aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/sa/ike_sa.c
Commit message (Expand)AuthorAgeFilesLines
* Use ref_get() to make sure IKE_SA unique IDs are uniqueMartin Willi2013-06-111-2/+2
* Don't unset IKE_SA on bus before we released virtual IPs and attributesMartin Willi2013-05-061-10/+8
* emit a single assig_vips bus message for all VIPsAndreas Steffen2013-04-061-6/+8
* ifmap plugin subscribes to assing_vip bus signalAndreas Steffen2013-04-061-0/+6
* Raise an alert if an IKE_SA could not have been reauthenticated and expiresMartin Willi2013-03-141-0/+4
* child_sa_t.get_usestats() can additionally return the number of processed pac...Martin Willi2013-03-141-1/+1
* Without MOBIKE, update remote host only if it is behind NATMartin Willi2013-03-011-2/+3
* Move initial message dropping to task managerMartin Willi2013-02-251-18/+0
* Set configured DSCP value while generating IKE packetsMartin Willi2013-02-061-1/+26
* Allow ID_PROT/AGGRESSIVE messages for established IKE_SAs if they contain fra...Tobias Brunner2012-12-241-1/+2
* Inherit virtual IP and attributes from old to new, not from new to oldMartin Willi2012-12-101-5/+5
* Don't wait while removing external IPs used for load testingMartin Willi2012-11-291-2/+3
* Install virtual IPs via interface name, and use an interface lookup where req...Martin Willi2012-11-291-5/+16
* Add an optional kernel-interface parameter to install IPs with a custom prefixMartin Willi2012-11-291-4/+4
* Moved data structures to new collections subfolderTobias Brunner2012-10-241-1/+1
* Added a new alert that is raised if peer does not respond to initial IKE messageTobias Brunner2012-10-161-0/+2
* IKE_AUTH_LIFETIME task is not defined if IKEv2 is disabledTobias Brunner2012-09-251-1/+4
* Pass full pool list to release_addressMartin Willi2012-09-111-13/+8
* Only initiate an exchange from send_dpd() if a task was actually queuedTobias Brunner2012-09-071-2/+8
* Trigger ike_updown event caused by retransmits only after reestablish() has b...Tobias Brunner2012-09-061-0/+4
* Add ike_reestablish() event that is triggered when an IKE_SA is reestablishedTobias Brunner2012-09-061-0/+1
* Add a new condition to mark IKE_SAs that are currently being reauthenticatedTobias Brunner2012-09-061-9/+4
* Clear virtual IPs before storing assigned ones on the IKE_SATobias Brunner2012-09-051-0/+18
* Support multiple address pools configured on a peer_cfgMartin Willi2012-08-301-4/+14
* Support multiple virtual IPs on peer_cfg and ike_sa classesMartin Willi2012-08-301-45/+39
* Increase log verbosity when sending NAT keep-alivesTobias Brunner2012-08-081-1/+1
* Replaced usages of CHARON_*_PORT with calls to get_port().Tobias Brunner2012-08-081-4/+7
* Use send_no_marker to send NAT keepalives.Tobias Brunner2012-08-081-1/+1
* Make the UDP ports charon listens for packets on (and uses as source ports) c...Tobias Brunner2012-08-081-4/+4
* Block XAuth transaction on established IKE_SAs, but allow Mode ConfigMartin Willi2012-08-031-1/+0
* Reject initial exchange messages early once IKE_SA is establishedMartin Willi2012-08-021-0/+18
* implemented the right|leftallowany featureAndreas Steffen2012-06-081-8/+13
* Avoid queueing more than one retry initiate job.Tobias Brunner2012-05-301-3/+25
* Retry IKE_SA initiation if DNS resolution failed.Tobias Brunner2012-05-301-4/+39
* Resolve hosts before reauthenticating due to address change.Tobias Brunner2012-05-251-0/+2
* Don't queue delete_ike_sa job when setting IKE_DELETING.Tobias Brunner2012-05-251-8/+0
* During reauthentication reestablish IKE_SA even if deleting the old one fails.Tobias Brunner2012-05-251-0/+6
* Integrated main parts of IKE_REAUTH task into ike_sa_t.reestablish.Tobias Brunner2012-05-251-28/+74
* Fixed route lookup in case MOBIKE is not enabled.Tobias Brunner2012-05-251-3/+9
* Wrap task managers flush_queue() in IKE_SAMartin Willi2012-05-211-0/+7
* Use name from initialization to access settings in libcharon.Tobias Brunner2012-05-031-2/+2
* Merge branch 'ikev1'Martin Willi2012-05-021-309/+142
|\
| * Merge branch 'ikev1-clean' into ikev1-masterMartin Willi2012-03-201-309/+142
| |\
| | * Trigger DPD not before IKE_SA state gets updatedMartin Willi2012-03-201-13/+15
| | * Don't re-resolve addresses during initiate if they have already been setMartin Willi2012-03-201-1/+5
| | * Update state before triggering DPD, as we cancel it if PASSIVEMartin Willi2012-03-201-0/+1
| | * Invoke bus_t.message hook twice, once plain and parsed, once encoded and encr...Martin Willi2012-03-201-2/+9
| | * Invoke ike_updown hooks for reauthenticated IKEv1 SAsMartin Willi2012-03-201-0/+1
| | * Disable DPD checking for peers not supporting itMartin Willi2012-03-201-1/+13
| | * Don't retransmit, rekey, reauth or DPD check SAs when in PASSIVE stateMartin Willi2012-03-201-0/+24
generated by cgit v1.2.3 (git 2.25.1) at 2025-02-26 01:57:02 +0000