aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/sa/tasks
Commit message (Collapse)AuthorAgeFilesLines
...
* added mobike=yes|no connection optionMartin Willi2007-08-291-11/+18
| | | | | | | yes: include mobike support notifies as initiator no: only enable mobike as responder when initiator supports it default: yes
* not touching IKE_SA_INIT from ike_mobike_t anymoreMartin Willi2007-07-191-1/+1
|
* fixed payload order (Nonce, KE) for IKE_SA_INITMartin Willi2007-07-161-3/+11
|
* fixed responder initiated CHILD_SA rekeying when using virtual IPsMartin Willi2007-07-041-11/+45
|
* improved MOBIKE:Martin Willi2007-07-032-36/+80
| | | | | | | | prefer address family already used do not change address implicit when mobike supported handle multiple simultaneous roaming requests more properly proper enabling/disabling of UDP encapsulation
* DBG1 level for 'peer supports MOBIKE' debug messageAndreas Steffen2007-07-021-1/+1
|
* further mobike improvements, regarding to NAT-TMartin Willi2007-06-272-18/+49
|
* simple roaming of the client works (not MOBIKE conform yet!)Martin Willi2007-06-261-8/+9
|
* further fixed for mobike roamingMartin Willi2007-06-251-3/+48
|
* further MOBIKE stuff:Martin Willi2007-06-219-21/+412
| | | | | | | | | kernel properly reports network reconfiguration and informs all IKE_SAs MOBIKE in IKE_AUTH: MOBIKE_SUPPORTED notify and address exchange reestablishment of IKE_SAs on network reconfiguration kinda works not stable yet!
* added extensions management to IKE_SAMartin Willi2007-06-181-0/+3
| | | | fixed NATD payload (port) when using route lookup
* source address lookup in kernel interfaceMartin Willi2007-06-181-17/+33
| | | | | | use it for NAT detection if no source address known from config support for %any...%any connections
* implemented address change notification (for MOBIKE)Martin Willi2007-06-141-6/+5
| | | | | implemented up to date address list cache to list interfaces
* added missing files to the last commitMartin Willi2007-06-142-0/+232
|
* proper reauthentication:Martin Willi2007-06-142-2/+5
| | | | | IKE_SA is closed completely before the new is initiated, resolves some issues when a dynamic IP is requested from a pool
* introduced callback_job:Martin Willi2007-06-112-3/+3
| | | | | | | | | | | | simple asynchronous method invocation use daemons thread pool for all threads proper cancellation and cleanups cancellation mechanism to dynamically unload multithreaded code unified event_queue and scheduler => scheduler unified job_queue and thread_pool => processor removed job_type_t, not really needed fixes here, there and everywhere
* removed misleading warning when rekeyingMartin Willi2007-05-231-1/+0
|
* support for virtual IP definition on client side:Martin Willi2007-05-222-4/+13
| | | | | | | if leftsourceip is defined, it is requested. server may define rightsourceip=%config to accept any, or it may overwrite it using rightsourceip. if server does not return an IP, client enforces its configured leftsourceip.
* fixed memleakMartin Willi2007-05-221-0/+1
|
* support of CA-based ipsec policiesAndreas Steffen2007-05-181-9/+11
|
* cosmeticsAndreas Steffen2007-05-151-5/+5
|
* adapted authentication failure text to those in the authenticatorsAndreas Steffen2007-05-151-3/+3
|
* cosmeticsAndreas Steffen2007-05-151-9/+7
|
* properly implemented interface_managers initiate, terminte_[ike|child]Martin Willi2007-05-091-0/+22
| | | | | proper thread release when stroke is CTRL+C'ed fixed some permission issues
* restructuring of configuration backendsMartin Willi2007-04-271-1/+1
| | | | | | | | | added propotypes of new control interfaces (xml & dbus) introduced loadable: configuration backends control interfaces using pluggable modules as in EAP
* properly checking received IDr as initiatorMartin Willi2007-04-251-1/+8
|
* added PDF support for CHILD_SAsMartin Willi2007-04-194-106/+227
| | | | support for INVALID_KE_PAYLOAD negotiation for rekeying
* cleaned up apidocMartin Willi2007-04-112-4/+3
| | | | | | added some comments removed configuration.[ch], as it does not make sense like it is
* edited comment and debug outputAndreas Steffen2007-04-101-3/+3
|
* requesting the same virtual IP on reauthenticationMartin Willi2007-04-101-2/+14
|
* restructured file layoutMartin Willi2007-04-1010-144/+135
| | | | | | | | | new configuration structure: peer_cfg: configuration related to a peer (authenitcation, ...= ike_cfg: config to use for IKE setup (proposals) child_Cfg: config for CHILD_SA (proposals, traffic selectors) a peer_cfg has one ike_cfg and multiple child_cfg's stroke now uses fixed count of threads
* added IKE_SA_INIT retransmission detectionMartin Willi2007-03-291-8/+4
| | | | fixed thread exhaustion when IKE_SA is blocked for a longer time
* added retry limit for IKE_SA_INIT (give up after 5 cookie failures)Martin Willi2007-03-291-0/+15
|
* fixed state and logging of IKE_SA when using EAP authenticationMartin Willi2007-03-271-5/+16
|
* fixed deferred CHILD_SA rekeying while IKE_SA rekeying in progressMartin Willi2007-03-271-2/+2
|
* added CHILD_SA compare check for rekeying collisions Martin Willi2007-03-225-8/+47
|
* fixed some rekey collision issuesMartin Willi2007-03-212-4/+20
| | | | added retry with jitter when rekeying fails
* fixed child rekey collisionMartin Willi2007-03-217-64/+147
| | | | | implemented ike rekey collision
* handling of CHILD_SA rekeying collisionsMartin Willi2007-03-215-45/+124
|
* fixed inproper delete of CHILD_SAMartin Willi2007-03-211-4/+7
|
* fixed some exchange collisions (except IKE/CHILD rekeying)Martin Willi2007-03-205-64/+84
|
* fixed nat detection bugMartin Willi2007-03-201-2/+2
|
* adjusted loglevelsMartin Willi2007-03-201-13/+6
|
* fixed CHILD_SA rekeying/delete bug on 64bit machinesMartin Willi2007-03-191-3/+3
| | | | removed obsolete methods in delete_payload
* removed cfg-payload dns test codeMartin Willi2007-03-141-2/+2
|
* not detaching from bus when IKE_SA_INIT is retriedMartin Willi2007-03-132-7/+10
|
* fixed memleaks when using EAP authenticationMartin Willi2007-03-082-43/+64
| | | | | fixed configuration payloads when using EAP
* including peers certificate when his certreq is emptyMartin Willi2007-03-081-2/+11
|
* implemented cookies as initiatorMartin Willi2007-03-082-9/+44
| | | | proper logging of notifies in IKE_SA setup
* some cleanupsMartin Willi2007-03-082-11/+10
| | | | | not installing %any DNS servers
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 01:58:51 +0000