aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/sa/ike_sa_manager.c
Commit message (Collapse)AuthorAgeFilesLines
* implemented ike_down() bus hookMartin Willi2009-07-091-0/+11
|
* removing svn keyword $Id$ from all filesTobias Brunner2009-04-301-2/+0
|
* merging changes from portability branch back to trunkTobias Brunner2009-04-301-1/+1
| | | | | important change for developers: %Y replaces %D to print identities!
* fixing IKE_SA rekeying if charon.ikesa_table_size > 1Tobias Brunner2009-04-171-7/+17
|
* merged multi-auth branch back into trunkMartin Willi2009-04-141-75/+24
|
* output peer ID in duplicate deletion log entryAndreas Steffen2009-03-261-2/+2
|
* updated documentationMartin Willi2008-12-171-117/+116
| | | | | some minor cleanups calloc does not need an additional memset(0)
* improved IKE_SA uniqueness checkTobias Brunner2008-12-161-17/+67
|
* signal each entry condvar after enumeration, required if wait_for_entry is ↵Martin Willi2008-12-151-3/+19
| | | | called
* fixed possible deadlock in checkin_and_destroyMartin Willi2008-12-121-2/+2
|
* avoid DNS lookup if possibleMartin Willi2008-12-121-13/+10
|
* wait until all IKE_SAs are in-house before destroying themMartin Willi2008-12-121-1/+1
|
* fixing checkout of IKE SAs with only the initiator SPITobias Brunner2008-12-101-1/+2
|
* increasing the performance of checkout_duplicate by using a hash table.Tobias Brunner2008-12-101-66/+244
|
* checkin of non-existing IKE_SAsMartin Willi2008-11-261-50/+41
| | | | removed unneeded checkin() return values
* performance optimization for the DOS protection.Tobias Brunner2008-11-251-23/+210
| | | | | | * half-open SAs per peer are tracked in a hash table * charon.dos_protection setting replaced with charon.cookie_threshold and charon.block_threshold * chunk_hash function added
* fixed crash due to missing function call parameterAndreas Steffen2008-11-251-1/+13
|
* optimized ike_sa_manager for concurrent access (default behavior is still as ↵Tobias Brunner2008-11-201-217/+493
| | | | before, needs configuration in strongswan.conf).
* replaced most pthread_mutex/cond_t by wrapped mutex/condvar_t variantMartin Willi2008-11-051-42/+43
|
* replace tab by spacesAndreas Steffen2008-11-031-2/+3
|
* moved updown script invocation to an optional pluginMartin Willi2008-10-161-1/+4
|
* using a entry cache for duplicate checks, avoids deadlocksMartin Willi2008-07-301-4/+37
|
* reverted [4125],[4166], reimplemented the proper wayMartin Willi2008-07-111-2/+8
|
* setting ike_sa on bus in checkout_newMartin Willi2008-07-111-0/+1
|
* DNS resolving of ike_cfg hosts dynamically on demandMartin Willi2008-06-061-46/+52
|
* splitted IKE_SA manager destroy to allow plugin interactionMartin Willi2008-04-171-4/+16
|
* slightly optimized IKE_SA checkinMartin Willi2008-04-161-3/+7
|
* optimized half-open IKE_SA lookup (no checkout)Martin Willi2008-04-161-3/+13
|
* added API for random number generators, served through credential factoryMartin Willi2008-04-151-6/+12
| | | | ported randomizer_t to a rng_t on top of /dev/(u)random (plugin random)
* implemented IKE_SA uniqueness using ipsec.conf uniqueids paramaterMartin Willi2008-04-141-0/+39
| | | | additionally supports a "keep" value to keep the old IKE_SA
* ike_sa_manager enumerable, not iterableMartin Willi2008-04-141-66/+74
|
* correctly unregister IKE_SA at the bus Martin Willi2008-03-151-1/+1
|
* merged the modularization branch (credentials) back to trunkMartin Willi2008-03-131-12/+12
|
* split connections with different virtual IPs in different peer_cfgsMartin Willi2008-02-051-7/+16
| | | | respect different peer_cfg's when initiating a CHILD_SA within an existing IKE_SA
* added missing 'break' in checkout_by_peerTobias Brunner2007-09-131-0/+1
|
* backports from the p2p-nat-t branch:Tobias Brunner2007-07-191-2/+2
| | | | | | * double assignment of function ''destroy'' in some jobs * typos
* fixed dpd=hold when using virtual IPsMartin Willi2007-06-291-4/+6
|
* removed accidently checked in debbuging codeMartin Willi2007-06-291-2/+0
|
* further mobike improvements, regarding to NAT-TMartin Willi2007-06-271-0/+2
|
* further fixed for mobike roamingMartin Willi2007-06-251-0/+1
|
* implemented more flexible iterator hook APIMartin Willi2007-06-151-4/+4
| | | | kernel interface handles interface changes and updates address list
* fixed memleak in IKE_SA managerMartin Willi2007-04-191-0/+1
|
* removed IKE_SA_ID (%J) printf hook, two more to goMartin Willi2007-04-111-12/+12
|
* restructured file layoutMartin Willi2007-04-101-0/+1
| | | | | | | | | new configuration structure: peer_cfg: configuration related to a peer (authenitcation, ...= ike_cfg: config to use for IKE setup (proposals) child_Cfg: config for CHILD_SA (proposals, traffic selectors) a peer_cfg has one ike_cfg and multiple child_cfg's stroke now uses fixed count of threads
* improved log output for checkout_by_message()Martin Willi2007-04-041-21/+28
|
* added IKE_SA_INIT retransmission detectionMartin Willi2007-03-291-94/+154
| | | | fixed thread exhaustion when IKE_SA is blocked for a longer time
* removed send_queue, handled internally in sender_t knowMartin Willi2007-03-281-0/+39
| | | | | do header parsing in receiver, ready for cookie integration
* merged tasking branch into trunkMartin Willi2007-02-281-272/+203
|
* implemented reauthentication using the new reauth=yes|no parameter Martin Willi2006-12-191-0/+6
|
* improved signal handling and emittingMartin Willi2006-10-261-30/+30
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-23 17:46:19 +0000