| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| ... | |
| | | * | Invoke authorization hooks for IKEv1 connections | Martin Willi | 2012-03-20 | 3 | -25/+95 |
| | | * | Invoke ike_updown hooks for reauthenticated IKEv1 SAs | Martin Willi | 2012-03-20 | 1 | -0/+1 |
| | | * | Don't invoke a child_updown hook when a quick mode to delete has been rekeyed | Martin Willi | 2012-03-20 | 1 | -1/+6 |
| | | * | Invoke child_rekey hook instead of child_updown when rekeying a quick mode | Martin Willi | 2012-03-20 | 3 | -2/+36 |
| | | * | Don't invoke updown hook when flushing SAs for IKEv1, tasks will do it | Martin Willi | 2012-03-20 | 1 | -10/+12 |
| | | * | Fix "incoming" flag passed to bus_t.message() hook | Martin Willi | 2012-03-20 | 1 | -1/+1 |
| | | * | Continue with next exchange after sending an INFORMATIONAL | Martin Willi | 2012-03-20 | 1 | -1/+2 |
| | | * | Handle retransmission of DPD exchange, both as initiator and responder | Martin Willi | 2012-03-20 | 1 | -22/+37 |
| | | * | Disable DPD checking for peers not supporting it | Martin Willi | 2012-03-20 | 3 | -3/+20 |
| | | * | Added missing DPD task name | Martin Willi | 2012-03-20 | 2 | -3/+3 |
| | | * | Confirm message reception time only if DPD sequence number valid | Martin Willi | 2012-03-20 | 2 | -3/+10 |
| | | * | Simplified DPD handling by using a task for a single message only | Martin Willi | 2012-03-20 | 8 | -272/+114 |
| | | * | Check if we have an RNG for IKEv1 task manager before using it | Martin Willi | 2012-03-20 | 1 | -9/+9 |
| | | * | Remove unused DPD sequence number getter on task manager | Martin Willi | 2012-03-20 | 2 | -13/+2 |
| | | * | Don't retransmit, rekey, reauth or DPD check SAs when in PASSIVE state | Martin Willi | 2012-03-20 | 1 | -0/+24 |
| | | * | Send DPD vendor ID | Clavister OpenSource | 2012-03-20 | 1 | -1/+1 |
| | | * | Isakmp_dpd task added. | Clavister OpenSource | 2012-03-20 | 10 | -9/+445 |
| | | * | Request and handle retransmission of a lost third aggressive mode message | Martin Willi | 2012-03-20 | 1 | -5/+8 |
| | | * | Streamlined debug output when initiating IKEv1 IKE_SAs | Martin Willi | 2012-03-20 | 2 | -2/+2 |
| | | * | Enforce encapsulation mode of configuration, in case initiator proposes both | Martin Willi | 2012-03-20 | 1 | -1/+2 |
| | | * | Handle aggressive mode task in IKEv1 task manager | Martin Willi | 2012-03-20 | 1 | -6/+36 |
| | | * | Select IKEv1 configurations by main/aggressive mode option | Martin Willi | 2012-03-20 | 4 | -5/+8 |
| | | * | Fix sending of CERTREQ/CERT payloads in aggressive mode | Martin Willi | 2012-03-20 | 2 | -2/+12 |
| | | * | Implemented aggressive mode using Phase 1 helper class | Martin Willi | 2012-03-20 | 4 | -0/+682 |
| | | * | Make use of the new Phase 1 helper class in main mode | Martin Willi | 2012-03-20 | 1 | -579/+73 |
| | | * | Implemented a common Phase 1 helper class to use by main and aggressive modes | Martin Willi | 2012-03-20 | 2 | -0/+753 |
| | | * | Fix error handling if no PSK found for main mode | Martin Willi | 2012-03-20 | 1 | -5/+9 |
| | | * | Install quick mode CHILD_SAs with negotiated encapsulation mode | Martin Willi | 2012-03-20 | 1 | -12/+17 |
| | | * | Try to detect reauthentication as responder and adopt children to new SA | Martin Willi | 2012-03-20 | 2 | -0/+7 |
| | | * | Destroy IKE_SA after reauthentication initiatend and lifetime limit reached | Martin Willi | 2012-03-20 | 1 | -1/+6 |
| | | * | Added an IKE_SA manager method to enumerate IKE_SA IDs filtered by identities | Martin Willi | 2012-03-20 | 2 | -34/+59 |
| | | * | Query for XAuth identity in get_other_eap_id(), too | Martin Willi | 2012-03-20 | 1 | -0/+4 |
| | | * | Set ISAKMP SA state to rekeying after triggering reauthentication | Martin Willi | 2012-03-20 | 1 | -0/+1 |
| | | * | Include peer config overtime in negotiated ISAKMP SA lifetime | Martin Willi | 2012-03-20 | 1 | -2/+3 |
| | | * | Initiate IKEv1 reauthentication, take over all children | Martin Willi | 2012-03-20 | 1 | -4/+44 |
| | | * | Establish IKE_SA only once as XAuth responder | Martin Willi | 2012-03-20 | 1 | -1/+0 |
| | | * | Support initiation of childless IKEv1 ISAKMP SAs | Martin Willi | 2012-03-20 | 1 | -1/+2 |
| | | * | Don't trigger reauthentication if initiator authenticated using XAuth | Martin Willi | 2012-03-20 | 1 | -0/+1 |
| | | * | Set a condition flag if peer has been authenticated using XAuth | Martin Willi | 2012-03-20 | 2 | -0/+6 |
| | | * | Queue Mode Config tasks after main mode as initiator, not as responder | Martin Willi | 2012-03-20 | 1 | -6/+6 |
| | | * | Setting Mode Cfg identifier for CFG_ACK messages. | Clavister OpenSource | 2012-03-20 | 1 | -0/+7 |
| | | * | As responder, try to reuse the reqid of the CHILD_SA the initiator is rekeying | Martin Willi | 2012-03-20 | 1 | -0/+38 |
| | | * | Reply quick mode with the same SA lifetime that we received | Martin Willi | 2012-03-20 | 1 | -4/+4 |
| | | * | Do not query CHILD_SA during delete if they already expired | Martin Willi | 2012-03-20 | 12 | -37/+84 |
| | | * | Implemented CHILD_SA rekeying | Martin Willi | 2012-03-20 | 1 | -1/+18 |
| | | * | Don't return FAILED if a CHILD_SA to delete could not be found | Martin Willi | 2012-03-20 | 1 | -1/+1 |
| | | * | Support installing of quick mode SAs with a specific reqid | Martin Willi | 2012-03-20 | 3 | -3/+27 |
| | | * | Double check that we could select a TS as quick mode responder | Martin Willi | 2012-03-20 | 1 | -3/+3 |
| | | * | Implemented responder retransmission, currently enabled for quick mode only | Martin Willi | 2012-03-20 | 2 | -57/+117 |
| | | * | Queue IKEv1 INFORMATIONALS with higher priority to process notifies first | Martin Willi | 2012-03-20 | 1 | -2/+2 |
