aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/sa
Commit message (Collapse)AuthorAgeFilesLines
...
| | * If no IKEv1 shared key found for hosts, try to find one based on config ↵Martin Willi2012-03-201-17/+68
| | | | | | | | | | | | identities
| | * Log peer cfg enumeration externally for flexibilityMartin Willi2012-03-202-2/+7
| | |
| | * Accept NULL identities passed to peer config enumerationMartin Willi2012-03-201-4/+1
| | |
| | * Fixed authentication method selection for main mode PSK authenticationMartin Willi2012-03-201-1/+1
| | |
| | * Use virtual IP to substitute dynamic traffic selectors in quick modeMartin Willi2012-03-201-6/+10
| | |
| | * Queue Mode Config tasks when requiredMartin Willi2012-03-202-10/+27
| | |
| | * Added IKEv1 Mode Config task based on IKEv2 ike_configMartin Willi2012-03-204-0/+471
| | |
| | * Reject quick modes if IKE_SA not yet establishedMartin Willi2012-03-201-0/+6
| | |
| | * Use a common function to set IKE_SA to establishedMartin Willi2012-03-201-29/+22
| | |
| | * Implemented responder part of XAUTH taskMartin Willi2012-03-201-12/+96
| | |
| | * Implemented initiator part of xauth taskMartin Willi2012-03-201-1/+167
| | |
| | * Get first XAuth backend if none configuredMartin Willi2012-03-201-1/+2
| | |
| | * Remove unused task swap_initiator methodMartin Willi2012-03-201-5/+0
| | |
| | * Use a string to identify xauth backends, no need for integer typesMartin Willi2012-03-204-64/+43
| | |
| | * Remove xauth_authenticator, we handle it in the taskMartin Willi2012-03-202-230/+0
| | |
| | * Use a second authentication config to configure XAUTH authenticationMartin Willi2012-03-201-33/+102
| | |
| | * Replace xauth_request task with a new stub where we reimplement itMartin Willi2012-03-2010-880/+238
| | |
| | * Added missing auth_method_t enum namesMartin Willi2012-03-201-1/+9
| | |
| | * Defined hybrid IKEv1 authentication methodsMartin Willi2012-03-201-0/+10
| | |
| | * Some notification errors added to main_mode process_rClavister OpenSource2012-03-201-4/+58
| | |
| | * Added possibility to send notification if task_manager->process failsClavister OpenSource2012-03-201-52/+68
| | |
| | * Handling of initial contactClavister OpenSource2012-03-203-0/+67
| | |
| | * Added retransmissions for initiator.Clavister OpenSource2012-03-201-10/+23
| | |
| | * Cleaned up quick mode notify processingMartin Willi2012-03-201-21/+33
| | |
| | * Add support for KE payloads in IKEv1 quick mode (PFS)Martin Willi2012-03-201-5/+82
| | |
| | * Use authenticators in IKEv1 main modeMartin Willi2012-03-201-247/+28
| | |
| | * Added a factory function for IKEv1 authenticatorsMartin Willi2012-03-202-2/+42
| | |
| | * Implemented IKEv1 pubkey SIG payload processing in an authenticatorMartin Willi2012-03-202-0/+259
| | |
| | * Implemented IKEv1 PSK HASH payload processing in separated authenticatorMartin Willi2012-03-202-0/+198
| | |
| | * Handle incoming delete messagesClavister OpenSource2012-03-203-6/+43
| | |
| | * Implemented post-authentication certificate handling for IKEv1Martin Willi2012-03-204-1/+406
| | |
| | * Cleanup CERT payload constructorsMartin Willi2012-03-201-5/+5
| | |
| | * Implemented pre-authentication certificate handling for IKEv1Martin Willi2012-03-204-4/+576
| | |
| | * Added task types for IKEv1 certificate handlingMartin Willi2012-03-202-0/+8
| | |
| | * Reverted ike_cert tasks to IKEv2 only, we use dedicated IKEv1 tasksMartin Willi2012-03-202-497/+41
| | |
| | * Install SAs with UDP encapsulation during Quick Mode.Tobias Brunner2012-03-201-16/+9
| | |
| | * Fix support for plain RSA authentication in IKEv1, both as initiator and ↵Martin Willi2012-03-202-30/+39
| | | | | | | | | | | | responder
| | * Fix referencing of multiple CERTREQ payload with IKEv1, other cleanupsMartin Willi2012-03-201-60/+53
| | |
| | * XAUTH additions for certificates.Clavister OpenSource2012-03-201-6/+17
| | |
| | * signature payload handling.Clavister OpenSource2012-03-201-10/+188
| | |
| | * certificate tasks added to passive list for responderClavister OpenSource2012-03-201-0/+6
| | |
| | * certificate handling for XAuth responder.Clavister OpenSource2012-03-202-43/+506
| | |
| | * keymat: derive_ike_keys updated with XAUTH RSA:sClavister OpenSource2012-03-201-1/+7
| | |
| | * IKEv1: Added basic support for INFORMATIONAL exchange types, and for ↵Clavister OpenSource2012-03-202-2/+69
| | | | | | | | | | | | NOTIFY_V1 messages in the 3rd message in quick_mode.
| | * Don't stop processing tasks if one returns SUCCESS.Tobias Brunner2012-03-201-3/+8
| | | | | | | | | | | | Only send a response if at least one of the tasks requires it.
| | * IKEv1 XAuth: Added a "NULL" XAuth plugin which sends a hardcoded user/pass, ↵Clavister OpenSource2012-03-202-17/+38
| | | | | | | | | | | | and blindly accepts whatever user/pass is sent it. Changed the xauth_request task to use this new plugin. Add --enable-xauth-null to your configure line to build with the new plugin.
| | * IKEv1 XAuth: Added plugin support for XAuth, which allows us to have plugins ↵Clavister OpenSource2012-03-206-0/+647
| | | | | | | | | | | | to talk to servers with different quirks for XAuth authentication.
| | * Add NAT-OA payloads during Quick Mode if transport mode is used.Tobias Brunner2012-03-201-2/+44
| | | | | | | | | | | | | | | We don't parse them currently, as the Linux kernel does not need them to fix the IP header checksum.
| | * Negotiate UDP encapsulation during Quick Mode if NAT is detected.Tobias Brunner2012-03-201-2/+14
| | |
| | * Task added for IKEv1 NAT detection.Tobias Brunner2012-03-206-2/+502
| | | | | | | | | | | | There is already support for both Main and Aggressive Mode.
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-07 11:53:33 +0000