aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/sa
Commit message (Collapse)AuthorAgeFilesLines
* experimental P2P-NAT-T for IKEv2 merged back from branchTobias Brunner2007-10-0312-12/+3458
|
* ID payload with explicit payload typeTobias Brunner2007-10-021-2/+2
|
* moved force_encap to ike_config, enables responder to enforce udp encapsulationMartin Willi2007-10-012-9/+10
| | | | fixed bugs in force_encap code
* removed accidentally checked in debugging codeMartin Willi2007-10-011-4/+0
|
* implemented IKEv2 force_encap connection parameterMartin Willi2007-10-014-6/+55
| | | | | enforces UDP encapsulation by faking NAT detection payloads to hurdle restrictive firewalls
* implemented more aggressive MOBIKE path probingMartin Willi2007-09-284-24/+100
| | | | | do not queue more than one MOBIKE task
* typosTobias Brunner2007-09-272-3/+3
|
* improved MOBIKE roaming between interfacesMartin Willi2007-09-244-15/+25
|
* connection name to IKE_SA initiatingAndreas Steffen2007-09-152-2/+3
|
* put IKE_SA and CHILD_SA names in single quotesAndreas Steffen2007-09-153-6/+6
|
* log name of IKE_SA in state changesAndreas Steffen2007-09-151-1/+2
|
* log name of established IKE_SAAndreas Steffen2007-09-151-4/+8
|
* log name of established CHILD_SAAndreas Steffen2007-09-151-2/+4
|
* added missing 'break' in checkout_by_peerTobias Brunner2007-09-131-0/+1
|
* only switch to port 4500 if we are on 500: fixed reauthentication in NAT Martin Willi2007-09-121-2/+9
| | | | scenarios
* removed unused chunk variableAndreas Steffen2007-09-121-3/+1
|
* moving virtual IP when interface changes due mobikeMartin Willi2007-09-121-0/+11
|
* fixed NAT detection with mobikeMartin Willi2007-09-122-7/+7
|
* overwrite shared_key with random bytes before freeing itAndreas Steffen2007-09-111-2/+2
|
* replaced get_rsa_private_key() by rsa_signature() in order restrict the ↵Andreas Steffen2007-09-111-18/+5
| | | | distribution of private key material
* implemented routeability checks for mobike (experimental)Martin Willi2007-09-034-48/+156
|
* added mobike=yes|no connection optionMartin Willi2007-08-292-17/+33
| | | | | | | yes: include mobike support notifies as initiator no: only enable mobike as responder when initiator supports it default: yes
* rerouting CHILD_SA if its IKE_SA gets deletedMartin Willi2007-08-271-99/+149
|
* corrected debug outputAndreas Steffen2007-08-101-1/+1
|
* backports from the p2p-nat-t branch:Tobias Brunner2007-07-191-2/+2
| | | | | | * double assignment of function ''destroy'' in some jobs * typos
* not touching IKE_SA_INIT from ike_mobike_t anymoreMartin Willi2007-07-191-1/+1
|
* fixed payload order (Nonce, KE) for IKE_SA_INITMartin Willi2007-07-161-3/+11
|
* changed mobike behavior to NOT use additional responder addresses until we ↵Martin Willi2007-07-041-95/+3
| | | | have path discovery
* fixed responder initiated CHILD_SA rekeying when using virtual IPsMartin Willi2007-07-041-11/+45
|
* fixed firewall script invocation when interface is not available anymoreMartin Willi2007-07-031-17/+28
|
* improved MOBIKE:Martin Willi2007-07-036-52/+183
| | | | | | | | prefer address family already used do not change address implicit when mobike supported handle multiple simultaneous roaming requests more properly proper enabling/disabling of UDP encapsulation
* DBG1 level for 'peer supports MOBIKE' debug messageAndreas Steffen2007-07-021-1/+1
|
* fixed mobike address update from and to NATMartin Willi2007-07-022-34/+20
|
* proper update of IPsec SA when roaming a host-to-host tunnelMartin Willi2007-07-022-69/+127
| | | | roaming of IPsec SAs using virtual IPs
* fixed dpd=hold when using virtual IPsMartin Willi2007-06-292-10/+25
|
* removed accidently checked in debbuging codeMartin Willi2007-06-291-2/+0
|
* fixed IKE_SA reestablishment after DPD using port 500Martin Willi2007-06-281-65/+71
|
* further mobike improvements, regarding to NAT-TMartin Willi2007-06-276-49/+74
|
* simple roaming of the client works (not MOBIKE conform yet!)Martin Willi2007-06-266-269/+220
|
* further fixed for mobike roamingMartin Willi2007-06-254-29/+119
|
* further MOBIKE stuff:Martin Willi2007-06-2112-99/+701
| | | | | | | | | kernel properly reports network reconfiguration and informs all IKE_SAs MOBIKE in IKE_AUTH: MOBIKE_SUPPORTED notify and address exchange reestablishment of IKE_SAs on network reconfiguration kinda works not stable yet!
* added extensions management to IKE_SAMartin Willi2007-06-183-1/+64
| | | | fixed NATD payload (port) when using route lookup
* source address lookup in kernel interfaceMartin Willi2007-06-182-18/+34
| | | | | | use it for NAT detection if no source address known from config support for %any...%any connections
* implemented more flexible iterator hook APIMartin Willi2007-06-151-4/+4
| | | | kernel interface handles interface changes and updates address list
* implemented address change notification (for MOBIKE)Martin Willi2007-06-141-6/+5
| | | | | implemented up to date address list cache to list interfaces
* fixed memleak when initiating to %anyMartin Willi2007-06-141-0/+1
|
* added missing files to the last commitMartin Willi2007-06-142-0/+232
|
* proper reauthentication:Martin Willi2007-06-145-77/+26
| | | | | IKE_SA is closed completely before the new is initiated, resolves some issues when a dynamic IP is requested from a pool
* introduced callback_job:Martin Willi2007-06-114-17/+17
| | | | | | | | | | | | simple asynchronous method invocation use daemons thread pool for all threads proper cancellation and cleanups cancellation mechanism to dynamically unload multithreaded code unified event_queue and scheduler => scheduler unified job_queue and thread_pool => processor removed job_type_t, not really needed fixes here, there and everywhere
* proper thread cancellation when using the charon->interfacesMartin Willi2007-05-231-0/+1
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-06 14:03:55 +0000