aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon
Commit message (Collapse)AuthorAgeFilesLines
...
* Respect key types in stroke key/certificate backendMartin Willi2010-09-021-15/+24
|
* increase number of message due to large certificate payloadsAndreas Steffen2010-09-011-1/+1
|
* Load a left/rightcert2 for EAP-TLS even if no left/rightauth2 is definedMartin Willi2010-08-311-1/+10
|
* Use the AAA Identity for EAP authentication, if givenMartin Willi2010-08-312-1/+14
|
* Added support for the ipsec.conf aaa_identity keywordMartin Willi2010-08-312-0/+7
|
* Added strongswan.conf options for EAP-TLS/TTLS fragment sizeMartin Willi2010-08-312-9/+20
|
* Migrated EAP-TTLS to the generic TLS helperMartin Willi2010-08-311-281/+21
|
* Migrated EAP-TLS to the generic TLS helperMartin Willi2010-08-311-272/+19
|
* Support output fragmentation of TLS recordsMartin Willi2010-08-312-4/+6
|
* Moved EAP type/code definitions to a seprate header file in libstrongswanMartin Willi2010-08-312-35/+1
|
* Enable the generation of unencrypted messages (e.g. ME connectivity checks).Tobias Brunner2010-08-301-9/+10
|
* fixed copy-and-paste errorsAndreas Steffen2010-08-302-2/+2
|
* created an eap-tnc method hullAndreas Steffen2010-08-306-0/+363
|
* for the time being assume a single request/response exchange for a given EAP ↵Andreas Steffen2010-08-301-2/+3
| | | | method
* Port floating patch partially reversed.Tobias Brunner2010-08-302-12/+8
| | | | | | If MOBIKE is enabled, we do have to switch to port 4500 with the IKE_AUTH request, that is, before we know whether the other peer actually supports MOBIKE or not.
* Slightly refactored port floating.Tobias Brunner2010-08-305-35/+39
| | | | In case of MOBIKE, only float to port 4500 if the other peer actually supports MOBIKE.
* Fixed ME after introduction of AEAD wrapper.Tobias Brunner2010-08-301-1/+1
|
* Win7 might send up to 7k of certificate requestsAndreas Steffen2010-08-273-3/+3
|
* Update delete_payload length when adding SPIsMartin Willi2010-08-251-0/+1
|
* Migrated delete_payload to INIT/METHOD macros, replaced iteratorMartin Willi2010-08-253-130/+108
|
* Use different return values in payload decryption to distinguish between ↵Martin Willi2010-08-253-12/+16
| | | | integrity and syntax errors
* Check if colliding rekey actually created an IKE_INITThomas Egerer2010-08-251-37/+42
| | | | | | In some cases (especially if a child is half-open) the colliding rekey-job might not have created the ike_init member. If so, the nonce check fails with SIGSEGV.
* Added a ike_name logger option to prefix the IKE_SA name on each lineMartin Willi2010-08-255-19/+69
|
* removed tls_record_t definitionAndreas Steffen2010-08-241-10/+0
|
* Pass NULL peer identity to omit TLS peer authentication, added ↵Martin Willi2010-08-242-2/+7
| | | | eap-ttls.request_peer_auth option
* support fragmentation in AVPsAndreas Steffen2010-08-243-21/+118
|
* Client sends empty EAP-TTLS packet on fatal alerts to properly shut down TLSMartin Willi2010-08-241-0/+6
|
* Moved TLS record parsing/generation to tls.cMartin Willi2010-08-242-122/+8
|
* EAP-TLS clients send an empty packet on failure to properly shut down a TLS ↵Martin Willi2010-08-231-0/+6
| | | | session
* Accept encryption payloads with no wrapped payloadsMartin Willi2010-08-231-1/+1
|
* Use enum mappings to resolve debug groupMartin Willi2010-08-231-16/+1
|
* Introducing simple purposes for the TLS stack, switches various optionsMartin Willi2010-08-202-6/+15
|
* Fixed compiler warningMartin Willi2010-08-201-1/+1
|
* Fixed crypter keymat derivation bugMartin Willi2010-08-191-3/+4
|
* Include CCM/GCM algorithms in IKEv2 proposals, if supportedMartin Willi2010-08-191-9/+10
|
* Implemented IKEv2 keymat derivation for AEAD algorithmsMartin Willi2010-08-191-29/+58
|
* List registered AEAD algorithms in listalgsMartin Willi2010-08-191-0/+7
|
* Use AEAD wrapper for encryption payload encryption/decryptionMartin Willi2010-08-1911-963/+595
|
* Make function to test if an encryption algorithm is an AEAD alg publicMartin Willi2010-08-191-24/+2
|
* Migrated generator_t to INIT/METHOD macrosMartin Willi2010-08-192-54/+33
|
* Migrated encryption_payload to INIT/METHOD macrosMartin Willi2010-08-191-171/+111
|
* Migrated message_t to INIT/METHOD macrosMartin Willi2010-08-191-185/+112
|
* Migrated keymat to INIT/METHOD macrosMartin Willi2010-08-191-72/+41
|
* added EAP-TTLS debug outputAndreas Steffen2010-08-181-4/+11
|
* added TLS record debug outputAndreas Steffen2010-08-181-4/+11
|
* Use a seperate section for each nested struct member in INIT macroMartin Willi2010-08-1829-147/+193
|
* some simplifications using the INIT macroAndreas Steffen2010-08-173-25/+19
|
* implemented server-initiated phase2 of EAP-TTLS authenticationAndreas Steffen2010-08-162-15/+52
|
* implemented server side support for EAP-TTLSAndreas Steffen2010-08-168-79/+537
|
* fixed typo in eap-mschapv2 pluginAndreas Steffen2010-08-161-5/+5
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-15 12:23:25 +0000