aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/sa
Commit message (Collapse)AuthorAgeFilesLines
...
* implemented ike_rekey()/child_rekey() bus hooksMartin Willi2009-07-092-0/+12
|
* defer MOBIKE update if we have no route to the peerMartin Willi2009-07-022-0/+42
|
* use rwlock instead of a mutex in trap_manager, avoids possible deadlockMartin Willi2009-06-161-18/+18
|
* reset IKE_SA on bus after checkout/checkin of replacement SAMartin Willi2009-06-161-2/+4
|
* include TSi/TSr of triggering packet in acquireMartin Willi2009-05-209-19/+55
|
* properly terminate EAP authentication if EAP method failsMartin Willi2009-05-201-1/+5
|
* simplified SPI allocation after refactoringsMartin Willi2009-05-141-19/+4
|
* fixed cleanup of traffic selector listsMartin Willi2009-05-121-2/+2
|
* do not destroy packet twice if message generation failedMartin Willi2009-05-121-0/+1
|
* properly end CERT_PRE task after detecting the final authentication roundMartin Willi2009-05-121-27/+41
|
* do not report a CHILD_SA rekey time if rekeying disabledMartin Willi2009-05-121-2/+10
|
* fixed configuration payload type as responderMartin Willi2009-05-111-1/+1
|
* never send a CERT payload in EAPMartin Willi2009-05-111-13/+13
|
* Fixed EAP authentication regressionMartin Willi2009-05-115-42/+76
| | | | | Use correct nonce/init message again for EAP AUTH payload sent from responder to initiator.
* fixed memleakMartin Willi2009-05-111-0/+1
|
* drop acquires we already have a pending connection attemptMartin Willi2009-05-081-14/+90
|
* initiate trapped CHILD_SAs with same reqidMartin Willi2009-05-086-30/+25
|
* removed $Id$ from new template generated filesMartin Willi2009-05-082-4/+0
|
* removed obsolete route/unroute code from ike_sa/controllerMartin Willi2009-05-082-254/+6
|
* make use of the new trap-managerMartin Willi2009-05-081-2/+3
|
* added a trap-manager to handle routed policies outside of IKE_SAsMartin Willi2009-05-082-0/+379
|
* instanciate new tasks only if none queuedMartin Willi2009-05-071-124/+125
|
* properly delete IKE_SA if IKE_SA_INIT processing failedMartin Willi2009-05-071-0/+5
|
* removing svn keyword $Id$ from all filesTobias Brunner2009-04-3063-126/+0
|
* merging changes from portability branch back to trunkTobias Brunner2009-04-3013-44/+44
| | | | | important change for developers: %Y replaces %D to print identities!
* added support for AES counter mode in ESPMartin Willi2009-04-271-2/+3
| | | | proposal keywords: aes128ctr aes192ctr aes256ctr
* attribute_manager supports attribute_handler's to handle configuration ↵Martin Willi2009-04-243-374/+141
| | | | | | | | attributes via plugins moved resolv.conf editing to a separate plugin (resolv_conf) extended attribute_provider interface to hand out arbitrary attributes moved strongswan.conf based dns/nbns configuration to a plugin (attr)
* schedule_job uses seconds to support time values larger than 49 daysMartin Willi2009-04-217-27/+21
| | | | added schedule_job_ms for ms resolution events
* dump CHILD_SA keys in loglevel 4Martin Willi2009-04-211-0/+10
|
* fixed IKE_SA rekeying collisionsMartin Willi2009-04-201-6/+19
|
* do not adopt already initiated tasks after rekeyingMartin Willi2009-04-201-9/+0
|
* fixing IKE_SA rekeying if charon.ikesa_table_size > 1Tobias Brunner2009-04-172-7/+20
|
* missed strcaseeq addedTobias Brunner2009-04-171-1/+1
|
* moved strcaseeq() macro from constants.h to utils.hAndreas Steffen2009-04-171-1/+1
|
* merged multi-auth branch back into trunkMartin Willi2009-04-1430-1562/+1872
|
* cosmeticsAndreas Steffen2009-03-261-1/+1
|
* output peer ID in duplicate deletion log entryAndreas Steffen2009-03-261-2/+2
|
* set port for NATD hash calculation in the "include-all" caseMartin Willi2009-03-261-0/+4
|
* updated DoxyfileMartin Willi2009-03-2432-35/+33
| | | | | | properly close all doxygen groups fixed remaining doxygen warnings
* reintegrated eap-radius branch into trunkMartin Willi2009-03-243-3/+7
|
* fallback to family specific %any(6) if kernel lookup failsMartin Willi2009-03-161-0/+6
|
* printf hooks refactored to increase portability (i.e. support for platforms ↵Tobias Brunner2009-03-121-2/+1
| | | | without glibc-compatible customizable printf - the Vstr string library is currently required on such platforms).
* adding plugin for EAP-MS-CHAPv2Tobias Brunner2009-02-182-1/+4
|
* configuration of NBNS server assignment via strongswan.confAndreas Steffen2009-02-131-3/+68
|
* configuration of DNS server assignment via strongswan.confAndreas Steffen2009-02-121-6/+29
|
* changed [4856] to dynamically choose traffic selector familyMartin Willi2009-02-111-14/+8
|
* send proper AUTHENTICATION_FAILED if EAP method is successful, but AUTH ↵Martin Willi2009-02-101-0/+6
| | | | mismatches
* free unneeded retransmission packet when exchange completesMartin Willi2009-02-091-1/+2
|
* proper initialization and disposal of keying materialAndreas Steffen2009-01-151-1/+3
|
* fixed ESP NULL encryptionAndreas Steffen2009-01-151-3/+3
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-03 18:07:02 +0000