| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Raise an alert if an IKE_SA could not have been reauthenticated and expires | Martin Willi | 2013-03-14 | 1 | -0/+4 |
| * | child_sa_t.get_usestats() can additionally return the number of processed pac... | Martin Willi | 2013-03-14 | 1 | -1/+1 |
| * | Without MOBIKE, update remote host only if it is behind NAT | Martin Willi | 2013-03-01 | 1 | -2/+3 |
| * | Move initial message dropping to task manager | Martin Willi | 2013-02-25 | 1 | -18/+0 |
| * | Set configured DSCP value while generating IKE packets | Martin Willi | 2013-02-06 | 1 | -1/+26 |
| * | Allow ID_PROT/AGGRESSIVE messages for established IKE_SAs if they contain fra... | Tobias Brunner | 2012-12-24 | 1 | -1/+2 |
| * | Inherit virtual IP and attributes from old to new, not from new to old | Martin Willi | 2012-12-10 | 1 | -5/+5 |
| * | Don't wait while removing external IPs used for load testing | Martin Willi | 2012-11-29 | 1 | -2/+3 |
| * | Install virtual IPs via interface name, and use an interface lookup where req... | Martin Willi | 2012-11-29 | 1 | -5/+16 |
| * | Add an optional kernel-interface parameter to install IPs with a custom prefix | Martin Willi | 2012-11-29 | 1 | -4/+4 |
| * | Moved data structures to new collections subfolder | Tobias Brunner | 2012-10-24 | 1 | -1/+1 |
| * | Added a new alert that is raised if peer does not respond to initial IKE message | Tobias Brunner | 2012-10-16 | 1 | -0/+2 |
| * | IKE_AUTH_LIFETIME task is not defined if IKEv2 is disabled | Tobias Brunner | 2012-09-25 | 1 | -1/+4 |
| * | Pass full pool list to release_address | Martin Willi | 2012-09-11 | 1 | -13/+8 |
| * | Only initiate an exchange from send_dpd() if a task was actually queued | Tobias Brunner | 2012-09-07 | 1 | -2/+8 |
| * | Trigger ike_updown event caused by retransmits only after reestablish() has b... | Tobias Brunner | 2012-09-06 | 1 | -0/+4 |
| * | Add ike_reestablish() event that is triggered when an IKE_SA is reestablished | Tobias Brunner | 2012-09-06 | 1 | -0/+1 |
| * | Add a new condition to mark IKE_SAs that are currently being reauthenticated | Tobias Brunner | 2012-09-06 | 1 | -9/+4 |
| * | Clear virtual IPs before storing assigned ones on the IKE_SA | Tobias Brunner | 2012-09-05 | 1 | -0/+18 |
| * | Support multiple address pools configured on a peer_cfg | Martin Willi | 2012-08-30 | 1 | -4/+14 |
| * | Support multiple virtual IPs on peer_cfg and ike_sa classes | Martin Willi | 2012-08-30 | 1 | -45/+39 |
| * | Increase log verbosity when sending NAT keep-alives | Tobias Brunner | 2012-08-08 | 1 | -1/+1 |
| * | Replaced usages of CHARON_*_PORT with calls to get_port(). | Tobias Brunner | 2012-08-08 | 1 | -4/+7 |
| * | Use send_no_marker to send NAT keepalives. | Tobias Brunner | 2012-08-08 | 1 | -1/+1 |
| * | Make the UDP ports charon listens for packets on (and uses as source ports) c... | Tobias Brunner | 2012-08-08 | 1 | -4/+4 |
| * | Block XAuth transaction on established IKE_SAs, but allow Mode Config | Martin Willi | 2012-08-03 | 1 | -1/+0 |
| * | Reject initial exchange messages early once IKE_SA is established | Martin Willi | 2012-08-02 | 1 | -0/+18 |
| * | implemented the right|leftallowany feature | Andreas Steffen | 2012-06-08 | 1 | -8/+13 |
| * | Avoid queueing more than one retry initiate job. | Tobias Brunner | 2012-05-30 | 1 | -3/+25 |
| * | Retry IKE_SA initiation if DNS resolution failed. | Tobias Brunner | 2012-05-30 | 1 | -4/+39 |
| * | Resolve hosts before reauthenticating due to address change. | Tobias Brunner | 2012-05-25 | 1 | -0/+2 |
| * | Don't queue delete_ike_sa job when setting IKE_DELETING. | Tobias Brunner | 2012-05-25 | 1 | -8/+0 |
| * | During reauthentication reestablish IKE_SA even if deleting the old one fails. | Tobias Brunner | 2012-05-25 | 1 | -0/+6 |
| * | Integrated main parts of IKE_REAUTH task into ike_sa_t.reestablish. | Tobias Brunner | 2012-05-25 | 1 | -28/+74 |
| * | Fixed route lookup in case MOBIKE is not enabled. | Tobias Brunner | 2012-05-25 | 1 | -3/+9 |
| * | Wrap task managers flush_queue() in IKE_SA | Martin Willi | 2012-05-21 | 1 | -0/+7 |
| * | Use name from initialization to access settings in libcharon. | Tobias Brunner | 2012-05-03 | 1 | -2/+2 |
| * | Merge branch 'ikev1' | Martin Willi | 2012-05-02 | 1 | -309/+142 |
| |\ |
|
| | * | Merge branch 'ikev1-clean' into ikev1-master | Martin Willi | 2012-03-20 | 1 | -309/+142 |
| | |\ |
|
| | | * | Trigger DPD not before IKE_SA state gets updated | Martin Willi | 2012-03-20 | 1 | -13/+15 |
| | | * | Don't re-resolve addresses during initiate if they have already been set | Martin Willi | 2012-03-20 | 1 | -1/+5 |
| | | * | Update state before triggering DPD, as we cancel it if PASSIVE | Martin Willi | 2012-03-20 | 1 | -0/+1 |
| | | * | Invoke bus_t.message hook twice, once plain and parsed, once encoded and encr... | Martin Willi | 2012-03-20 | 1 | -2/+9 |
| | | * | Invoke ike_updown hooks for reauthenticated IKEv1 SAs | Martin Willi | 2012-03-20 | 1 | -0/+1 |
| | | * | Disable DPD checking for peers not supporting it | Martin Willi | 2012-03-20 | 1 | -1/+13 |
| | | * | Don't retransmit, rekey, reauth or DPD check SAs when in PASSIVE state | Martin Willi | 2012-03-20 | 1 | -0/+24 |
| | | * | Destroy IKE_SA after reauthentication initiatend and lifetime limit reached | Martin Willi | 2012-03-20 | 1 | -1/+6 |
| | | * | Query for XAuth identity in get_other_eap_id(), too | Martin Willi | 2012-03-20 | 1 | -0/+4 |
| | | * | Support initiation of childless IKEv1 ISAKMP SAs | Martin Willi | 2012-03-20 | 1 | -1/+2 |
| | | * | Don't trigger reauthentication if initiator authenticated using XAuth | Martin Willi | 2012-03-20 | 1 | -0/+1 |
