| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
| |
transactions
reimplemented the buggy message id handling
|
| | |
|
| | |
|
| |
|
|
|
| |
no simultanous transaction with CHILD_SAs yet!
|
| |
|
|
|
|
|
|
|
|
|
|
| |
removed old state machine
reimplemented IKE_SA setup and delete
implemented dead peer detection
implemented keep-alives
a lot of fixes
no rekeying yet
|
| | |
|
| |
|
|
|
| |
DPD only done when no IPsec and IKE traffic processed
minor changes here and there
|
| | |
|
| |
|
|
|
|
| |
rekeying almost complete, but:
IKE_SA get in an invalid state when both initiate rekeying at the same time,
|
| |
|
|
|
|
|
|
|
| |
get liftimes from policy
added new state
initiation of rekeying done
proposal redone:
removed support for AH+ESP proposals
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
moved job code from thread_pool to job, jobs have an "execute" method now
added two new jobs: delete_child_sa & rekey_child_sa
kernel interface:
listens now for ACQUIRE & EXPIRE
supports hard and soft lifetimes
fires jobs for delete and rekey child sa
ike sa manager:
can checkout IKE SAs by requid of owned CHILD SAs
we have now the infrastructure to do the rekeying... :-)
|
| |
|
|
|
| |
should conform now to IKEv2
|
| | |
|
| |
|
