aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/sa
Commit message (Collapse)AuthorAgeFilesLines
...
* put IKE_SA and CHILD_SA names in single quotesAndreas Steffen2007-09-153-6/+6
|
* log name of IKE_SA in state changesAndreas Steffen2007-09-151-1/+2
|
* log name of established IKE_SAAndreas Steffen2007-09-151-4/+8
|
* log name of established CHILD_SAAndreas Steffen2007-09-151-2/+4
|
* added missing 'break' in checkout_by_peerTobias Brunner2007-09-131-0/+1
|
* only switch to port 4500 if we are on 500: fixed reauthentication in NAT Martin Willi2007-09-121-2/+9
| | | | scenarios
* removed unused chunk variableAndreas Steffen2007-09-121-3/+1
|
* moving virtual IP when interface changes due mobikeMartin Willi2007-09-121-0/+11
|
* fixed NAT detection with mobikeMartin Willi2007-09-122-7/+7
|
* overwrite shared_key with random bytes before freeing itAndreas Steffen2007-09-111-2/+2
|
* replaced get_rsa_private_key() by rsa_signature() in order restrict the ↵Andreas Steffen2007-09-111-18/+5
| | | | distribution of private key material
* implemented routeability checks for mobike (experimental)Martin Willi2007-09-034-48/+156
|
* added mobike=yes|no connection optionMartin Willi2007-08-292-17/+33
| | | | | | | yes: include mobike support notifies as initiator no: only enable mobike as responder when initiator supports it default: yes
* rerouting CHILD_SA if its IKE_SA gets deletedMartin Willi2007-08-271-99/+149
|
* corrected debug outputAndreas Steffen2007-08-101-1/+1
|
* backports from the p2p-nat-t branch:Tobias Brunner2007-07-191-2/+2
| | | | | | * double assignment of function ''destroy'' in some jobs * typos
* not touching IKE_SA_INIT from ike_mobike_t anymoreMartin Willi2007-07-191-1/+1
|
* fixed payload order (Nonce, KE) for IKE_SA_INITMartin Willi2007-07-161-3/+11
|
* changed mobike behavior to NOT use additional responder addresses until we ↵Martin Willi2007-07-041-95/+3
| | | | have path discovery
* fixed responder initiated CHILD_SA rekeying when using virtual IPsMartin Willi2007-07-041-11/+45
|
* fixed firewall script invocation when interface is not available anymoreMartin Willi2007-07-031-17/+28
|
* improved MOBIKE:Martin Willi2007-07-036-52/+183
| | | | | | | | prefer address family already used do not change address implicit when mobike supported handle multiple simultaneous roaming requests more properly proper enabling/disabling of UDP encapsulation
* DBG1 level for 'peer supports MOBIKE' debug messageAndreas Steffen2007-07-021-1/+1
|
* fixed mobike address update from and to NATMartin Willi2007-07-022-34/+20
|
* proper update of IPsec SA when roaming a host-to-host tunnelMartin Willi2007-07-022-69/+127
| | | | roaming of IPsec SAs using virtual IPs
* fixed dpd=hold when using virtual IPsMartin Willi2007-06-292-10/+25
|
* removed accidently checked in debbuging codeMartin Willi2007-06-291-2/+0
|
* fixed IKE_SA reestablishment after DPD using port 500Martin Willi2007-06-281-65/+71
|
* further mobike improvements, regarding to NAT-TMartin Willi2007-06-276-49/+74
|
* simple roaming of the client works (not MOBIKE conform yet!)Martin Willi2007-06-266-269/+220
|
* further fixed for mobike roamingMartin Willi2007-06-254-29/+119
|
* further MOBIKE stuff:Martin Willi2007-06-2112-99/+701
| | | | | | | | | kernel properly reports network reconfiguration and informs all IKE_SAs MOBIKE in IKE_AUTH: MOBIKE_SUPPORTED notify and address exchange reestablishment of IKE_SAs on network reconfiguration kinda works not stable yet!
* added extensions management to IKE_SAMartin Willi2007-06-183-1/+64
| | | | fixed NATD payload (port) when using route lookup
* source address lookup in kernel interfaceMartin Willi2007-06-182-18/+34
| | | | | | use it for NAT detection if no source address known from config support for %any...%any connections
* implemented more flexible iterator hook APIMartin Willi2007-06-151-4/+4
| | | | kernel interface handles interface changes and updates address list
* implemented address change notification (for MOBIKE)Martin Willi2007-06-141-6/+5
| | | | | implemented up to date address list cache to list interfaces
* fixed memleak when initiating to %anyMartin Willi2007-06-141-0/+1
|
* added missing files to the last commitMartin Willi2007-06-142-0/+232
|
* proper reauthentication:Martin Willi2007-06-145-77/+26
| | | | | IKE_SA is closed completely before the new is initiated, resolves some issues when a dynamic IP is requested from a pool
* introduced callback_job:Martin Willi2007-06-114-17/+17
| | | | | | | | | | | | simple asynchronous method invocation use daemons thread pool for all threads proper cancellation and cleanups cancellation mechanism to dynamically unload multithreaded code unified event_queue and scheduler => scheduler unified job_queue and thread_pool => processor removed job_type_t, not really needed fixes here, there and everywhere
* proper thread cancellation when using the charon->interfacesMartin Willi2007-05-231-0/+1
|
* removed misleading warning when rekeyingMartin Willi2007-05-231-1/+0
|
* support for virtual IP definition on client side:Martin Willi2007-05-222-4/+13
| | | | | | | if leftsourceip is defined, it is requested. server may define rightsourceip=%config to accept any, or it may overwrite it using rightsourceip. if server does not return an IP, client enforces its configured leftsourceip.
* fixed memleakMartin Willi2007-05-221-0/+1
|
* support of CA-based ipsec policiesAndreas Steffen2007-05-182-9/+12
|
* output of eap_type_names requires %N formatAndreas Steffen2007-05-181-1/+1
|
* added set_other_ca() and get_other_ca()Andreas Steffen2007-05-171-44/+68
|
* added set_other_ca() and get_other_ca()Andreas Steffen2007-05-171-2/+19
|
* removed route_job, handled all in interface_managerMartin Willi2007-05-161-1/+0
|
* routing/unrouting through interfaceMartin Willi2007-05-162-5/+6
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 03:56:29 +0000