2012-05-02 |
Martin Willi | Certificate decoding soft-depends on public key decoding...
|
commit | commitdiff | tree |
2012-05-02 |
Martin Willi | PEM loading plugin features depend on the same feature...
|
commit | commitdiff | tree |
2012-05-02 |
Martin Willi | Don't depend on a feature that has a dependency to...
|
commit | commitdiff | tree |
2012-05-02 |
Martin Willi | Merge branch 'ikev1'
|
commit | commitdiff | tree |
2012-05-02 |
Martin Willi | Added a dedicated sender flush method, delay sender...
|
commit | commitdiff | tree |
2012-04-26 |
Martin Willi | Fixed Android null terminated password fixup in xauth-eap
|
commit | commitdiff | tree |
2012-04-17 |
Martin Willi | Keep COOKIEs enabled once threshold is hit, until we...
|
commit | commitdiff | tree |
2012-04-17 |
Martin Willi | Added a note about DH/keymat lifecycle for custom implementa...
|
commit | commitdiff | tree |
2012-04-17 |
Martin Willi | Reuse existing DH value when retrying IKE_SA_INIT with...
|
commit | commitdiff | tree |
2012-04-16 |
Martin Willi | Fix iteration through half-open IKE_SA table
|
commit | commitdiff | tree |
2012-04-11 |
Martin Willi | Don't invoke child_updown hook twice as responder
|
commit | commitdiff | tree |
2012-04-11 |
Martin Willi | Accept zero-length certificate request payloads
|
commit | commitdiff | tree |
2012-04-04 |
Martin Willi | Added another bunch of commonly used IKEv1 NATT vendor IDs
|
commit | commitdiff | tree |
2012-04-02 |
Martin Willi | More detailed NEWS about RADIUS extensions
|
commit | commitdiff | tree |
2012-03-22 |
Martin Willi | Fix null-terminated XAuth passwords, as sent by Android 4
|
commit | commitdiff | tree |
2012-03-22 |
Martin Willi | Store authentication info of a XAUTH round on IKE_SA
|
commit | commitdiff | tree |
2012-03-22 |
Martin Willi | Added a getter for CHILD_SA marks
|
commit | commitdiff | tree |
2012-03-22 |
Martin Willi | Define a special XFRM mark_t.value that dynamically...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Reply with received configuration payload identifier...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Merge branch 'ikev1-clean' into ikev1-master
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Check if we actually have a packet before retransmitting it
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Use a single set of FDs for all random plugin RNG instances
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Use correct enum values to detect three message tasks...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Trigger DPD not before IKE_SA state gets updated
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Fix mapping of IKEv1 encapsulation mode
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Use UDP encapsulation even in non-NAT situation if...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Updated ipsec.conf man page for the use of IKEv1 with...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Support inactivity timeout in IKEv1 CHILD_SAs
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Use a dedicated PRF for HASH/SIG payloads using ECDSA...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Select public key auth method by checking what key...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Support ECDSA signatures in IKEv1 pubkey authenticator
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Exchange certificates when using IKEv1 ECDSA authentication
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Accept NULL auth_cfg_t passed to credential_manager_t...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Support encoding of IKEv1 ECDSA proposals
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Dropped support of deprecated authby=eap and eap= options
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Added support for authby/xauth_server legacy options
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Renamed CONFIGURATION_ATTRIBUTE_LENGTH to streamline...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Use ATTRIBUTE_VALUE rule in configuration attribute...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Don't re-resolve addresses during initiate if they...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Adopt children after syncing a rekeyed IKEv1 SA
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Synchronize IKEv1 DPD sequence numbers
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Setting message ID on task manager sets DPD sequence...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Update state before triggering DPD, as we cancel it...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Set thread specific SA on bus for each enumerated IKE_SA
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Sync remote virtual IP for IKEv1 SAs
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Sync new IKE_SA condition/extension flags
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Added support for Phase1 IV synchronization to HA plugin
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Invoke bus_t.message hook twice, once plain and parsed...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Create IKEv1 keymat hasher explicitly on sync
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Clear initiator flag when checking out initial IKEv1...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Added support to sync IKEv1 SAs key material in HA...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Pass IKEv1 specific keymat to ike_keys hook
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Use a more complete implementation of a HA specific...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Show IKE version in ipsec statusall
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Apply proposal to a HA synced IKE_SA
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Set selected proposal on IKEv1 SA, don't pass it separately...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Updated HA plugin to new IKEv2 specific keymat functions
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Get a reference for the child_cfg passed to child_create_cre...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Invoke bus_t.narrow hook in quick mode exchange
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Invoke authorization hooks for IKEv1 connections
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Invoke ike_updown hooks for reauthenticated IKEv1 SAs
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Don't invoke a child_updown hook when a quick mode...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Invoke child_rekey hook instead of child_updown when...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Don't invoke updown hook when flushing SAs for IKEv1...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Fix "incoming" flag passed to bus_t.message() hook
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Continue with next exchange after sending an INFORMATIONAL
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Handle retransmission of DPD exchange, both as initiator...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Disable DPD checking for peers not supporting it
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Added missing DPD task name
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Confirm message reception time only if DPD sequence...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Simplified DPD handling by using a task for a single...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Added missing short enum names for DPD notify types
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Print IKEv1 notify types in message summary
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Support IKEv1 notifies in message_t.get_notify()
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Check if we have an RNG for IKEv1 task manager before...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Remove unused DPD sequence number getter on task manager
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Don't retransmit, rekey, reauth or DPD check SAs when...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Request and handle retransmission of a lost third aggressive...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Streamlined debug output when initiating IKEv1 IKE_SAs
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Enforce encapsulation mode of configuration, in case...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Added a "aggressive" ipsec.conf connection option
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Handle aggressive mode task in IKEv1 task manager
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Select IKEv1 configurations by main/aggressive mode...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Added an aggressive mode peer_cfg option
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Fix sending of CERTREQ/CERT payloads in aggressive...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Encrypt payloads of third aggressive mode message
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Implemented aggressive mode using Phase 1 helper class
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Make use of the new Phase 1 helper class in main mode
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Implemented a common Phase 1 helper class to use by...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Fix error handling if no PSK found for main mode
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Install quick mode CHILD_SAs with negotiated encapsulation...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Support IKEv1 proposal encodings having both lifebytes...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Try to detect reauthentication as responder and adopt...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Destroy IKE_SA after reauthentication initiatend and...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Added an IKE_SA manager method to enumerate IKE_SA...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Query for XAuth identity in get_other_eap_id(), too
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Set ISAKMP SA state to rekeying after triggering reauthentic...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Include peer config overtime in negotiated ISAKMP SA...
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Initiate IKEv1 reauthentication, take over all children
|
commit | commitdiff | tree |
2012-03-20 |
Martin Willi | Establish IKE_SA only once as XAuth responder
|
commit | commitdiff | tree |
next |