aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
...
* Implemented EAP-TLS server functionalityMartin Willi2010-08-037-29/+595
|
* TLS stack keeps a copy of server/peer identitiesMartin Willi2010-08-032-18/+17
|
* Limit the number of EAP-TLS packets allowedMartin Willi2010-08-031-0/+13
|
* Use stricter state handling while processing TLS messagesMartin Willi2010-08-031-25/+44
|
* Cleaned up the public TLS interfaceMartin Willi2010-08-034-68/+76
|
* Refactored common used operations into TLS crypto helperMartin Willi2010-08-033-176/+212
|
* Properly send empty EAP-TLS messagesMartin Willi2010-08-031-22/+25
|
* Derive MSK for EAP-TLS authenticationMartin Willi2010-08-035-0/+44
|
* Verify Server Finished messageMartin Willi2010-08-031-1/+59
|
* Implemented input record decryption and verificationMartin Willi2010-08-037-16/+122
|
* Implemented key derivation, output record signing and encryptionMartin Willi2010-08-037-39/+485
|
* Derive master secret, create Finished messageMartin Willi2010-08-034-30/+241
|
* Implemented the TLS specific PRF in its TLSv1.0 and TLSv1.2 variantsMartin Willi2010-08-033-0/+263
|
* Implemented sending of Certificate, ClientKeyExchange, CertificateVerify and ↵Martin Willi2010-08-0311-19/+406
| | | | ChangeCipherSpec as peer
* Implemented a tls_writer class to simplify TLS data generationMartin Willi2010-08-037-74/+451
|
* Implemented a tls_reader class to simplify TLS data parsingMartin Willi2010-08-037-120/+419
|
* Process ServerHello(Done), Certificate(Request) messagesMartin Willi2010-08-037-16/+240
|
* Send a ClientHello to start TLS negotiationMartin Willi2010-08-031-1/+86
|
* Added TLS crypto helper, currently supports cipher suite selectionMartin Willi2010-08-038-6/+221
|
* Added support for AUTH_HMAC_SHA2_256_256, used in TLSMartin Willi2010-08-033-3/+9
|
* Added stubs for handshake handling, server and peer variantsMartin Willi2010-08-039-6/+446
|
* Accept follow-up fragments with a TLS message lengthMartin Willi2010-08-031-24/+50
|
* Added dummy/identity implementations of the different TLS record layersMartin Willi2010-08-038-3/+475
|
* Pass TLS records to newly introduced TLS stackMartin Willi2010-08-033-11/+158
|
* Added some TLS constantsMartin Willi2010-08-033-1/+173
|
* (De-)fragment EAP-TLS packets, pass TLS records to upper layerMartin Willi2010-08-031-1/+229
|
* Added EAP-TLS plugin stubMartin Willi2010-08-0310-1/+298
|
* Do not touch child from collision if peer deleted itThomas Egerer2010-08-031-3/+24
|
* substitute obsolete function calls(bzero/index)Waldemar Brodkorb2010-08-012-3/+3
|
* The va_list trick does not seem to be portable, revert dots-in-section fix4.4.1Martin Willi2010-07-301-58/+22
| | | | This reverts commit 8f50d06c354cd31fc295afc5598afff4096b5e77.
* Fix segfault on 'ipsec stroke up ]' commandThomas Egerer2010-07-291-0/+5
|
* Fixed settings lookup if the section/key contains dotsMartin Willi2010-07-291-22/+58
|
* Fix use of snprintf() in pluto subjectAltName enumerationMartin Willi2010-07-281-0/+4
|
* Fix use of snprintf() in IETF attributes to string conversionMartin Willi2010-07-281-2/+11
|
* Fix use of snprintf() in identification DN to ASCII conversionMartin Willi2010-07-281-0/+12
|
* Implemented a HA enabled in-memory address poolMartin Willi2010-07-286-4/+468
|
* Added a function to segmentate a generic integerMartin Willi2010-07-282-18/+48
|
* Reserving does not work, as our pools do not support acquiring arbitrary ↵Martin Willi2010-07-271-30/+0
| | | | | | addresses This reverts commit d1384080b3ba74f366eaf8b5f027babca3f5d607.
* Mem pool does not support multiple leases for an identityMartin Willi2010-07-271-2/+11
|
* Flush any remaining cache state if an IKE_SA goes downMartin Willi2010-07-271-2/+2
|
* Synchronize EAP-Identity of remote peerMartin Willi2010-07-264-0/+16
|
* Reserve virtual IP of passive IKE_SAs in the local poolMartin Willi2010-07-261-0/+30
|
* Added strongswan.conf options for HA heartbeatMartin Willi2010-07-261-4/+20
|
* Log CHILD_SA segment responsibilityMartin Willi2010-07-269-18/+95
|
* Pass initiator parameter to distinguish between original and exchange initiatorMartin Willi2010-07-264-1/+8
|
* Pass the CREATE_CHILD_SA initiator flag to the child_keys parameterMartin Willi2010-07-265-9/+12
|
* Use a sync message cache to resynchronize IKE_SAs without rekeyingMartin Willi2010-07-2616-169/+594
|
* Log received HA message typesMartin Willi2010-07-261-3/+9
|
* Add enum names for HA message typesMartin Willi2010-07-262-0/+19
|
* Delay resynchronization request until starter has loaded the configurationsMartin Willi2010-07-261-2/+4
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-24 04:41:00 +0000