aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/sa
Commit message (Collapse)AuthorAgeFilesLines
...
* fixed acquire-delay bug by:Martin Willi2008-07-164-15/+21
| | | | | installing policies before states updating policies if protocol has changed
* reverted [4125],[4166], reimplemented the proper wayMartin Willi2008-07-111-2/+8
|
* setting ike_sa on bus in checkout_newMartin Willi2008-07-111-0/+1
|
* do a route lookup to allow routing of left=%any connections Martin Willi2008-07-091-5/+15
|
* peer_cfg lookup takes peer addresses into accountMartin Willi2008-07-011-1/+2
|
* strongswan.conf's charon.close_ike_on_child_failure closes IKE_SA if ↵Martin Willi2008-07-011-2/+36
| | | | CHILD_SA setup in IKE_AUTH fails
* sending INTERNAL_ADDRESS_FAILURE if virtual IP requested but none foundMartin Willi2008-07-012-14/+46
|
* log received vendor id as a hex valueAndreas Steffen2008-06-271-0/+9
|
* flushing task_manager on shutdown while IKE_SA is usableMartin Willi2008-06-251-1/+2
|
* resolving hosts before routeMartin Willi2008-06-231-0/+2
|
* display selected IKE proposal in ipsec statusallAndreas Steffen2008-06-223-4/+61
|
* make config_auth_method_t backward compatible to existing sql templatesAndreas Steffen2008-06-101-9/+5
|
* ECDSA with OpenSSLTobias Brunner2008-06-106-55/+162
|
* DNS resolving of ike_cfg hosts dynamically on demandMartin Willi2008-06-063-61/+79
|
* do not roam IKE_SA in created or deleting stateMartin Willi2008-06-041-0/+8
|
* filtering out non matching path probing pairs explicitlyMartin Willi2008-05-231-0/+5
|
* replying to COOKIE2 mobike notify properly4.2.2Martin Willi2008-05-211-1/+49
| | | | including COOKIE2 ourself after path probing
* using fixed size keys in key derivation for AES-XCBC PRFMartin Willi2008-05-211-7/+24
|
* IPComp for IKEv2Tobias Brunner2008-05-084-12/+215
|
* Hash and URL cosmeticsAndreas Steffen2008-04-182-11/+11
|
* support for hash and URL encoded certificate payloads in charonTobias Brunner2008-04-183-51/+235
|
* splitted IKE_SA manager destroy to allow plugin interactionMartin Willi2008-04-172-5/+24
|
* slightly optimized IKE_SA checkinMartin Willi2008-04-161-3/+7
|
* optimized half-open IKE_SA lookup (no checkout)Martin Willi2008-04-161-3/+13
|
* added API for random number generators, served through credential factoryMartin Willi2008-04-156-52/+47
| | | | ported randomizer_t to a rng_t on top of /dev/(u)random (plugin random)
* implemented IKE_SA uniqueness using ipsec.conf uniqueids paramaterMartin Willi2008-04-143-0/+115
| | | | additionally supports a "keep" value to keep the old IKE_SA
* ike_sa_manager enumerable, not iterableMartin Willi2008-04-142-71/+78
|
* added close_action as a seperate config option to dpd_actionMartin Willi2008-04-143-13/+29
|
* fixed jumping IKE_SA unique idsMartin Willi2008-04-141-28/+53
|
* fixed rightsourceip=%config scenariosMartin Willi2008-04-141-2/+5
|
* fixed disabling the sending of cert requestsAndreas Steffen2008-04-131-1/+1
|
* using dpd actions to enforce connection stateMartin Willi2008-04-115-159/+180
| | | | dpd actions a per child-, not peer ike-sa
* enabling acquire for mediated connectionsTobias Brunner2008-04-104-128/+46
|
* enabling reauthentication on mediation connectionsTobias Brunner2008-04-102-3/+30
|
* fixing a problem if the mediation server initiates the rekeyingTobias Brunner2008-04-103-2/+18
|
* mediation connections should now properly rekeyTobias Brunner2008-04-093-11/+45
|
* implementation of an CFG attribute framework, currently supporting virtual IPsMartin Willi2008-04-093-22/+27
| | | | | | updated ipsec.conf sourceip parameter to support CIDR notatation to serve from a pool %poolname to query a separate (database?) pool
* signature in connectivity checks is now built with the message id in network ↵Tobias Brunner2008-04-081-1/+4
| | | | byte order
* printing the checklist, two bugfixesTobias Brunner2008-04-081-2/+24
|
* connect manager: restart the sender if it is not running anymoreTobias Brunner2008-04-081-6/+19
|
* better logging for chunks in connect managerTobias Brunner2008-04-081-12/+12
|
* refactored callback data in connect managerTobias Brunner2008-04-081-48/+24
|
* fast finishing connectivity checks on the initiators sideTobias Brunner2008-04-071-53/+99
|
* corrected the logging for retransmissions of connectivity checksTobias Brunner2008-04-071-6/+8
|
* changed how retransmissions of connectivity checks are sentTobias Brunner2008-04-071-16/+10
|
* fixing another memory leakTobias Brunner2008-04-071-0/+1
|
* and anotherTobias Brunner2008-04-031-0/+1
|
* fixed two other memory leaksTobias Brunner2008-04-031-2/+3
|
* demoted more notify debug messages to level 24.2.0Andreas Steffen2008-04-022-3/+3
|
* fixing some memory leaksTobias Brunner2008-04-023-3/+28
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 15:48:28 +0000