aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/sa
Commit message (Collapse)AuthorAgeFilesLines
...
* time values in strongswan.conf can be optionally specified in days (d), ↵Andreas Steffen2008-09-041-1/+1
| | | | hours (h), minutes (m), or seconds (s)
* charon.keep_alive = 0 disables the sending of NAT keep alivesAndreas Steffen2008-09-031-1/+1
|
* configure NAT keep alive interval using the charon.keep_alive keyAndreas Steffen2008-09-031-2/+9
|
* handle INFORMATIONAL exchanges with NATD payloads in mobike taskMartin Willi2008-09-021-0/+2
|
* cosmeticsAndreas Steffen2008-08-261-1/+1
|
* completed support of AUTHZ_CA_CERT and AUTHZ_CA_CERT_NAME attributesAndreas Steffen2008-08-261-7/+24
|
* ported parts of two-sim branchMartin Willi2008-08-229-80/+326
| | | | | | eap_identity parameter to exchange in eap_identity some auth_info/peer_cfg refactorings fixed some bugs, introduced new ones
* a (incomplete) implementation of draft-sheffer-ikev2-gtc-00.txt using PAMMartin Willi2008-08-212-6/+6
|
* corrected typoAndreas Steffen2008-08-111-1/+1
|
* initiator sends contents of rightca= if present as a certificate request ↵Andreas Steffen2008-08-051-9/+15
| | | | without searching for further CA certificates
* using a entry cache for duplicate checks, avoids deadlocksMartin Willi2008-07-301-4/+37
|
* demoted IKE state change output to debug level 2Andreas Steffen2008-07-281-1/+1
|
* ignore AUTH_LIFETIME value if reauthentication has already been scheduled ↵Andreas Steffen2008-07-281-8/+13
| | | | earlier
* completed IKE_SA logging at the AUDIT levelAndreas Steffen2008-07-233-8/+43
|
* IKE_SA rekeying inherits other_host from old IKE_SAAndreas Steffen2008-07-231-0/+3
|
* cosmeticsAndreas Steffen2008-07-231-1/+1
|
* some more changes to IKE_SA and CHILD_SA loggingAndreas Steffen2008-07-226-22/+46
|
* cosmeticsAndreas Steffen2008-07-221-1/+1
|
* ipsec status lists IPCOMP CPIsAndreas Steffen2008-07-223-6/+31
|
* own CPI was not deleted due to copy-and-paste errorAndreas Steffen2008-07-221-1/+1
|
* consistent logging of SPIs and CPIsAndreas Steffen2008-07-221-2/+2
|
* consistent logging of IKE and CHILD SAsAndreas Steffen2008-07-214-23/+39
|
* introduced an additional bus->signal parameter for signal specific dataMartin Willi2008-07-188-94/+100
| | | | added SIG_IKE/SIG_CHD macros for signal emitting
* fixed potential segfault in resolve_hostsMartin Willi2008-07-171-1/+4
|
* fixed acquire-delay bug by:Martin Willi2008-07-164-15/+21
| | | | | installing policies before states updating policies if protocol has changed
* reverted [4125],[4166], reimplemented the proper wayMartin Willi2008-07-111-2/+8
|
* setting ike_sa on bus in checkout_newMartin Willi2008-07-111-0/+1
|
* do a route lookup to allow routing of left=%any connections Martin Willi2008-07-091-5/+15
|
* peer_cfg lookup takes peer addresses into accountMartin Willi2008-07-011-1/+2
|
* strongswan.conf's charon.close_ike_on_child_failure closes IKE_SA if ↵Martin Willi2008-07-011-2/+36
| | | | CHILD_SA setup in IKE_AUTH fails
* sending INTERNAL_ADDRESS_FAILURE if virtual IP requested but none foundMartin Willi2008-07-012-14/+46
|
* log received vendor id as a hex valueAndreas Steffen2008-06-271-0/+9
|
* flushing task_manager on shutdown while IKE_SA is usableMartin Willi2008-06-251-1/+2
|
* resolving hosts before routeMartin Willi2008-06-231-0/+2
|
* display selected IKE proposal in ipsec statusallAndreas Steffen2008-06-223-4/+61
|
* make config_auth_method_t backward compatible to existing sql templatesAndreas Steffen2008-06-101-9/+5
|
* ECDSA with OpenSSLTobias Brunner2008-06-106-55/+162
|
* DNS resolving of ike_cfg hosts dynamically on demandMartin Willi2008-06-063-61/+79
|
* do not roam IKE_SA in created or deleting stateMartin Willi2008-06-041-0/+8
|
* filtering out non matching path probing pairs explicitlyMartin Willi2008-05-231-0/+5
|
* replying to COOKIE2 mobike notify properly4.2.2Martin Willi2008-05-211-1/+49
| | | | including COOKIE2 ourself after path probing
* using fixed size keys in key derivation for AES-XCBC PRFMartin Willi2008-05-211-7/+24
|
* IPComp for IKEv2Tobias Brunner2008-05-084-12/+215
|
* Hash and URL cosmeticsAndreas Steffen2008-04-182-11/+11
|
* support for hash and URL encoded certificate payloads in charonTobias Brunner2008-04-183-51/+235
|
* splitted IKE_SA manager destroy to allow plugin interactionMartin Willi2008-04-172-5/+24
|
* slightly optimized IKE_SA checkinMartin Willi2008-04-161-3/+7
|
* optimized half-open IKE_SA lookup (no checkout)Martin Willi2008-04-161-3/+13
|
* added API for random number generators, served through credential factoryMartin Willi2008-04-156-52/+47
| | | | ported randomizer_t to a rng_t on top of /dev/(u)random (plugin random)
* implemented IKE_SA uniqueness using ipsec.conf uniqueids paramaterMartin Willi2008-04-143-0/+115
| | | | additionally supports a "keep" value to keep the old IKE_SA
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 09:51:51 +0000