the KE payload if they select a non-PFS proposals. Some implementations don't, but return MODP_NONE in INVALID_KE_PAYLOAD, hence we accept that, too. | |||||
| * | As responder, enforce the same configuration while rekeying CHILD_SAs | Martin Willi | 2012-06-06 | 3 | -1/+19 | |
| | | ||||||
| * | Fix MOBIKE address update if responder address changed. | Tobias Brunner | 2012-05-25 | 1 | -2/+2 | |
| | | | | | | Use the source address of the current MOBIKE message as peer address instead of assuming the address cached on the IKE_SA is still valid. | |||||
| * | Don't queue delete_ike_sa job when setting IKE_DELETING. | Tobias Brunner | 2012-05-25 | 1 | -1/+1 | |
| | | | | | | This avoids deleting IKE_SAs during reauthentication (without trying to reestablish them). | |||||
| * | Integrated main parts of IKE_REAUTH task into ike_sa_t.reestablish. | Tobias Brunner | 2012-05-25 | 1 | -87/+3 | |
| | | ||||||
| * | Use separate Doxygen groups for IKEv1 and IKEv2 entities (authenticators, ↵ | Tobias Brunner | 2012-05-18 | 17 | -18/+18 | |
| | | | | | tasks etc.). | |||||
| * | Use nonce_gen instead of rng to generate nonces | Adrian-Ken Rueegsegger | 2012-05-18 | 2 | -22/+22 | |
| | | | | | | Replace usage of rng plugin with nonce generator to create nonces in IKE_INIT, CHILD_CREATE and QUICK_MODE tasks and the IKEv1 phase 1 helper. | |||||
| * | vendor ID cosmetics | Andreas Steffen | 2012-05-05 | 1 | -2/+2 | |
| | | ||||||
| * | Use name from initialization to access settings in libcharon. | Tobias Brunner | 2012-05-03 | 4 | -5/+6 | |
| | | | | | Also fixes several whitespace errors. | |||||
| * | Merge branch 'ikev1' | Martin Willi | 2012-05-02 | 2 | -10/+23 | |
| | | | | | | | | | | | | | | | | | Conflicts: configure.in man/ipsec.conf.5.in src/libcharon/encoding/generator.c src/libcharon/encoding/payloads/notify_payload.c src/libcharon/encoding/payloads/notify_payload.h src/libcharon/encoding/payloads/payload.c src/libcharon/network/receiver.c src/libcharon/sa/authenticator.c src/libcharon/sa/authenticator.h src/libcharon/sa/ikev2/tasks/ike_init.c src/libcharon/sa/task_manager.c src/libstrongswan/credentials/auth_cfg.c | |||||
| * | Merge branch 'ikev1-clean' into ikev1-master | Martin Willi | 2012-03-20 | 2 | -16/+13 | |
| | | | | | | | | | | | | | | | | | | | | | Conflicts: configure.in man/ipsec.conf.5.in src/libcharon/daemon.c src/libcharon/plugins/eap_ttls/eap_ttls_peer.c src/libcharon/plugins/eap_radius/eap_radius_accounting.c src/libcharon/plugins/eap_radius/eap_radius_forward.c src/libcharon/plugins/farp/farp_listener.c src/libcharon/sa/ike_sa.c src/libcharon/sa/keymat.c src/libcharon/sa/task_manager.c src/libcharon/sa/trap_manager.c src/libstrongswan/plugins/x509/x509_cert.c src/libstrongswan/utils.h Applied lost changes of moved files keymat.c and task_manager.c. Updated listener_t.message hook signature in new plugins. | |||||
| * | Pass IKEv1 specific keymat to ike_keys hook | Martin Willi | 2012-03-20 | 1 | -2/+2 | |
| | | ||||||
| * | Get a reference for the child_cfg passed to child_create_create() | Martin Willi | 2012-03-20 | 1 | -2/+2 | |
| | | ||||||
| * | Do not query CHILD_SA during delete if they already expired | Martin Willi | 2012-03-20 | 3 | -13/+33 | |
| | | ||||||
| * | Handle initiation of not supported IKE versions properly | Martin Willi | 2012-03-20 | 2 | -9/+17 | |
| | | ||||||
| * | Separated libcharon/sa directory with ikev1 and ikev2 subfolders | Martin Willi | 2012-03-20 | 34 | -0/+9304 | |
 |
index : tteras/strongswan | |
| tteras' strongSwan tree | gitolite |
| aboutsummaryrefslogtreecommitdiffstats |