aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/sa/tasks/child_create.c
Commit message (Collapse)AuthorAgeFilesLines
* Moving charon to libcharon.Tobias Brunner2010-03-191-1351/+0
|
* Made inactivity_timeout a per CHILD_SA config optionMartin Willi2010-01-271-7/+7
|
* Support for closing CHILD/IKE_SA if a CHILD_SA is inactive.Martin Willi2010-01-121-0/+25
|
* Match to private use algorithms only if we know we are talking to strongSwanMartin Willi2010-01-071-2/+4
|
* Interpret private use BEET mode notify only if we know we are talking to ↵Martin Willi2010-01-071-1/+9
| | | | strongSwan
* enforce RFC 3779 address constraints on traffic selectorsAndreas Steffen2009-12-251-0/+61
|
* Fixed BEET mode by installing SAs with negotiated address in traffic selectorMartin Willi2009-12-171-5/+5
|
* Do not propose transport mode as initiator if connection is NATedMartin Willi2009-11-301-0/+6
|
* Avoid potentially unaligned half-word readMartin Willi2009-11-231-5/+8
|
* removed trailing spaces ([[:space:]]+$)Martin Willi2009-09-041-98/+98
|
* report installation failure of inbound and/or outbound IPsec SA, separatelyAndreas Steffen2009-07-131-8/+11
|
* implemented child_up() bus hookMartin Willi2009-07-091-2/+18
|
* include TSi/TSr of triggering packet in acquireMartin Willi2009-05-201-2/+27
|
* fixed cleanup of traffic selector listsMartin Willi2009-05-121-2/+2
|
* removing svn keyword $Id$ from all filesTobias Brunner2009-04-301-2/+0
|
* schedule_job uses seconds to support time values larger than 49 daysMartin Willi2009-04-211-1/+1
| | | | added schedule_job_ms for ms resolution events
* merged multi-auth branch back into trunkMartin Willi2009-04-141-54/+45
|
* changed [4856] to dynamically choose traffic selector familyMartin Willi2009-02-111-14/+8
|
* proper initialization and disposal of keying materialAndreas Steffen2009-01-151-1/+3
|
* some task queueing improvements:Martin Willi2008-12-011-0/+2
| | | | | | | | - do not pass CHILD_SAs to task constructor, might not be valid anymore during execution (late lookup) - use sub-tasks to delete CHILD/IKE_SA after rekeying, as we want to execute the delete before additional queued tasks
* refactored and cleaned up child_sa interfaceMartin Willi2008-11-191-71/+141
| | | | | | | replaced add/update calls by a install() call allocating SPIs always externally support installation of non-allocated CHILD_SAs some other cleanups
* merging kernel_klips plugin back into trunkTobias Brunner2008-11-111-8/+10
|
* preliminary support of Mobile IPv6Andreas Steffen2008-11-111-2/+4
|
* corrected typo2Andreas Steffen2008-11-051-2/+2
|
* corrected captionsAndreas Steffen2008-11-021-1/+1
|
* added hooks for IKE and CHILD keymatMartin Willi2008-10-301-11/+13
|
* store plain skd, not the prfMartin Willi2008-10-301-1/+0
|
* moved CHILD_SA key derivation to keymat_tMartin Willi2008-10-291-42/+39
| | | | passing key chunks to CHILD_SA, not the PRF
* moved key derivation and management into keymat objectMartin Willi2008-10-281-2/+4
| | | | | | allows secured implementation of key management (e.g. in kernel or HW) only IKE keys for now
* re-established all previous AUD level messagesAndreas Steffen2008-10-171-2/+2
|
* moved updown script invocation to an optional pluginMartin Willi2008-10-161-15/+4
|
* reintegrated bus-refactoring branchMartin Willi2008-10-141-48/+44
|
* merging renaming of mode_t to ipsec_mode_t back to trunkTobias Brunner2008-09-251-1/+1
|
* cosmeticsAndreas Steffen2008-07-231-1/+1
|
* some more changes to IKE_SA and CHILD_SA loggingAndreas Steffen2008-07-221-6/+18
|
* ipsec status lists IPCOMP CPIsAndreas Steffen2008-07-221-1/+1
|
* consistent logging of IKE and CHILD SAsAndreas Steffen2008-07-211-5/+14
|
* introduced an additional bus->signal parameter for signal specific dataMartin Willi2008-07-181-26/+30
| | | | added SIG_IKE/SIG_CHD macros for signal emitting
* fixed acquire-delay bug by:Martin Willi2008-07-161-10/+9
| | | | | installing policies before states updating policies if protocol has changed
* strongswan.conf's charon.close_ike_on_child_failure closes IKE_SA if ↵Martin Willi2008-07-011-2/+36
| | | | CHILD_SA setup in IKE_AUTH fails
* sending INTERNAL_ADDRESS_FAILURE if virtual IP requested but none foundMartin Willi2008-07-011-13/+42
|
* IPComp for IKEv2Tobias Brunner2008-05-081-0/+112
|
* added API for random number generators, served through credential factoryMartin Willi2008-04-151-7/+6
| | | | ported randomizer_t to a rng_t on top of /dev/(u)random (plugin random)
* implementation of an CFG attribute framework, currently supporting virtual IPsMartin Willi2008-04-091-2/+1
| | | | | | updated ipsec.conf sourceip parameter to support CIDR notatation to serve from a pool %poolname to query a separate (database?) pool
* added equals() method to peer_cfg, ike_cfg, proposals, auth_infoMartin Willi2008-03-261-3/+3
| | | | | | allows easier merging of ipsec.conf connections replaced some iterators through enumerators made proposals algorithm_t private using enumerator
* merged the modularization branch (credentials) back to trunkMartin Willi2008-03-131-9/+4
|
* connection name to IKE_SA initiatingAndreas Steffen2007-09-151-1/+1
|
* put IKE_SA and CHILD_SA names in single quotesAndreas Steffen2007-09-151-1/+1
|
* log name of established CHILD_SAAndreas Steffen2007-09-151-2/+4
|
* fixed responder initiated CHILD_SA rekeying when using virtual IPsMartin Willi2007-07-041-11/+45
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-01 09:08:55 +0000