| 2012-03-20 |
 Martin Willi | Merge branch 'ikev1-clean' into ikev1-master
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Check if we actually have a packet before retransmitting it
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Use a single set of FDs for all random plugin RNG instances
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Use correct enum values to detect three message tasks...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Trigger DPD not before IKE_SA state gets updated
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Fix mapping of IKEv1 encapsulation mode
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Use UDP encapsulation even in non-NAT situation if...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Updated ipsec.conf man page for the use of IKEv1 with...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Support inactivity timeout in IKEv1 CHILD_SAs
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Use a dedicated PRF for HASH/SIG payloads using ECDSA...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Select public key auth method by checking what key...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Support ECDSA signatures in IKEv1 pubkey authenticator
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Exchange certificates when using IKEv1 ECDSA authentication
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Accept NULL auth_cfg_t passed to credential_manager_t...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Support encoding of IKEv1 ECDSA proposals
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Dropped support of deprecated authby=eap and eap= options
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Added support for authby/xauth_server legacy options
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Renamed CONFIGURATION_ATTRIBUTE_LENGTH to streamline...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Use ATTRIBUTE_VALUE rule in configuration attribute...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Don't re-resolve addresses during initiate if they...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Adopt children after syncing a rekeyed IKEv1 SA
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Synchronize IKEv1 DPD sequence numbers
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Setting message ID on task manager sets DPD sequence...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Update state before triggering DPD, as we cancel it...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Set thread specific SA on bus for each enumerated IKE_SA
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Sync remote virtual IP for IKEv1 SAs
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Sync new IKE_SA condition/extension flags
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Added support for Phase1 IV synchronization to HA plugin
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Invoke bus_t.message hook twice, once plain and parsed...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Create IKEv1 keymat hasher explicitly on sync
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Clear initiator flag when checking out initial IKEv1...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Added support to sync IKEv1 SAs key material in HA...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Pass IKEv1 specific keymat to ike_keys hook
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Use a more complete implementation of a HA specific...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Show IKE version in ipsec statusall
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Apply proposal to a HA synced IKE_SA
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Set selected proposal on IKEv1 SA, don't pass it separately...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Updated HA plugin to new IKEv2 specific keymat functions
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Get a reference for the child_cfg passed to child_create_cre...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Invoke bus_t.narrow hook in quick mode exchange
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Invoke authorization hooks for IKEv1 connections
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Invoke ike_updown hooks for reauthenticated IKEv1 SAs
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Don't invoke a child_updown hook when a quick mode...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Invoke child_rekey hook instead of child_updown when...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Don't invoke updown hook when flushing SAs for IKEv1...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Fix "incoming" flag passed to bus_t.message() hook
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Continue with next exchange after sending an INFORMATIONAL
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Handle retransmission of DPD exchange, both as initiator...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Disable DPD checking for peers not supporting it
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Added missing DPD task name
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Confirm message reception time only if DPD sequence...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Simplified DPD handling by using a task for a single...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Added missing short enum names for DPD notify types
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Print IKEv1 notify types in message summary
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Support IKEv1 notifies in message_t.get_notify()
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Check if we have an RNG for IKEv1 task manager before...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Remove unused DPD sequence number getter on task manager
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Don't retransmit, rekey, reauth or DPD check SAs when...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Request and handle retransmission of a lost third aggressive...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Streamlined debug output when initiating IKEv1 IKE_SAs
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Enforce encapsulation mode of configuration, in case...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Added a "aggressive" ipsec.conf connection option
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Handle aggressive mode task in IKEv1 task manager
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Select IKEv1 configurations by main/aggressive mode...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Added an aggressive mode peer_cfg option
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Fix sending of CERTREQ/CERT payloads in aggressive...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Encrypt payloads of third aggressive mode message
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Implemented aggressive mode using Phase 1 helper class
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Make use of the new Phase 1 helper class in main mode
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Implemented a common Phase 1 helper class to use by...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Fix error handling if no PSK found for main mode
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Install quick mode CHILD_SAs with negotiated encapsulation...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Support IKEv1 proposal encodings having both lifebytes...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Try to detect reauthentication as responder and adopt...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Destroy IKE_SA after reauthentication initiatend and...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Added an IKE_SA manager method to enumerate IKE_SA...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Query for XAuth identity in get_other_eap_id(), too
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Set ISAKMP SA state to rekeying after triggering reauthentic...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Include peer config overtime in negotiated ISAKMP SA...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Initiate IKEv1 reauthentication, take over all children
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Establish IKE_SA only once as XAuth responder
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Support initiation of childless IKEv1 ISAKMP SAs
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Don't trigger reauthentication if initiator authenticated...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Set a condition flag if peer has been authenticated...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Queue Mode Config tasks after main mode as initiator...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Try all matching XAuth secrets we find, not only the...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Fixed create_shared_enumerator method description
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | As responder, try to reuse the reqid of the CHILD_SA...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Reply quick mode with the same SA lifetime that we...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Do not query CHILD_SA during delete if they already...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Be less verbose when deleting SAs triggered by a hard...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Implemented CHILD_SA rekeying
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Don't return FAILED if a CHILD_SA to delete could not...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Support installing of quick mode SAs with a specific...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Double check that we could select a TS as quick mode...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Implemented responder retransmission, currently enabled...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Queue IKEv1 INFORMATIONALS with higher priority to...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Accept IKEv1 INVALID_KE_INFORMATION notifies without...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Don't process notifies in quick mode task when we get...
|
commit | commitdiff | tree |
| 2012-03-20 |
Martin Willi | Always queue a new passive task when receiving an IKEv1...
|
commit | commitdiff | tree |
| next |
projects / people / ms / strongswan.git / search
Martin Willi