aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/sa/tasks
Commit message (Collapse)AuthorAgeFilesLines
* Moving charon to libcharon.Tobias Brunner2010-03-1936-9579/+0
|
* Use src/dst ports as configured in ike_cfgMartin Willi2010-02-262-8/+33
|
* Do not build own authentication data before we've verified others, we need ↵4.3.6Martin Willi2010-02-091-28/+33
| | | | the other identity in EAP
* Made inactivity_timeout a per CHILD_SA config optionMartin Willi2010-01-271-7/+7
|
* Support for closing CHILD/IKE_SA if a CHILD_SA is inactive.Martin Willi2010-01-121-0/+25
|
* log EAP-only authentication proposalAndreas Steffen2010-01-111-3/+5
|
* Support EAP-only authentication for mutual and key deriving EAP methodsMartin Willi2010-01-071-31/+54
|
* Indicate and dected support for EAP-only authenticationMartin Willi2010-01-071-7/+23
|
* Match to private use algorithms only if we know we are talking to strongSwanMartin Willi2010-01-072-3/+8
|
* Interpret private use BEET mode notify only if we know we are talking to ↵Martin Willi2010-01-071-1/+9
| | | | strongSwan
* Add an option to send a vendor ID, allows us to properly support private ↵Martin Willi2010-01-075-8/+192
| | | | extensions
* enforce RFC 3779 address constraints on traffic selectorsAndreas Steffen2009-12-251-0/+61
|
* Fixed BEET mode by installing SAs with negotiated address in traffic selectorMartin Willi2009-12-171-5/+5
|
* provide attributes from SQL databaseAndreas Steffen2009-12-161-2/+4
|
* Prefer EAP-Identity for provider attribute/address lookupMartin Willi2009-12-011-4/+37
|
* Store completed authentication rounds permanently on IKE_SA, with flush optionMartin Willi2009-12-011-41/+14
|
* Do not propose transport mode as initiator if connection is NATedMartin Willi2009-11-301-0/+6
|
* Check existing path in mobike probing only if we still have a routeMartin Willi2009-11-261-4/+4
|
* added more debugging in configuration attribute handlingAndreas Steffen2009-11-241-0/+4
|
* Do not recreate existing create_child subtask when retrying with different ↵Martin Willi2009-11-231-2/+5
| | | | DH group
* Avoid potentially unaligned half-word readMartin Willi2009-11-231-5/+8
|
* Fixed memleak in attribute handlingMartin Willi2009-11-171-0/+1
|
* Give plugins more control of which configuration attributes to request, and ↵Martin Willi2009-11-171-61/+123
| | | | pass received attributes back to the requesting handler
* moved attribute_manager to libstrongswanAndreas Steffen2009-10-131-3/+3
|
* Do not increase the invalid-KE/Cookie retry counter for additional keyingtry ↵Martin Willi2009-09-241-1/+3
| | | | attempts
* Fixed encoding of hash-and-url cert payloadMartin Willi2009-09-221-13/+13
|
* Cleaned up some code of the mediation extension.Tobias Brunner2009-09-043-93/+115
|
* Moved set_state after the DBG0 statement, so that the message gets logged ↵Tobias Brunner2009-09-041-2/+2
| | | | also for mediation connections without CHILD_SA.
* remove spaces within tabs (\t( )+\t)Martin Willi2009-09-0410-10/+10
|
* removed trailing spaces ([[:space:]]+$)Martin Willi2009-09-0426-609/+609
|
* fixed memleak in rekey collissionsMartin Willi2009-09-031-0/+3
|
* Convert empty CREATE_CHILD_SA exchange to an INFORMATIONALMartin Willi2009-09-031-1/+3
|
* Use get_notify() to look up single notifiesMartin Willi2009-09-034-104/+35
|
* Simplified the search for ME_CONNECTID notifies.Tobias Brunner2009-09-021-42/+5
|
* Fixed some typos; whitespace cleanup.Tobias Brunner2009-09-024-14/+14
|
* If no inbound CHILD_SA is found, try to find an outbound SA.Tobias Brunner2009-09-012-4/+18
| | | | | Due to the new lifetime limits in- and outbound SAs may expire individually.
* use time_monotonic() instead of time() for statistics and time difference ↵Martin Willi2009-08-311-1/+1
| | | | calculations
* updated charon to new fingerprinting APIMartin Willi2009-08-262-45/+44
|
* %llu correctly prints u_int64_tAndreas Steffen2009-08-071-3/+3
|
* printing u_int64_t caused segfault on 32-bit platformsAndreas Steffen2009-08-071-3/+3
|
* Fixed a race condition when querying stats of a child_sa in different order.Tobias Brunner2009-08-061-4/+6
|
* Reverted the interface changes introduced in 3f720dc7.Tobias Brunner2009-08-061-4/+2
|
* output number of transmitted bytes in closing CHILD_SA statementAndreas Steffen2009-08-041-1/+5
|
* report installation failure of inbound and/or outbound IPsec SA, separatelyAndreas Steffen2009-07-131-8/+11
|
* implemented ike_down() bus hookMartin Willi2009-07-092-8/+32
|
* implemented ike_up() bus hookMartin Willi2009-07-091-0/+2
|
* implemented child_down() bus hookMartin Willi2009-07-091-2/+17
|
* implemented child_up() bus hookMartin Willi2009-07-093-5/+24
|
* implemented ike_rekey()/child_rekey() bus hooksMartin Willi2009-07-092-0/+12
|
* include TSi/TSr of triggering packet in acquireMartin Willi2009-05-205-9/+38
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-29 20:37:52 +0000