index
:
tteras/strongswan
master
tteras
tteras-release
tteras' strongSwan tree
gitolite
about
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
src
/
libcharon
/
sa
/
ikev2
Commit message (
Expand
)
Author
Age
Files
Lines
*
ikev2: Ignore IKEV2_MESSAGE_ID_SYNC notifies if extension is disabled
Tobias Brunner
2017-02-08
2
-10
/
+37
*
ikev2: Don't increase expected MID after handling MID sync message
Tobias Brunner
2017-02-08
2
-3
/
+4
*
ikev2: Don't cache response to MID sync request
Tobias Brunner
2017-02-08
1
-1
/
+11
*
ikev2: Accept INFORMATIONAL messages with MID 0 if used to sync MIDs
Tobias Brunner
2017-02-08
1
-3
/
+42
*
ikev2: Negotiate support for IKE message ID synchronisation during IKE_AUTH
Tobias Brunner
2017-02-08
1
-0
/
+7
*
ikev2: Add task to handle IKEV2_MESSAGE_ID_SYNC notifies as responder
Tobias Brunner
2017-02-08
3
-0
/
+338
*
ike: Add getter for the current message ID to task manager
Tobias Brunner
2017-02-08
1
-0
/
+7
*
keymat: Allow keymat to modify signature scheme(s)
Thomas Egerer
2017-02-08
3
-12
/
+39
*
ike-auth: Don't send INITIAL_CONTACT if remote ID contains wildcards
Tobias Brunner
2017-02-06
1
-1
/
+2
*
Implemented EdDSA for IKEv2 using a pro forma Identity hash function
Andreas Steffen
2016-12-14
1
-0
/
+32
*
task-manager: Only trigger retransmit cleared alert if there was at least one...
Tobias Brunner
2016-10-05
1
-1
/
+1
*
ikev2: Respond with NO_PROPOSAL_CHOSEN if proposal without DH group was selected
Tobias Brunner
2016-10-05
1
-0
/
+1
*
ikev2: Only add NAT-D notifies to DPDs as initiator
Tobias Brunner
2016-10-04
1
-8
/
+15
*
ikev2: Send derived CHILD_SA keys to the bus
Tobias Brunner
2016-10-04
1
-26
/
+43
*
ikev2: Send derived IKE_SA keys to bus
Tobias Brunner
2016-10-04
1
-26
/
+30
*
gmp: Support of SHA-3 RSA signatures
Andreas Steffen
2016-09-22
1
-2
/
+2
*
ikev2: Store proposal on IKE_SA before creating DH object
Tobias Brunner
2016-09-06
1
-2
/
+5
*
child-rekey: Only rekey installed CHILD_SAs
Tobias Brunner
2016-06-17
1
-7
/
+14
*
child-rekey: Ignore failed colliding CHILD_SA rekeyings
Tobias Brunner
2016-06-17
1
-1
/
+10
*
child-create: Retry creating the CHILD_SA if TEMPORARY_FAILURE is received
Tobias Brunner
2016-06-17
1
-4
/
+33
*
ikev2: Add possibility to delay initiation of a queued task
Tobias Brunner
2016-06-17
1
-57
/
+146
*
ike-rekey: Return TEMPORARY_FAILURE when concurrently creating a CHILD_SA
Tobias Brunner
2016-06-17
1
-14
/
+35
*
ike: Add configuration option to switch to preferring supplied proposals over...
Tobias Brunner
2016-06-17
2
-4
/
+8
*
child-cfg: Add option to prefer supplied proposals over locally configured ones
Tobias Brunner
2016-06-17
1
-1
/
+1
*
ike-cfg: Add option to prefer supplied proposals over locally configured ones
Tobias Brunner
2016-06-17
1
-1
/
+1
*
ike-rekey: Make sure to ignore task when detecting collisions if ike-init sub...
Tobias Brunner
2016-06-17
1
-1
/
+2
*
ike-rekey: Handle undetected collisions also if delete is delayed
Tobias Brunner
2016-06-17
1
-16
/
+26
*
ike-rekey: There is no passive reauth task, so it will never collide with one
Tobias Brunner
2016-06-17
2
-7
/
+4
*
ike-rekey: Ignore colliding rekey tasks that did not create an IKE_SA
Tobias Brunner
2016-06-17
1
-56
/
+64
*
ike-rekey: Properly handle situation if the peer did not notice the rekey col...
Tobias Brunner
2016-06-17
1
-0
/
+11
*
ike-delete: Handle deletes while rekeying differently if there was a collision
Tobias Brunner
2016-06-17
1
-2
/
+40
*
ike-rekey: Add method to check if there was a rekey collision
Tobias Brunner
2016-06-17
2
-1
/
+17
*
ikev2: Check for collisions after handling IKE deletion
Tobias Brunner
2016-06-17
1
-1
/
+5
*
child-delete: Reply as usual when concurrently rekeying the IKE_SA
Tobias Brunner
2016-06-17
1
-5
/
+1
*
child-create: Respond with TEMPORARY_FAILURE while rekeying/deleting IKE_SA
Tobias Brunner
2016-06-17
1
-2
/
+2
*
ike-rekey: Respond with TEMPORARY_FAILURE if CHILD_SAs are currently rekeyed/...
Tobias Brunner
2016-06-17
1
-1
/
+8
*
ike-rekey: Handle TEMPORARY_FAILURE notify
Tobias Brunner
2016-06-17
1
-8
/
+22
*
ike-rekey: Respond with TEMPORARY_FAILURE if we are deleting the SA
Tobias Brunner
2016-06-17
1
-0
/
+5
*
ike-delete: No need to wait for a response in case of concurrent deletes
Tobias Brunner
2016-06-17
1
-14
/
+0
*
ikev2: Add a new state to track rekeyed IKE_SAs
Tobias Brunner
2016-06-17
3
-41
/
+41
*
ike-rekey: Add the name/ID of the redundant IKE_SAs to the log messages
Tobias Brunner
2016-06-17
1
-8
/
+13
*
ike-rekey: Establish new IKE_SA earlier as responder, but only if no collision
Tobias Brunner
2016-06-17
1
-3
/
+8
*
child-delete: Check if the deleted CHILD_SA is the redundant SA of a collision
Tobias Brunner
2016-06-17
1
-4
/
+39
*
child-rekey: Add method to check for the redundant SA created in a collision
Tobias Brunner
2016-06-17
2
-18
/
+37
*
child-rekey: Don't change state to INSTALLED if it was already REKEYING
Tobias Brunner
2016-06-17
1
-3
/
+5
*
ikev2: Use CHILD_REKEYED for replaced CHILD_SAs after rekeying
Tobias Brunner
2016-06-17
2
-9
/
+12
*
child-rekey: Use more appropriate error notifies if CHILD_SA is not found or ...
Tobias Brunner
2016-06-17
1
-3
/
+8
*
child-rekey: Recreate the CHILD_SA if we receive a CHILD_SA_NOT_FOUND notify
Tobias Brunner
2016-06-17
1
-0
/
+28
*
child-create: Handle TEMPORARY_FAILURE notify as failure
Tobias Brunner
2016-06-17
2
-4
/
+5
*
child-delete: Remove unnecessary call to destroy_child_sa()
Tobias Brunner
2016-06-17
1
-2
/
+0
[next]