tteras/strongswan - tteras' strongSwan tree

	Commit message (Collapse)	Author	Age	Files	Lines
*	ike-delete: Handle deletes while rekeying differently if there was a collision	Tobias Brunner	2016-06-17	1	-2/+40
\| \| \| \| \|	We treat these as if we concluded the rekeying, the active ike-rekey task will handle the collision afterwards.
*	ike-delete: No need to wait for a response in case of concurrent deletes	Tobias Brunner	2016-06-17	1	-14/+0
\| \| \| \| \|	RFC 7296 explicitly says we SHOULD reply as usual and forget about our own close request.
*	ikev2: Add a new state to track rekeyed IKE_SAs	Tobias Brunner	2016-06-17	1	-2/+4
\| \| \| \| \| \| \| \| \|	This makes handling such IKE_SAs more specifically compared to keeping them in state IKE_CONNECTING or IKE_ESTABLISHED (which we did when we lost a collision - even triggering the ike_updown event), or using IKE_REKEYING for them, which would also be ambiguous. For instance, we can now reject anything but DELETES for such SAs.
*	payload: Use common prefixes for all payload type identifiers	Martin Willi	2014-06-04	1	-1/+1
\| \| \| \| \|	The old identifiers did not use a proper namespace and often clashed with other defines.
*	ikev2: raise LOCAL_AUTH_FAILED when receiving INFORMATIONAL with AUTH_FAILED	Martin Willi	2013-06-11	1	-0/+8
\|
*	Don't queue delete_ike_sa job when setting IKE_DELETING.	Tobias Brunner	2012-05-25	1	-1/+1
\| \| \| \| \|	This avoids deleting IKE_SAs during reauthentication (without trying to reestablish them).
*	Separated libcharon/sa directory with ikev1 and ikev2 subfolders	Martin Willi	2012-03-20	1	-0/+199