aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/sa
Commit message (Collapse)AuthorAgeFilesLines
...
* further mobike improvements, regarding to NAT-TMartin Willi2007-06-276-49/+74
|
* simple roaming of the client works (not MOBIKE conform yet!)Martin Willi2007-06-266-269/+220
|
* further fixed for mobike roamingMartin Willi2007-06-254-29/+119
|
* further MOBIKE stuff:Martin Willi2007-06-2112-99/+701
| | | | | | | | | kernel properly reports network reconfiguration and informs all IKE_SAs MOBIKE in IKE_AUTH: MOBIKE_SUPPORTED notify and address exchange reestablishment of IKE_SAs on network reconfiguration kinda works not stable yet!
* added extensions management to IKE_SAMartin Willi2007-06-183-1/+64
| | | | fixed NATD payload (port) when using route lookup
* source address lookup in kernel interfaceMartin Willi2007-06-182-18/+34
| | | | | | use it for NAT detection if no source address known from config support for %any...%any connections
* implemented more flexible iterator hook APIMartin Willi2007-06-151-4/+4
| | | | kernel interface handles interface changes and updates address list
* implemented address change notification (for MOBIKE)Martin Willi2007-06-141-6/+5
| | | | | implemented up to date address list cache to list interfaces
* fixed memleak when initiating to %anyMartin Willi2007-06-141-0/+1
|
* added missing files to the last commitMartin Willi2007-06-142-0/+232
|
* proper reauthentication:Martin Willi2007-06-145-77/+26
| | | | | IKE_SA is closed completely before the new is initiated, resolves some issues when a dynamic IP is requested from a pool
* introduced callback_job:Martin Willi2007-06-114-17/+17
| | | | | | | | | | | | simple asynchronous method invocation use daemons thread pool for all threads proper cancellation and cleanups cancellation mechanism to dynamically unload multithreaded code unified event_queue and scheduler => scheduler unified job_queue and thread_pool => processor removed job_type_t, not really needed fixes here, there and everywhere
* proper thread cancellation when using the charon->interfacesMartin Willi2007-05-231-0/+1
|
* removed misleading warning when rekeyingMartin Willi2007-05-231-1/+0
|
* support for virtual IP definition on client side:Martin Willi2007-05-222-4/+13
| | | | | | | if leftsourceip is defined, it is requested. server may define rightsourceip=%config to accept any, or it may overwrite it using rightsourceip. if server does not return an IP, client enforces its configured leftsourceip.
* fixed memleakMartin Willi2007-05-221-0/+1
|
* support of CA-based ipsec policiesAndreas Steffen2007-05-182-9/+12
|
* output of eap_type_names requires %N formatAndreas Steffen2007-05-181-1/+1
|
* added set_other_ca() and get_other_ca()Andreas Steffen2007-05-171-44/+68
|
* added set_other_ca() and get_other_ca()Andreas Steffen2007-05-171-2/+19
|
* removed route_job, handled all in interface_managerMartin Willi2007-05-161-1/+0
|
* routing/unrouting through interfaceMartin Willi2007-05-162-5/+6
|
* authentication failure is handled in ike_auth.cAndreas Steffen2007-05-151-3/+5
|
* cosmeticsAndreas Steffen2007-05-151-5/+5
|
* cosmeticsAndreas Steffen2007-05-151-2/+2
|
* adapted authentication failure text to those in the authenticatorsAndreas Steffen2007-05-151-3/+3
|
* support of multiple certificates with same peer idAndreas Steffen2007-05-151-18/+7
|
* cosmeticsAndreas Steffen2007-05-151-9/+7
|
* properly implemented interface_managers initiate, terminte_[ike|child]Martin Willi2007-05-092-3/+22
| | | | | proper thread release when stroke is CTRL+C'ed fixed some permission issues
* changing UID/GID after startup of pluto/charonMartin Willi2007-05-071-33/+0
| | | | added --with-uid/--with-gid configure option
* restructuring of configuration backendsMartin Willi2007-04-272-3/+3
| | | | | | | | | added propotypes of new control interfaces (xml & dbus) introduced loadable: configuration backends control interfaces using pluggable modules as in EAP
* properly checking received IDr as initiatorMartin Willi2007-04-252-4/+12
|
* fixed keyingtriesMartin Willi2007-04-231-0/+1
|
* added support for EAP methods not establishing an MSKMartin Willi2007-04-195-66/+82
|
* added PDF support for CHILD_SAsMartin Willi2007-04-195-107/+232
| | | | support for INVALID_KE_PAYLOAD negotiation for rekeying
* fixed memleak in IKE_SA managerMartin Willi2007-04-191-0/+1
|
* not using %m printf handler, as late errno interpration over bus may be ↵Martin Willi2007-04-121-7/+12
| | | | problematic
* removed IKE_SA_ID (%J) printf hook, two more to goMartin Willi2007-04-112-40/+12
|
* removed IKE_SA (%K) and CHILD_SA (%P) printf handlers, 3 more to goMartin Willi2007-04-114-170/+87
|
* cleaned up apidocMartin Willi2007-04-116-18/+87
| | | | | | added some comments removed configuration.[ch], as it does not make sense like it is
* fixed bug with roadwarrior and wildcard IDsAndreas Steffen2007-04-101-11/+19
|
* edited comment and debug outputAndreas Steffen2007-04-101-3/+3
|
* requesting the same virtual IP on reauthenticationMartin Willi2007-04-102-51/+68
|
* proper notification handlingMartin Willi2007-04-101-1/+103
|
* restructured file layoutMartin Willi2007-04-1019-444/+363
| | | | | | | | | new configuration structure: peer_cfg: configuration related to a peer (authenitcation, ...= ike_cfg: config to use for IKE setup (proposals) child_Cfg: config for CHILD_SA (proposals, traffic selectors) a peer_cfg has one ike_cfg and multiple child_cfg's stroke now uses fixed count of threads
* improved log output for checkout_by_message()Martin Willi2007-04-041-21/+28
|
* added IKE_SA_INIT retransmission detectionMartin Willi2007-03-294-122/+199
| | | | fixed thread exhaustion when IKE_SA is blocked for a longer time
* fixed task manager message id bug for cookiesMartin Willi2007-03-291-1/+1
|
* added retry limit for IKE_SA_INIT (give up after 5 cookie failures)Martin Willi2007-03-291-0/+15
|
* removed send_queue, handled internally in sender_t knowMartin Willi2007-03-285-9/+62
| | | | | do header parsing in receiver, ready for cookie integration
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 16:30:36 +0000