aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/sa
Commit message (Collapse)AuthorAgeFilesLines
...
| | * Use UDP encapsulation even in non-NAT situation if initiator requests itMartin Willi2012-03-201-13/+14
| | |
| | * Support inactivity timeout in IKEv1 CHILD_SAsMartin Willi2012-03-201-1/+24
| | |
| | * Use a dedicated PRF for HASH/SIG payloads using ECDSA specific hasherMartin Willi2012-03-201-14/+37
| | |
| | * Select public key auth method by checking what key we haveMartin Willi2012-03-202-4/+99
| | |
| | * Support ECDSA signatures in IKEv1 pubkey authenticatorMartin Willi2012-03-203-18/+32
| | |
| | * Exchange certificates when using IKEv1 ECDSA authenticationMartin Willi2012-03-202-0/+6
| | |
| | * Don't re-resolve addresses during initiate if they have already been setMartin Willi2012-03-201-1/+5
| | |
| | * Adopt children after syncing a rekeyed IKEv1 SAMartin Willi2012-03-201-1/+2
| | |
| | * Setting message ID on task manager sets DPD sequence numbers in IKEv1Martin Willi2012-03-202-2/+12
| | |
| | * Update state before triggering DPD, as we cancel it if PASSIVEMartin Willi2012-03-201-0/+1
| | |
| | * Set thread specific SA on bus for each enumerated IKE_SAMartin Willi2012-03-201-1/+11
| | |
| | * Invoke bus_t.message hook twice, once plain and parsed, once encoded and ↵Martin Willi2012-03-203-6/+16
| | | | | | | | | | | | encrypted
| | * Clear initiator flag when checking out initial IKEv1 SA from messageMartin Willi2012-03-201-0/+4
| | |
| | * Pass IKEv1 specific keymat to ike_keys hookMartin Willi2012-03-202-4/+4
| | |
| | * Set selected proposal on IKEv1 SA, don't pass it separately to Phase 1 helperMartin Willi2012-03-204-21/+20
| | |
| | * Get a reference for the child_cfg passed to child_create_create()Martin Willi2012-03-201-2/+2
| | |
| | * Invoke bus_t.narrow hook in quick mode exchangeMartin Willi2012-03-201-7/+36
| | |
| | * Invoke authorization hooks for IKEv1 connectionsMartin Willi2012-03-203-25/+95
| | |
| | * Invoke ike_updown hooks for reauthenticated IKEv1 SAsMartin Willi2012-03-201-0/+1
| | |
| | * Don't invoke a child_updown hook when a quick mode to delete has been rekeyedMartin Willi2012-03-201-1/+6
| | |
| | * Invoke child_rekey hook instead of child_updown when rekeying a quick modeMartin Willi2012-03-203-2/+36
| | |
| | * Don't invoke updown hook when flushing SAs for IKEv1, tasks will do itMartin Willi2012-03-201-10/+12
| | |
| | * Fix "incoming" flag passed to bus_t.message() hookMartin Willi2012-03-201-1/+1
| | |
| | * Continue with next exchange after sending an INFORMATIONALMartin Willi2012-03-201-1/+2
| | |
| | * Handle retransmission of DPD exchange, both as initiator and responderMartin Willi2012-03-201-22/+37
| | |
| | * Disable DPD checking for peers not supporting itMartin Willi2012-03-203-3/+20
| | |
| | * Added missing DPD task nameMartin Willi2012-03-202-3/+3
| | |
| | * Confirm message reception time only if DPD sequence number validMartin Willi2012-03-202-3/+10
| | |
| | * Simplified DPD handling by using a task for a single message onlyMartin Willi2012-03-208-272/+114
| | |
| | * Check if we have an RNG for IKEv1 task manager before using itMartin Willi2012-03-201-9/+9
| | |
| | * Remove unused DPD sequence number getter on task managerMartin Willi2012-03-202-13/+2
| | |
| | * Don't retransmit, rekey, reauth or DPD check SAs when in PASSIVE stateMartin Willi2012-03-201-0/+24
| | |
| | * Send DPD vendor IDClavister OpenSource2012-03-201-1/+1
| | |
| | * Isakmp_dpd task added.Clavister OpenSource2012-03-2010-9/+445
| | |
| | * Request and handle retransmission of a lost third aggressive mode messageMartin Willi2012-03-201-5/+8
| | |
| | * Streamlined debug output when initiating IKEv1 IKE_SAsMartin Willi2012-03-202-2/+2
| | |
| | * Enforce encapsulation mode of configuration, in case initiator proposes bothMartin Willi2012-03-201-1/+2
| | |
| | * Handle aggressive mode task in IKEv1 task managerMartin Willi2012-03-201-6/+36
| | |
| | * Select IKEv1 configurations by main/aggressive mode optionMartin Willi2012-03-204-5/+8
| | |
| | * Fix sending of CERTREQ/CERT payloads in aggressive modeMartin Willi2012-03-202-2/+12
| | |
| | * Implemented aggressive mode using Phase 1 helper classMartin Willi2012-03-204-0/+682
| | |
| | * Make use of the new Phase 1 helper class in main modeMartin Willi2012-03-201-579/+73
| | |
| | * Implemented a common Phase 1 helper class to use by main and aggressive modesMartin Willi2012-03-202-0/+753
| | |
| | * Fix error handling if no PSK found for main modeMartin Willi2012-03-201-5/+9
| | |
| | * Install quick mode CHILD_SAs with negotiated encapsulation modeMartin Willi2012-03-201-12/+17
| | |
| | * Try to detect reauthentication as responder and adopt children to new SAMartin Willi2012-03-202-0/+7
| | |
| | * Destroy IKE_SA after reauthentication initiatend and lifetime limit reachedMartin Willi2012-03-201-1/+6
| | |
| | * Added an IKE_SA manager method to enumerate IKE_SA IDs filtered by identitiesMartin Willi2012-03-202-34/+59
| | |
| | * Query for XAuth identity in get_other_eap_id(), tooMartin Willi2012-03-201-0/+4
| | |
| | * Set ISAKMP SA state to rekeying after triggering reauthenticationMartin Willi2012-03-201-0/+1
| | |
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-05 21:43:56 +0000