aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon
Commit message (Collapse)AuthorAgeFilesLines
...
* Allow responder to use ike_mobike_t.roam.Tobias Brunner2010-10-121-1/+7
| | | | After getting a response the responder updates the IPsec SAs.
* Send list of additional addresses even if current path is still valid.Tobias Brunner2010-10-121-0/+11
|
* Extracted path checking in ike_sa_t.roam into separate functions.Tobias Brunner2010-10-121-46/+68
|
* Added support for responders to change their address via MOBIKE.Tobias Brunner2010-10-121-0/+20
| | | | | | | If the original responder updates its list of additional addresses we check if the remote endpoint changed and update the IPsec SAs if it did, as we assume the original address became unavailable and the responder already updated the SAs on its side.
* Explicitly configure MOBIKE tasks to update the list of additional addresses.Tobias Brunner2010-10-123-2/+15
|
* Improved check for first IKE_AUTH message in ike_mobike task.Tobias Brunner2010-10-121-3/+6
| | | | | If the original responder initiated a MOBIKE exchange, the previous check was not always correct.
* Migrated ike_mobike task to INIT/METHOD macros.Tobias Brunner2010-10-121-67/+46
|
* Simplified apply_port function in mobike task.Tobias Brunner2010-10-121-16/+9
|
* Do not update hosts based on retransmitted messages.Tobias Brunner2010-10-122-15/+23
|
* Do not update remote host if we are behind a NAT.Tobias Brunner2010-10-121-4/+2
|
* use DBG_TNC for TNC debugging outputAndreas Steffen2010-10-093-21/+21
|
* TNCCS debug cosmeticsAndreas Steffen2010-10-091-4/+4
|
* revert to standard TNCC/TNCS Initialization functionAndreas Steffen2010-10-092-17/+2
|
* implemented TNC isolation via group membershipsAndreas Steffen2010-10-091-6/+33
|
* implemented a makeshift non-scalable send bufferAndreas Steffen2010-10-081-25/+82
|
* imc/imv cosmeticsAndreas Steffen2010-10-082-4/+7
|
* created tnc-imc and tnc-imv pluginsAndreas Steffen2010-10-079-42/+340
|
* deactivate start_phase2_tnc flag after startAndreas Steffen2010-10-071-1/+1
|
* added server side support for EAP-TNCAndreas Steffen2010-10-071-2/+28
|
* Show result of RADIUS authentication along with EAP identityMartin Willi2010-10-071-5/+6
|
* configure tnc_config path and preferred_language via strongswan.confAndreas Steffen2010-10-051-2/+8
|
* created hull for TNCCS 2.0 pluginAndreas Steffen2010-10-056-0/+256
|
* use group membership to implement access/isolate redirection in filter-based ↵Andreas Steffen2010-10-051-4/+14
| | | | TNC scenario
* moved CHILD_SA selection out of attribute loopAndreas Steffen2010-10-051-5/+6
|
* receive name of preferred CHILD_SA via RADIUS Filter-Id attributeAndreas Steffen2010-10-051-0/+59
|
* print XML as plaintext and process recieved TNCCS BatchAndreas Steffen2010-09-301-11/+28
|
* started use of libtnc libraryAndreas Steffen2010-09-292-19/+81
|
* NOTIFY error message types include 16383Andreas Steffen2010-09-291-1/+1
|
* moved TNCCS layer out of eap_tnc pluginAndreas Steffen2010-09-2814-48/+450
|
* draft-ietf-ipsecme-eap-mutual will be released as RFC 5998.Tobias Brunner2010-09-161-1/+1
|
* added notify messages defined in RFC 5996Andreas Steffen2010-09-152-6/+13
|
* show validity of OCSP responsesAndreas Steffen2010-09-101-2/+15
|
* debug output of inbound and outbound TNCCS batchesAndreas Steffen2010-09-091-9/+14
|
* support non EAP-TTLS conformant RADIUS-type attribute segmentationAndreas Steffen2010-09-091-13/+79
|
* Fixed copy/paste error.Tobias Brunner2010-09-091-1/+1
|
* added explanatory commentsAndreas Steffen2010-09-091-3/+7
|
* send well-formed TNCCS-BatchAndreas Steffen2010-09-081-1/+9
|
* max max_message_count configurable and move it into tls_eap_tAndreas Steffen2010-09-083-36/+12
|
* Added a simple led plugin to control Linux LEDs based on IKE activityMartin Willi2010-09-086-0/+422
|
* moved tls_t existance test into tls_eap_create() againAndreas Steffen2010-09-083-15/+0
|
* generalized tls_eap_t to support EAP_TNC wrapping the TNC_IF_TNCCS protocolAndreas Steffen2010-09-086-94/+250
|
* Scheduler and processor have been moved to libstrongswan.Tobias Brunner2010-09-021-1/+1
| | | | | Also reverts 0c21dc000d3cd5c82eb22c4481e6459978456364 as the dependency to libcharon is no longer required.
* Adapted child_sa_t to changed kernel interface.Tobias Brunner2010-09-021-25/+49
|
* Fixing installation of trap policies (SPI=0) in kernel interface.Tobias Brunner2010-09-021-3/+2
|
* Added an option to specify the type of a policy to kernel_ipsec.add_policy.Tobias Brunner2010-09-021-18/+18
| | | | | This will later allow us to support pluto's passthrough and drop policies in charon.
* Replaced the protocol argument in add_policy with an optional SPI for an AH SA.Tobias Brunner2010-09-022-19/+38
|
* Refer to scheduler and processor via lib and not hydra.Tobias Brunner2010-09-0230-89/+67
|
* Moved all kernel plugins to libhydra.Tobias Brunner2010-09-0227-10728/+0
|
* Moved ipsec_transform_t to kernel_ipsec.h in libhydra.Tobias Brunner2010-09-022-26/+0
| | | | | Because of this libfreeswan, pluto, starter etc. now depend on that file (and libhydra). This resolved some duplicate declarations.
* Refer to kernel interface via hydra and not charon.Tobias Brunner2010-09-0224-144/+161
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-27 03:34:45 +0000