aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/sa
Commit message (Expand)AuthorAgeFilesLines
...
* ikev2: Properly keep track of pending MOBIKE updatesTobias Brunner2014-09-121-8/+27
* ikev1: Make sure proposed IPsec mode matches our ownTobias Brunner2014-09-091-1/+2
* ike: Reset IKE_SA in state CONNECTING instead of reauthenticatingTobias Brunner2014-09-091-0/+8
* ikev1: Defer Mode Config push after CHILD adoption when using XAuthMartin Willi2014-08-254-6/+40
* ikev1: Defer Mode Config push after CHILD adoption and reauth detectionMartin Willi2014-08-252-10/+35
* ikev1: Accept Quick Mode DELETES while Quick Mode rekeying is activeMartin Willi2014-08-251-2/+21
* ike-sa-manager: Use transient hasher for IKE_SA_INIT hash calculationChristophe Gouault2014-08-251-32/+11
* bus: Add ike_reestablish_pre hook, called before DNS resolutionTobias Brunner2014-07-221-1/+5
* shunt-manager: Install passthrough policies with highest priorityTobias Brunner2014-06-191-9/+34
* child-sa: Set replay window on both inbound and outbound SAMartin Willi2014-06-181-6/+2
* ikev1: Allow late connection switching based on XAuth usernameTobias Brunner2014-06-181-6/+0
* kernel-interface: Add a replay_window parameter to add_sa()Martin Willi2014-06-171-2/+6
* bus: Add a handle_vips() hook invoked after handling configuration attributesMartin Willi2014-06-173-0/+5
* ikev1: Invoke the assign_vips() bus hook for IKEv1 as wellMartin Willi2014-06-161-0/+4
* ike: Create an enumerator for (un-)handled configuration attributes on IKE_SAMartin Willi2014-06-162-0/+32
* ike: Store unhandled attributes on IKE_SA as wellMartin Willi2014-06-164-12/+12
* child-sa: Pass the number of total policies tied to an SA to the kernelMartin Willi2014-06-041-0/+8
* kernel-interface: Add a flag to indicate no policy updates requiredMartin Willi2014-06-041-3/+14
* payload: Use common prefixes for all payload type identifiersMartin Willi2014-06-0438-166/+166
* ikev1: Fix debugging log when remote traffic selector selection failsMartin Willi2014-05-141-1/+1
* child-sa: Reclaim old state if SA updating is not supportedMartin Willi2014-05-091-0/+2
* ike-sa-manager: Improve scalability of half-open IKE_SA checkingTobias Brunner2014-04-241-7/+8
* ikev2: Reject CHILD_SA creation/rekeying while deleting an IKE_SAMartin Willi2014-04-171-0/+6
* ikev2: Apply extensions and conditions before starting rekeyingMartin Willi2014-04-171-0/+6
* ikev2: Add inherit_pre() to apply config and hosts before IKE_SA rekeyingMartin Willi2014-04-173-14/+28
* ikev2: Fix reauthentication if peer assigns a different virtual IPTobias Brunner2014-04-151-1/+1
* ikev2: Reject CREATE_CHILD_SA exchange on unestablished IKE_SAsMartin Willi2014-04-141-0/+9
* aead: Support custom AEAD salt sizesMartin Willi2014-03-311-2/+27
* ikev2: Recreate a CHILD_SA that got a hard lifetime expire without rekeyingMartin Willi2014-03-311-0/+12
* ikev2: Cache all received attribute certificates to auth configMartin Willi2014-03-311-1/+27
* ikev2: Send all known and valid attribute certificates for subject certMartin Willi2014-03-311-0/+46
* ikev2: Slightly refactor certificate payload construction to separate functionsMartin Willi2014-03-311-37/+56
* uclibc only defines strndup(3) if _GNU_SOURCE is definedTobias Brunner2014-02-191-0/+3
* libcharon: Use lib->ns instead of charon->nameTobias Brunner2014-02-1211-26/+26
* ikev1: Fix config switching due to failed authentication during Aggressive modeTobias Brunner2014-02-121-3/+1
* child-sa: Add a getter for CHILD_SA install timeMartin Willi2014-01-232-0/+20
* ikev2: Add Cisco FRAGMENTATION vendor IDMartin Willi2014-01-231-0/+2
* ikev2: Add Cisco Copyright vendor IDMartin Willi2014-01-231-0/+2
* ikev2: Add Cisco Delete Reason vendor IDMartin Willi2014-01-231-0/+2
* ikev2: Use a more dynamic vendor ID database, as we use with IKEv1Martin Willi2014-01-231-16/+57
* ike: Simplify error handling if name resolution failedTobias Brunner2014-01-231-16/+3
* ike: Use proper hostname(s) when name resolution failedTobias Brunner2014-01-231-1/+1
* ikev2: Wipe (optional) shared secret during CHILD_SA key derivationTobias Brunner2014-01-231-11/+14
* ike_sa: Defer task manager destruction after child destructionThomas Egerer2014-01-164-9/+16
* ike: Log SK_p consistently on level 4Tobias Brunner2013-11-281-1/+1
* trap-manager: Reset IKE_SA on bus_t if initiating failsTobias Brunner2013-11-211-0/+1
* trap-manager: Prevent deadlock when installing trap policiesTobias Brunner2013-11-211-40/+46
* ikev2: Properly free DH secret in case of errors during IKE key derivationTobias Brunner2013-11-061-0/+3
* ike: Don't immediately DPD after deferred DELETEs following IKE_SA rekeyingMartin Willi2013-11-011-0/+8
* ikev1: Properly initialize list of fragments in case fragment ID is 0Volker RĂ¼melin2013-10-311-1/+1
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-16 07:03:30 +0000