aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/sa/tasks
Commit message (Collapse)AuthorAgeFilesLines
...
* Fixed authentication method selection for main mode PSK authenticationMartin Willi2012-03-201-1/+1
|
* Use virtual IP to substitute dynamic traffic selectors in quick modeMartin Willi2012-03-201-6/+10
|
* Queue Mode Config tasks when requiredMartin Willi2012-03-201-0/+7
|
* Added IKEv1 Mode Config task based on IKEv2 ike_configMartin Willi2012-03-204-0/+471
|
* Use a common function to set IKE_SA to establishedMartin Willi2012-03-201-29/+22
|
* Implemented responder part of XAUTH taskMartin Willi2012-03-201-12/+96
|
* Implemented initiator part of xauth taskMartin Willi2012-03-201-1/+167
|
* Remove unused task swap_initiator methodMartin Willi2012-03-201-5/+0
|
* Use a second authentication config to configure XAUTH authenticationMartin Willi2012-03-201-33/+102
|
* Replace xauth_request task with a new stub where we reimplement itMartin Willi2012-03-207-856/+208
|
* Some notification errors added to main_mode process_rClavister OpenSource2012-03-201-4/+58
|
* Handling of initial contactClavister OpenSource2012-03-201-0/+51
|
* Cleaned up quick mode notify processingMartin Willi2012-03-201-21/+33
|
* Add support for KE payloads in IKEv1 quick mode (PFS)Martin Willi2012-03-201-5/+82
|
* Use authenticators in IKEv1 main modeMartin Willi2012-03-201-247/+28
|
* Handle incoming delete messagesClavister OpenSource2012-03-202-4/+26
|
* Implemented post-authentication certificate handling for IKEv1Martin Willi2012-03-202-0/+399
|
* Cleanup CERT payload constructorsMartin Willi2012-03-201-5/+5
|
* Implemented pre-authentication certificate handling for IKEv1Martin Willi2012-03-202-0/+570
|
* Added task types for IKEv1 certificate handlingMartin Willi2012-03-202-0/+8
|
* Reverted ike_cert tasks to IKEv2 only, we use dedicated IKEv1 tasksMartin Willi2012-03-202-497/+41
|
* Install SAs with UDP encapsulation during Quick Mode.Tobias Brunner2012-03-201-16/+9
|
* Fix support for plain RSA authentication in IKEv1, both as initiator and ↵Martin Willi2012-03-201-23/+37
| | | | responder
* Fix referencing of multiple CERTREQ payload with IKEv1, other cleanupsMartin Willi2012-03-201-60/+53
|
* XAUTH additions for certificates.Clavister OpenSource2012-03-201-6/+17
|
* signature payload handling.Clavister OpenSource2012-03-201-10/+188
|
* certificate handling for XAuth responder.Clavister OpenSource2012-03-202-43/+506
|
* IKEv1: Added basic support for INFORMATIONAL exchange types, and for ↵Clavister OpenSource2012-03-201-0/+29
| | | | NOTIFY_V1 messages in the 3rd message in quick_mode.
* IKEv1 XAuth: Added a "NULL" XAuth plugin which sends a hardcoded user/pass, ↵Clavister OpenSource2012-03-201-16/+37
| | | | and blindly accepts whatever user/pass is sent it. Changed the xauth_request task to use this new plugin. Add --enable-xauth-null to your configure line to build with the new plugin.
* Add NAT-OA payloads during Quick Mode if transport mode is used.Tobias Brunner2012-03-201-2/+44
| | | | | We don't parse them currently, as the Linux kernel does not need them to fix the IP header checksum.
* Negotiate UDP encapsulation during Quick Mode if NAT is detected.Tobias Brunner2012-03-201-2/+14
|
* Task added for IKEv1 NAT detection.Tobias Brunner2012-03-204-1/+495
| | | | There is already support for both Main and Aggressive Mode.
* Create negotiated hasher earlier during Main Mode so it is available for ↵Tobias Brunner2012-03-201-0/+8
| | | | building NAT-D payloads.
* IKEv1 XAuth: Moving the state change to IKE_CONNECTED until after XAuth ↵Clavister OpenSource2012-03-202-17/+37
| | | | exchanges are complete.
* Handle IKEv1 NAT-T vendor ID payload (only RFC 3947 for now).Tobias Brunner2012-03-201-0/+18
|
* Added payloads for IKEv1 NAT-Traversal negotiation.Tobias Brunner2012-03-201-1/+1
|
* IKEv1 XAuth: Clean up debug prints in xauth_request task.Clavister OpenSource2012-03-201-13/+0
|
* IKEv1 XAuth + CfgMode: Added ability to process CfgMode messages in the ↵Clavister OpenSource2012-03-201-76/+543
| | | | xauth task. Migrated away from using the MIGRATE method to switch queues.
* IKEv1 XAuth: Change the main_mode task to use the new initiate_xauth job ↵Clavister OpenSource2012-03-201-4/+27
| | | | instead of the old MIGRATE method.
* IKEv1 XAuth: Fix main mode to work with XAuth PSK.Clavister OpenSource2012-03-201-2/+2
|
* Use a dedicated IKEv1 vendor ID task to fix using IKEv2 payloads in IKEv1Martin Willi2012-03-205-30/+218
|
* Pass concrete auth_method to key derivation, as we have that as a responderMartin Willi2012-03-201-5/+2
|
* Map auth_class to auth method and IKEv1 proposal attributeMartin Willi2012-03-201-0/+5
|
* Exchange IKEv1 ESP SA proposal informationMartin Willi2012-03-201-2/+66
|
* Exchange IKEv1 SA specific proposal data with SA payloadMartin Willi2012-03-201-13/+69
|
* Added not-yet used sa_payload parameters used in IKEv1Martin Willi2012-03-204-16/+12
|
* IKEv1 XAuth: Changed the xauth_request task to use the new MIGRATE status.Clavister OpenSource2012-03-201-1/+1
|
* IKEv1 XAuth: Added new "swap_initiator" method to the standard task_t ↵Clavister OpenSource2012-03-202-0/+23
| | | | interface. This is needed for when we move a task from the passive queue to the active one. I'm not a huge fan of this method of doing things. Perhaps we should change task_t to have build_i, build_r, process_i, and process_r methods, and call the appropriate one from the task manager, since we have these methods for most tasks anyways.
* IKEv1 XAuth: XAuthInitPreShared working for XAuth initiator (Main Mode ↵Clavister OpenSource2012-03-201-15/+123
| | | | responder). Creates USER/PASS request, retrieves the result and sends status.
* IKEv1 XAuth: Added ability to initiate the XAuth transactions under a flag, ↵Clavister OpenSource2012-03-201-1/+5
| | | | default not to initiate XAuth.
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-29 03:45:42 +0000