aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon
Commit message (Collapse)AuthorAgeFilesLines
...
* | Store the peer's current address as additional known address on the IKE_SA.Tobias Brunner2012-03-091-0/+8
| | | | | | | | | | This allows to switch back to the original address after switching to any of the additional addresses.
* | Include radattr RADIUS attribute only if an EAP payload is presentMartin Willi2012-03-061-1/+2
| |
* | By default include radattr RADIUS attribute in any IKE_AUTH exchangeMartin Willi2012-03-061-2/+3
| |
* | farp plugin sends ARP responses for any tunneled address, not only virtual IPsMartin Willi2012-03-063-81/+91
| |
* | Re-resolve hosts on additional keyingtriesMartin Willi2012-03-061-0/+1
| |
* | Renamed radius_server to radius_config, as some real RADIUS server ↵Martin Willi2012-03-051-29/+29
| | | | | | | | functionality is coming
* | Prefer EAP-Identity to read radattr RADIUS attribute fileMartin Willi2012-03-051-2/+11
| |
* | Invoke ike_updown hook on authentication failure not before response sentMartin Willi2012-03-051-3/+2
| |
* | Inject RADIUS attribute in radattr plugin read from an identity specific fileMartin Willi2012-03-051-0/+92
| |
* | Added a radattr plugin that prints any received RADIUS notify to consoleMartin Willi2012-03-056-0/+308
| |
* | Moved generic RADIUS protocol support to a dedicated libradiusMartin Willi2012-03-0516-1839/+62
| |
* | Removed libcharon dependencies from generic RADIUS protocol supportMartin Willi2012-03-054-3/+10
| |
* | Forward specifcied RADIUS attributes between AAA backend and clientMartin Willi2012-03-055-0/+545
| |
* | Defined a private status notify to transport arbitrary RADIUS attributesMartin Willi2012-03-052-7/+11
| |
* | Implemented RADIUS DAE response retransmissionMartin Willi2012-03-051-21/+126
| |
* | Be a little more verbose before starting IKE_SA reauthenticationMartin Willi2012-03-051-2/+9
| |
* | Process RADIUS DAE CoA updates, updating lifetimesMartin Willi2012-03-051-2/+91
| |
* | Send an AUTH_LIFETIME update after updating the lifetime, but can not reauth ↵Martin Willi2012-03-053-9/+43
| | | | | | | | actively
* | Use faster ike_sa_id and a delete job to handle RADIUS DAE Delete-RequestMartin Willi2012-03-051-6/+8
| |
* | Refactored RADIUS DAE IKE_SA lookupMartin Willi2012-03-051-17/+41
| |
* | Pass RADIUS DAE client address a host_t instead of sockaddr structMartin Willi2012-03-051-22/+25
| |
* | Send RADIUS DAE Disconnect-ACK/NAK on Disconnect-RequestMartin Willi2012-03-051-5/+45
| |
* | Support signing of RADIUS response messagesMartin Willi2012-03-053-15/+26
| |
* | Act on RADIUS DAE Disconnect requestsMartin Willi2012-03-051-1/+56
| |
* | Verify received RADIUS DAE requestsMartin Willi2012-03-051-9/+51
| |
* | Support verification of RADIUS request messagesMartin Willi2012-03-052-3/+10
| |
* | Rename RADIUS message constructors to handle both, requests and responsesMartin Willi2012-03-056-15/+15
| |
* | Enable RADIUS DAE listening if configuredMartin Willi2012-03-051-0/+13
| |
* | Added infrastructure to listen to RADIUS Dynamic Authorization Extension ↵Martin Willi2012-03-053-0/+228
| | | | | | | | requests
* | Added Dynamic Authorization Extension RADIUS message codesMartin Willi2012-03-052-1/+14
| |
* | Set IKE_SA lifetime based on RADIUS Session-Timeout attributeMartin Willi2012-03-051-0/+26
| |
* | Set hard timeouts when setting a lifetimeMartin Willi2012-03-051-7/+14
| |
* | Fix IKE_SA timeout debug output on 64bit platformsMartin Willi2012-03-051-3/+4
| |
* | Added support for untruncated MD5 and SHA1 HMACs in ESP as used in RFC 4595.Tobias Brunner2012-02-271-0/+2
| | | | | | | | This requires a Linux kernel >= 2.6.33.
* | Encode IPv6 virtual IPs in a Framed-IPv6-Prefix attributeMartin Willi2012-02-241-1/+9
| |
* | Refactored construction of RADIUS accounting messagesMartin Willi2012-02-241-23/+21
| |
* | Include port numbers in Calling-Station-Id, tooMartin Willi2012-02-241-2/+2
| |
* | Use large enough buffers for IPv6 addresses in Calling-Station-IdMartin Willi2012-02-241-2/+2
| |
* | Send client external address as Calling-Station-Id in RADIUS accountingMartin Willi2012-02-241-6/+11
| |
* | Some Doxygen fixes.Tobias Brunner2012-02-072-2/+2
| |
* | Update usage for all children in RADIUS accounting just before sending StopMartin Willi2012-02-061-1/+12
| |
* | Check if ClusterIP directory could be opened before enumerating itMartin Willi2012-02-061-17/+26
| |
* | Trigger DPD not before IKE_SA state gets updatedMartin Willi2012-02-021-6/+8
| |
* | Don't retransmit, rekey, reauth or DPD check SAs when in PASSIVE stateMartin Willi2012-02-021-0/+26
| |
* | Added an option to load CA certificates without CA basic constraint.Tobias Brunner2012-02-011-4/+34
| | | | | | | | | | | | Enabling this option treats all certificates in ipsec.d/cacerts and ipsec.conf ca sections as CA certificates even if they do not contain a CA basic constraint.
* | Support RADIUS accounting messages containing Framed-IP and ↵Martin Willi2012-01-304-0/+376
| | | | | | | | Inbound/Outbound-Octets
* | Open RADIUS accounting sockets to exchange accounting messagesMartin Willi2012-01-305-46/+91
| |
* | Support signing of RADIUS accounting messagesMartin Willi2012-01-303-10/+26
| |
* | RADIUS message constructor accepts a message code parameterMartin Willi2012-01-303-7/+8
| |
* | Cache list of plugin names to further simplify its usage.Tobias Brunner2012-01-192-19/+5
| | | | | | | | Also helpful for ipsec statusall to avoid having to enumerate plugins.
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-15 18:20:21 +0000