aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
...
* Support RADIUS accounting when using IKEv1 with xauth-eap and eap-radiusMartin Willi2012-09-111-2/+10
|
* Fix leak while enumerating RADIUS Framed-IPs from IKE_SAMartin Willi2012-09-111-0/+1
|
* Add uniqueids=never to ignore INITIAL_CONTACT notifiesTobias Brunner2012-09-105-5/+12
| | | | | | With uniqueids=no the daemon still deletes any existing IKE_SA with the same peer if an INITIAL_CONTACT notify is received. With this new option it also ignores these notifies.
* Add strongswan.conf runtime options for /dev/[u]random filesMartin Willi2012-09-101-2/+7
| | | | Fixes #221.
* Use the proper types for comma separated attributes read from strongswan.confTobias Brunner2012-09-101-27/+25
| | | | | | Attributes of different address families previously were mapped to the same attribute type (the one derived from the address family of the first address).
* Print the name of mem pools instead of the confusing <base>/<size>Tobias Brunner2012-09-101-2/+4
|
* Properly remove broadcast address from mem poolsTobias Brunner2012-09-101-1/+1
|
* use base IMC ID if src IMC ID is not supportedAndreas Steffen2012-09-103-5/+11
|
* make sending of IETF Assessment Result attributes configurableAndreas Steffen2012-09-091-11/+13
|
* introduced sending of standard IETF Assessment Result PA-TNC attribute by IMVsAndreas Steffen2012-09-0920-81/+633
|
* Only initiate an exchange from send_dpd() if a task was actually queuedTobias Brunner2012-09-071-2/+8
| | | | | Otherwise, the initiator would prematurely initiate Quick Mode if it has DPD enabled and XAuth is used.
* android: New release after adding certificate authentication and reauth fixTobias Brunner2012-09-061-2/+2
|
* Trigger ike_updown event caused by retransmits only after reestablish() has ↵Tobias Brunner2012-09-063-10/+5
| | | | | | | | been called This allows listeners to migrate to the new IKE_SA with the ike_reestablish event without having to worry about an ike_updown event for the old IKE_SA.
* android: Properly handle reauthentication initiated by the clientTobias Brunner2012-09-061-7/+42
|
* android: Create a new VpnService.Builder after VPN has been establishedTobias Brunner2012-09-061-9/+20
|
* Add ike_reestablish() event that is triggered when an IKE_SA is reestablishedTobias Brunner2012-09-064-0/+49
| | | | | This is particularly useful during reauthentication to get the new IKE_SA.
* Add a new condition to mark IKE_SAs that are currently being reauthenticatedTobias Brunner2012-09-062-9/+9
|
* starter: Load config again when restarting charonTobias Brunner2012-09-051-0/+16
| | | | This got lost in 041e763b.
* Clear virtual IPs before storing assigned ones on the IKE_SATobias Brunner2012-09-055-1/+43
| | | | | Otherwise we'll end up with duplicate or invalid VIPs stored on the IKE_SA.
* In mode_config, destroy temporary pool list instead of the virtual IP list twiceMartin Willi2012-09-051-1/+1
|
* Merge branch 'android-client-cert'Tobias Brunner2012-09-0425-181/+929
|\ | | | | | | Introduces IKEv2 client certificate authentication for the Android App.
| * android: Native parts handle ikev2-cert VPN typeTobias Brunner2012-08-313-16/+71
| |
| * android: android_creds_t can provide a user's private key and certificateTobias Brunner2012-08-312-3/+89
| |
| * android: Added JNI method to retrieve user certificate and private keyTobias Brunner2012-08-313-13/+109
| | | | | | | | | | To simplify things the private key, the user certificate and the CA certificates are all put into the same list.
| * android: Don't show the password dialog if not requiredTobias Brunner2012-08-311-1/+2
| |
| * android: Enable pkcs8 pluginTobias Brunner2012-08-312-1/+3
| |
| * android: Pass the type of VPN to the native partsTobias Brunner2012-08-312-6/+10
| |
| * android: Make sure NULL jstrings are converted properlyTobias Brunner2012-08-311-5/+8
| |
| * android: Display the selected certificate alias in the profile listTobias Brunner2012-08-312-1/+29
| |
| * android: Allow configuration of a user certificateTobias Brunner2012-08-318-9/+198
| |
| * android: Remove NOT NULL constraint from username columnTobias Brunner2012-08-311-3/+27
| |
| * android: Separate view added to select certificatesTobias Brunner2012-08-313-38/+48
| |
| * android: Don't try to load the profile with ID 0Tobias Brunner2012-08-311-1/+1
| |
| * android: Spinner added to select the VPN typeTobias Brunner2012-08-319-24/+158
| |
| * android: Field added to store the type of a VPN profileTobias Brunner2012-08-272-1/+22
| |
| * android: Enum added for VPN typesTobias Brunner2012-08-271-0/+87
| |
| * android: Simplified handling of error dialog that is displayed if VpnService ↵Tobias Brunner2012-08-271-44/+24
| | | | | | | | API is not supported
| * android: LoginDialog refactored so it also works when the device is rotatedTobias Brunner2012-08-271-20/+29
| |
| * android: Added a field to store selected user certificateTobias Brunner2012-08-272-9/+27
| |
* | Merge branch 'multi-vip'Martin Willi2012-08-3169-727/+1947
|\ \ | | | | | | | | | | | | | | | | | | Brings support for multiple virtual IPs and multiple pools in left/rigthsourceip definitions. Also introduces the new left/rightdns options to configure requested DNS server address family and respond with multiple connection specific servers.
| * | Added a note to _updown for the new PLUTO_MY_SOURCEIP* variablesMartin Willi2012-08-301-2/+6
| | |
| * | Be less verbose if IP allocation for a single pool failsMartin Willi2012-08-301-4/+0
| | |
| * | DHCP plugin returns virtual IPs for IPv4 requests onlyMartin Willi2012-08-301-2/+2
| | |
| * | Check address family in HA virtual IP backendMartin Willi2012-08-301-0/+6
| | |
| * | Strictly enforce address family match while acquiring mem_pool IPsMartin Willi2012-08-301-3/+1
| | |
| * | Don't parse comma separated pool names in attr-sqlMartin Willi2012-08-301-77/+26
| | | | | | | | | | | | | | | We now handle multiple pools at a deeper level, making that special handling obsolete. Comma separated pools are parsed in stroke.
| * | Handle comma separated pools as multiple pool names in SQL pluginMartin Willi2012-08-301-1/+9
| | |
| * | Request and acquire multiple virtual IPs in IKEv1 Mode ConfigMartin Willi2012-08-301-47/+61
| | |
| * | Request and acquire multiple virtual IPs in IKEv2 configuration payloadMartin Willi2012-08-301-49/+67
| | |
| * | Pass all configured pool names to attribute provider enumeratorMartin Willi2012-08-309-26/+42
| | |
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-18 16:59:51 +0000