aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/sa
Commit message (Collapse)AuthorAgeFilesLines
* removed c++ style comments4.1.9Martin Willi2007-12-045-97/+86
| | | | | fixed compiler warnings
* fixed mobike/auth_lifetime in conjunction with p2p-nattMartin Willi2007-12-042-6/+6
|
* removed redundant server reflexive endpoint debug messageAndreas Steffen2007-12-041-1/+0
|
* improved P2P_ENDPOINT debuggingAndreas Steffen2007-12-033-2/+6
|
* moved AUTH_LIFETIME handling in its own task (cleaner separation, proper ↵Martin Willi2007-12-037-34/+293
| | | | payload order)
* improving [3361]: moved one of the added return valuesTobias Brunner2007-11-221-1/+2
|
* added two return statements comitted by Marius TomaschewskiAndreas Steffen2007-11-211-1/+2
|
* implemented RFC4478 (repeated authentication)Martin Willi2007-11-204-47/+204
| | | | | changed %V printf handler to take a time delta, %#V now takes two arguments
* fixed NO_PROPOSAL_CHOSEN response on IKE_SA_INITMartin Willi2007-11-141-0/+2
|
* fixed _updown target for ipv6Andreas Steffen2007-11-061-1/+1
|
* adding new virtual ip before deleting old one to keep IP on reauthenticationMartin Willi2007-10-251-7/+7
|
* experimental P2P-NAT-T for IKEv2 merged back from branchTobias Brunner2007-10-0312-12/+3458
|
* ID payload with explicit payload typeTobias Brunner2007-10-021-2/+2
|
* moved force_encap to ike_config, enables responder to enforce udp encapsulationMartin Willi2007-10-012-9/+10
| | | | fixed bugs in force_encap code
* removed accidentally checked in debugging codeMartin Willi2007-10-011-4/+0
|
* implemented IKEv2 force_encap connection parameterMartin Willi2007-10-014-6/+55
| | | | | enforces UDP encapsulation by faking NAT detection payloads to hurdle restrictive firewalls
* implemented more aggressive MOBIKE path probingMartin Willi2007-09-284-24/+100
| | | | | do not queue more than one MOBIKE task
* typosTobias Brunner2007-09-272-3/+3
|
* improved MOBIKE roaming between interfacesMartin Willi2007-09-244-15/+25
|
* connection name to IKE_SA initiatingAndreas Steffen2007-09-152-2/+3
|
* put IKE_SA and CHILD_SA names in single quotesAndreas Steffen2007-09-153-6/+6
|
* log name of IKE_SA in state changesAndreas Steffen2007-09-151-1/+2
|
* log name of established IKE_SAAndreas Steffen2007-09-151-4/+8
|
* log name of established CHILD_SAAndreas Steffen2007-09-151-2/+4
|
* added missing 'break' in checkout_by_peerTobias Brunner2007-09-131-0/+1
|
* only switch to port 4500 if we are on 500: fixed reauthentication in NAT Martin Willi2007-09-121-2/+9
| | | | scenarios
* removed unused chunk variableAndreas Steffen2007-09-121-3/+1
|
* moving virtual IP when interface changes due mobikeMartin Willi2007-09-121-0/+11
|
* fixed NAT detection with mobikeMartin Willi2007-09-122-7/+7
|
* overwrite shared_key with random bytes before freeing itAndreas Steffen2007-09-111-2/+2
|
* replaced get_rsa_private_key() by rsa_signature() in order restrict the ↵Andreas Steffen2007-09-111-18/+5
| | | | distribution of private key material
* implemented routeability checks for mobike (experimental)Martin Willi2007-09-034-48/+156
|
* added mobike=yes|no connection optionMartin Willi2007-08-292-17/+33
| | | | | | | yes: include mobike support notifies as initiator no: only enable mobike as responder when initiator supports it default: yes
* rerouting CHILD_SA if its IKE_SA gets deletedMartin Willi2007-08-271-99/+149
|
* corrected debug outputAndreas Steffen2007-08-101-1/+1
|
* backports from the p2p-nat-t branch:Tobias Brunner2007-07-191-2/+2
| | | | | | * double assignment of function ''destroy'' in some jobs * typos
* not touching IKE_SA_INIT from ike_mobike_t anymoreMartin Willi2007-07-191-1/+1
|
* fixed payload order (Nonce, KE) for IKE_SA_INITMartin Willi2007-07-161-3/+11
|
* changed mobike behavior to NOT use additional responder addresses until we ↵Martin Willi2007-07-041-95/+3
| | | | have path discovery
* fixed responder initiated CHILD_SA rekeying when using virtual IPsMartin Willi2007-07-041-11/+45
|
* fixed firewall script invocation when interface is not available anymoreMartin Willi2007-07-031-17/+28
|
* improved MOBIKE:Martin Willi2007-07-036-52/+183
| | | | | | | | prefer address family already used do not change address implicit when mobike supported handle multiple simultaneous roaming requests more properly proper enabling/disabling of UDP encapsulation
* DBG1 level for 'peer supports MOBIKE' debug messageAndreas Steffen2007-07-021-1/+1
|
* fixed mobike address update from and to NATMartin Willi2007-07-022-34/+20
|
* proper update of IPsec SA when roaming a host-to-host tunnelMartin Willi2007-07-022-69/+127
| | | | roaming of IPsec SAs using virtual IPs
* fixed dpd=hold when using virtual IPsMartin Willi2007-06-292-10/+25
|
* removed accidently checked in debbuging codeMartin Willi2007-06-291-2/+0
|
* fixed IKE_SA reestablishment after DPD using port 500Martin Willi2007-06-281-65/+71
|
* further mobike improvements, regarding to NAT-TMartin Willi2007-06-276-49/+74
|
* simple roaming of the client works (not MOBIKE conform yet!)Martin Willi2007-06-266-269/+220
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-01 22:05:43 +0000