| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Add the reqid to kernel_ipsec_t.del_policy. | Tobias Brunner | 2011-07-06 | 1 | -6/+12 |
| * | implemented PASS and DROP shunt policies | Andreas Steffen | 2011-06-28 | 2 | -0/+311 |
| * | Initialize trap_manager listener with INIT macro, too | Martin Willi | 2011-06-28 | 1 | -8/+9 |
| * | Migrated trap_manager_t to INIT/METHOD macros | Andreas Steffen | 2011-06-28 | 1 | -45/+32 |
| * | Check if colliding task has actually a CHILD, i.e. after a migrate | Martin Willi | 2011-06-03 | 1 | -1/+4 |
| * | logging initial EAP Identifier in EAP Identity Request | Andreas Steffen | 2011-05-29 | 1 | -3/+5 |
| * | Added strongswan.conf option to override half open IKE_SA timeout | Martin Willi | 2011-05-16 | 1 | -1/+2 |
| * | Added a get_count() method to IKE_SA manager | Martin Willi | 2011-05-16 | 2 | -3/+27 |
| * | Fixed identiation in private_ike_sa_manager | Martin Willi | 2011-05-16 | 1 | -57/+57 |
| * | Added a non-blocking, skipping variant of IKE_SA enumerator | Martin Willi | 2011-05-16 | 2 | -6/+24 |
| * | Typo fixed. | Tobias Brunner | 2011-04-28 | 1 | -1/+1 |
| * | Resolve and connect to RADIUS servers not before required | Martin Willi | 2011-04-21 | 1 | -0/+1 |
| * | Remove superfluous test for peer_cfg on established IKE_SAs | Martin Willi | 2011-04-20 | 1 | -1/+1 |
| * | Install ESN SAs if such a proposal has been negotiated | Martin Willi | 2011-04-20 | 1 | -1/+4 |
| * | Added an esn parameter to the kernel interface add_sa functions | Martin Willi | 2011-04-20 | 1 | -1/+1 |
| * | Clearly mark switch cases that fall through. | Tobias Brunner | 2011-04-19 | 1 | -0/+1 |
| * | Neither rekey nor del can be NULL. | Tobias Brunner | 2011-04-14 | 1 | -2/+2 |
| * | display EAP identifiers in HEX format | Andreas Steffen | 2011-04-06 | 1 | -4/+4 |
| * | log the EAP identifier also for vendor specific EAP methods | Andreas Steffen | 2011-04-05 | 1 | -2/+2 |
| * | log the initial value of the EAP identifier | Andreas Steffen | 2011-04-05 | 1 | -5/+6 |
| * | added get_identifier() and set_identifier() methods | Andreas Steffen | 2011-04-05 | 1 | -3/+18 |
| * | Move establish/inherit of rekeyed IKE_SAs to delete messages | Martin Willi | 2011-03-15 | 5 | -58/+54 |
| * | Wrap IKE delete after rekey into rekey task for responder, too | Martin Willi | 2011-03-15 | 1 | -1/+18 |
| * | Migrated ike_rekey task to INIT/METHOD macros | Martin Willi | 2011-03-15 | 1 | -59/+40 |
| * | Migrated sim_manager to INIT/METHOD macros | Martin Willi | 2011-03-08 | 1 | -150/+92 |
| * | Protect sim card/provider/hook (un-)registration with a rwlock | Martin Willi | 2011-03-08 | 1 | -0/+58 |
| * | Splitted sim_manager.h header to sim_{card,provider,hooks}.h | Martin Willi | 2011-03-08 | 4 | -226/+305 |
| * | Slightly change IKE_SA destruction order to inherit properly during ike_rekey... | Martin Willi | 2011-02-28 | 2 | -3/+3 |
| * | Report correct key size if a cipher is not supported | Martin Willi | 2011-02-07 | 1 | -1/+1 |
| * | Some typos fixed. | Tobias Brunner | 2011-02-07 | 1 | -1/+1 |
| * | Invoke the per-round authorize() hook before purging current auth info on IKE_SA | Martin Willi | 2011-02-03 | 1 | -10/+10 |
| * | Migrated ike_auth to INIT/METHOD macros, fixes missing initial_contact initia... | Martin Willi | 2011-02-02 | 1 | -56/+34 |
| * | Do not use destroyed rng/hasher if IKE_SA has been flush()ed | Martin Willi | 2011-02-01 | 1 | -3/+9 |
| * | Do not log potentially hundreds of cert requests for unknown CAs at level 1 | Martin Willi | 2011-01-28 | 1 | -1/+8 |
| * | Revert "Send INITIAL_CONTACT even if we have a unique policy" | Martin Willi | 2011-01-13 | 1 | -1/+2 |
| * | Force port update as responder when initiator switches to 4500 in IKE_AUTH | Martin Willi | 2011-01-12 | 3 | -5/+6 |
| * | Avoid variable name overloading | Martin Willi | 2011-01-12 | 1 | -7/+11 |
| * | Send INITIAL_CONTACT even if we have a unique policy | Martin Willi | 2011-01-10 | 1 | -2/+1 |
| * | Fix nonce comparison in rekey collisions, lowest nonce loses | Martin Willi | 2011-01-07 | 2 | -7/+7 |
| * | Destroy existing IKE_SAs with same identities when receiving INITIAL_CONTACT | Martin Willi | 2011-01-05 | 3 | -4/+33 |
| * | Send INITIAL_CONTACT for the first IKE_SA if it has a unique policy | Martin Willi | 2011-01-05 | 3 | -16/+66 |
| * | Migrated ike_sa_manager_t to INIT/METHOD macros, some cleanups | Martin Willi | 2011-01-05 | 1 | -189/+180 |
| * | Provide CRLs received in CERT payloads to trustchain verification | Martin Willi | 2011-01-05 | 1 | -1/+9 |
| * | Include the used reserved bytes from ID payloads in AUTH calculation | Martin Willi | 2011-01-05 | 11 | -39/+126 |
| * | Migrated psk/pubkey_authenticators to INIT/METHOD macros | Martin Willi | 2011-01-05 | 2 | -84/+70 |
| * | Moved check if packet already encoded to ike_sa, avoids message() hook invoca... | Martin Willi | 2011-01-05 | 1 | -0/+5 |
| * | Move critical bit checking to ike_sa, notify payload includes unsupported pay... | Martin Willi | 2011-01-05 | 3 | -11/+61 |
| * | Handle all error notifies in CREATE_CHILD_SA exchanges | Martin Willi | 2011-01-05 | 1 | -0/+14 |
| * | Ingore messages with exchange type altered to UNDEFINED in message() hook | Martin Willi | 2011-01-05 | 1 | -0/+8 |
| * | Moved message()-hook invocation to generate_message(), catch pre-generated IK... | Martin Willi | 2011-01-05 | 2 | -2/+1 |
