aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
...
* Exposed the mutli-overlay functionality in the ruby bindings.Tobias Brunner2010-10-123-8/+71
| | | | | | | | Overlays can be added to individual guests (which overlays exactly the supplied directory) or to all guests (which overlays a subdirectory with the guest's name to each guest). The template functionality is provided as before.
* Added support for multiple overlays to the main library.Tobias Brunner2010-10-122-37/+161
| | | | Also implemented the template functionality using the new overlay functions.
* Added support for multiple overlays to guests (replaces the template ↵Tobias Brunner2010-10-122-25/+47
| | | | | | | functionality). Compared to a template an overlay is an arbitrary directory, not the parent directory of a directory with the guest's name.
* Added support for multiple overlays to the copy-on-write filesystem.Tobias Brunner2010-10-122-80/+200
|
* Do not add additional addresses to MOBIKE path probing messages.Tobias Brunner2010-10-121-10/+12
|
* Change behavior of responder during roaming.Tobias Brunner2010-10-121-16/+17
| | | | | | If the current source address is not available anymore, the responder uses ike_mobike_t.roam, thus, uses multiple address combinations when trying to notify the initiator.
* Allow responder to use ike_mobike_t.roam.Tobias Brunner2010-10-121-1/+7
| | | | After getting a response the responder updates the IPsec SAs.
* Send list of additional addresses even if current path is still valid.Tobias Brunner2010-10-121-0/+11
|
* Extracted path checking in ike_sa_t.roam into separate functions.Tobias Brunner2010-10-121-46/+68
|
* Added support for responders to change their address via MOBIKE.Tobias Brunner2010-10-121-0/+20
| | | | | | | If the original responder updates its list of additional addresses we check if the remote endpoint changed and update the IPsec SAs if it did, as we assume the original address became unavailable and the responder already updated the SAs on its side.
* Explicitly configure MOBIKE tasks to update the list of additional addresses.Tobias Brunner2010-10-123-2/+15
|
* Improved check for first IKE_AUTH message in ike_mobike task.Tobias Brunner2010-10-121-3/+6
| | | | | If the original responder initiated a MOBIKE exchange, the previous check was not always correct.
* Migrated ike_mobike task to INIT/METHOD macros.Tobias Brunner2010-10-121-67/+46
|
* Simplified apply_port function in mobike task.Tobias Brunner2010-10-121-16/+9
|
* Do not fire roam events based on local route changes.Tobias Brunner2010-10-121-2/+3
| | | | | These kernel events are triggered on address changes, which is problematic when deleting virtual IP addresses.
* If a changed route has no src, try to find it via interface.Tobias Brunner2010-10-121-37/+48
|
* Get source address from interface if the route does not provide one.Tobias Brunner2010-10-121-2/+49
|
* Do not update hosts based on retransmitted messages.Tobias Brunner2010-10-122-15/+23
|
* Do not update remote host if we are behind a NAT.Tobias Brunner2010-10-121-4/+2
|
* *** HISTORICAL MOMENT: IKEv2 becomes the default! ***Andreas Steffen2010-10-092-2/+2
|
* use DBG_TNC for TNC debugging outputAndreas Steffen2010-10-096-22/+27
|
* TNCCS debug cosmeticsAndreas Steffen2010-10-091-4/+4
|
* revert to standard TNCC/TNCS Initialization functionAndreas Steffen2010-10-092-17/+2
|
* implemented TNC isolation via group membershipsAndreas Steffen2010-10-091-6/+33
|
* implemented a makeshift non-scalable send bufferAndreas Steffen2010-10-081-25/+82
|
* imc/imv cosmeticsAndreas Steffen2010-10-082-4/+7
|
* created tnc-imc and tnc-imv pluginsAndreas Steffen2010-10-079-42/+340
|
* deactivate start_phase2_tnc flag after startAndreas Steffen2010-10-071-1/+1
|
* added server side support for EAP-TNCAndreas Steffen2010-10-071-2/+28
|
* Show result of RADIUS authentication along with EAP identityMartin Willi2010-10-071-5/+6
|
* added --debug-tls to charon usage() functionAndreas Steffen2010-10-071-1/+1
|
* configure tnc_config path and preferred_language via strongswan.confAndreas Steffen2010-10-051-2/+8
|
* created hull for TNCCS 2.0 pluginAndreas Steffen2010-10-056-0/+256
|
* use group membership to implement access/isolate redirection in filter-based ↵Andreas Steffen2010-10-051-4/+14
| | | | TNC scenario
* moved CHILD_SA selection out of attribute loopAndreas Steffen2010-10-051-5/+6
|
* receive name of preferred CHILD_SA via RADIUS Filter-Id attributeAndreas Steffen2010-10-051-0/+59
|
* set EAP-TTLS/TNC version also in acknowledgement packetsAndreas Steffen2010-10-041-0/+11
|
* Fixed status_t enum names definitionMartin Willi2010-10-041-1/+1
|
* print XML as plaintext and process recieved TNCCS BatchAndreas Steffen2010-09-301-11/+28
|
* started use of libtnc libraryAndreas Steffen2010-09-292-19/+81
|
* NOTIFY error message types include 16383Andreas Steffen2010-09-291-1/+1
|
* moved TNCCS layer out of eap_tnc pluginAndreas Steffen2010-09-2814-48/+450
|
* fixed release of virtual IP for XAUTH identitiesAndreas Steffen2010-09-261-2/+5
|
* draft-ietf-ipsecme-eap-mutual will be released as RFC 5998.Tobias Brunner2010-09-161-1/+1
|
* added notify messages defined in RFC 5996Andreas Steffen2010-09-152-6/+13
|
* show validity of OCSP responsesAndreas Steffen2010-09-101-2/+15
|
* Moved man pages for config files to a separate directory.Tobias Brunner2010-09-106-1531/+3
|
* fixed memory leakAndreas Steffen2010-09-091-0/+1
|
* Compare subject against all key identifiers in has_subject()Martin Willi2010-09-092-10/+26
|
* has_subject() now resolves ID_KEY_IDsAndreas Steffen2010-09-091-4/+14
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-22 06:14:31 +0000