aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/sa/ikev2
Commit message (Expand)AuthorAgeFilesLines
* ike: Apply retransmission_limit before applying the jitterTobias Brunner2017-05-261-4/+4
* linked-list: Change return value of find_first() and signature of its callbackTobias Brunner2017-05-262-84/+93
* Change interface for enumerator_create_filter() callbackTobias Brunner2017-05-261-7/+14
* child-delete: Delay the removal of the inbound SA of rekeyed CHILD_SAsTobias Brunner2017-05-232-6/+50
* child-sa: Remove state to track installation of half the SA againTobias Brunner2017-05-233-11/+2
* child-delete: Track flags per individual CHILD_SATobias Brunner2017-05-231-47/+78
* ikev2: Delay installation of outbound SAs during rekeying on the responderTobias Brunner2017-05-233-10/+92
* child-sa: Change API used to set/install policiesTobias Brunner2017-05-231-12/+14
* child-create: Trigger NARROW_RESPONDER_POST hook before installing SAsTobias Brunner2017-05-231-25/+21
* ike: Use optional jitter to calculate retransmission timeoutsTobias Brunner2017-05-231-1/+25
* child-cfg: Use flags for boolean optionsTobias Brunner2017-05-231-3/+3
* ikev2: Ignore IKEV2_MESSAGE_ID_SYNC notifies if extension is disabledTobias Brunner2017-02-082-10/+37
* ikev2: Don't increase expected MID after handling MID sync messageTobias Brunner2017-02-082-3/+4
* ikev2: Don't cache response to MID sync requestTobias Brunner2017-02-081-1/+11
* ikev2: Accept INFORMATIONAL messages with MID 0 if used to sync MIDsTobias Brunner2017-02-081-3/+42
* ikev2: Negotiate support for IKE message ID synchronisation during IKE_AUTHTobias Brunner2017-02-081-0/+7
* ikev2: Add task to handle IKEV2_MESSAGE_ID_SYNC notifies as responderTobias Brunner2017-02-083-0/+338
* ike: Add getter for the current message ID to task managerTobias Brunner2017-02-081-0/+7
* keymat: Allow keymat to modify signature scheme(s)Thomas Egerer2017-02-083-12/+39
* ike-auth: Don't send INITIAL_CONTACT if remote ID contains wildcardsTobias Brunner2017-02-061-1/+2
* Implemented EdDSA for IKEv2 using a pro forma Identity hash functionAndreas Steffen2016-12-141-0/+32
* task-manager: Only trigger retransmit cleared alert if there was at least one...Tobias Brunner2016-10-051-1/+1
* ikev2: Respond with NO_PROPOSAL_CHOSEN if proposal without DH group was selectedTobias Brunner2016-10-051-0/+1
* ikev2: Only add NAT-D notifies to DPDs as initiatorTobias Brunner2016-10-041-8/+15
* ikev2: Send derived CHILD_SA keys to the busTobias Brunner2016-10-041-26/+43
* ikev2: Send derived IKE_SA keys to busTobias Brunner2016-10-041-26/+30
* gmp: Support of SHA-3 RSA signaturesAndreas Steffen2016-09-221-2/+2
* ikev2: Store proposal on IKE_SA before creating DH objectTobias Brunner2016-09-061-2/+5
* child-rekey: Only rekey installed CHILD_SAsTobias Brunner2016-06-171-7/+14
* child-rekey: Ignore failed colliding CHILD_SA rekeyingsTobias Brunner2016-06-171-1/+10
* child-create: Retry creating the CHILD_SA if TEMPORARY_FAILURE is receivedTobias Brunner2016-06-171-4/+33
* ikev2: Add possibility to delay initiation of a queued taskTobias Brunner2016-06-171-57/+146
* ike-rekey: Return TEMPORARY_FAILURE when concurrently creating a CHILD_SATobias Brunner2016-06-171-14/+35
* ike: Add configuration option to switch to preferring supplied proposals over...Tobias Brunner2016-06-172-4/+8
* child-cfg: Add option to prefer supplied proposals over locally configured onesTobias Brunner2016-06-171-1/+1
* ike-cfg: Add option to prefer supplied proposals over locally configured onesTobias Brunner2016-06-171-1/+1
* ike-rekey: Make sure to ignore task when detecting collisions if ike-init sub...Tobias Brunner2016-06-171-1/+2
* ike-rekey: Handle undetected collisions also if delete is delayedTobias Brunner2016-06-171-16/+26
* ike-rekey: There is no passive reauth task, so it will never collide with oneTobias Brunner2016-06-172-7/+4
* ike-rekey: Ignore colliding rekey tasks that did not create an IKE_SATobias Brunner2016-06-171-56/+64
* ike-rekey: Properly handle situation if the peer did not notice the rekey col...Tobias Brunner2016-06-171-0/+11
* ike-delete: Handle deletes while rekeying differently if there was a collisionTobias Brunner2016-06-171-2/+40
* ike-rekey: Add method to check if there was a rekey collisionTobias Brunner2016-06-172-1/+17
* ikev2: Check for collisions after handling IKE deletionTobias Brunner2016-06-171-1/+5
* child-delete: Reply as usual when concurrently rekeying the IKE_SATobias Brunner2016-06-171-5/+1
* child-create: Respond with TEMPORARY_FAILURE while rekeying/deleting IKE_SATobias Brunner2016-06-171-2/+2
* ike-rekey: Respond with TEMPORARY_FAILURE if CHILD_SAs are currently rekeyed/...Tobias Brunner2016-06-171-1/+8
* ike-rekey: Handle TEMPORARY_FAILURE notifyTobias Brunner2016-06-171-8/+22
* ike-rekey: Respond with TEMPORARY_FAILURE if we are deleting the SATobias Brunner2016-06-171-0/+5
* ike-delete: No need to wait for a response in case of concurrent deletesTobias Brunner2016-06-171-14/+0
generated by cgit v1.2.3 (git 2.25.1) at 2025-09-01 23:09:45 +0000