aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/sa
Commit message (Expand)AuthorAgeFilesLines
...
* Fixed some typosTobias Brunner2013-10-292-2/+2
* trap-manager: Make sure a config is not trapped twiceTobias Brunner2013-10-171-4/+16
* iv_gen: aead_t implementations provide an IV generatorTobias Brunner2013-10-111-0/+8
* Remove HASH_PREFERRED, usages are replaced with HASH_SHA1, which is required ...Tobias Brunner2013-10-111-1/+1
* kernel: Use a time_t to report use time in query_policy()Martin Willi2013-10-111-2/+2
* kernel: Use a time_t to report use time in query_sa()Martin Willi2013-10-111-3/+3
* ike: Define keylength for aescmac algorithmMartin Willi2013-10-111-0/+1
* ikev1: Delete quick modes with the negotiated SA protocolMartin Willi2013-10-111-1/+1
* trap-manager: Install trap with SA protocol of the first configured proposalMartin Willi2013-10-111-4/+12
* child-sa: Save protocol during SPI allocationMartin Willi2013-10-111-6/+3
* ikev1: Negotiate SPI with the first/negotiated proposal protocolMartin Willi2013-10-111-3/+18
* ikev2: Allocate SPI with the protocol of the first/negotiated proposalMartin Willi2013-10-111-2/+16
* ikev1: Accept reauthentication attempts with a keep unique policy from same hostMartin Willi2013-09-301-6/+17
* ikev1: Delay a potential delete for a duplicate IKE_SA having a replace policyMartin Willi2013-09-301-8/+29
* ikev2: Force an update of the host addresses on the first responseTobias Brunner2013-09-231-11/+9
* ike-sa: Resolve hosts before reestablishing an IKE_SATobias Brunner2013-09-231-0/+2
* ikev1: Fix double free when searching for redundant CHILD_SAsTobias Brunner2013-09-131-1/+1
* ikev1: For PFS prefer DH group from IKE_SA over first configuredThomas Egerer2013-09-101-18/+54
* ike-cfg: remove the to be obsoleted allow any parameter in get_my/other_addrMartin Willi2013-09-041-1/+1
* trap-manager: use ike_cfg resolver functionsMartin Willi2013-09-041-4/+2
* ike-sa: use ike_cfg resolver functionsMartin Willi2013-09-041-16/+12
* ikev1: implement mode config push modeMartin Willi2013-09-045-76/+363
* xauth: add a configuration string option to be passed to XAuth instancesMartin Willi2013-09-034-4/+25
* ikev1: Fix calculation of the number of fragmentsTobias Brunner2013-08-151-1/+1
* ikev1: When sending fragments, use ports to decide if a non-ESP marker is addedTobias Brunner2013-08-151-6/+8
* ikev2: Fix segfault when reestablishing CHILD_SAs due to closeaction=restart|...Tobias Brunner2013-08-131-3/+4
* ikev2: Only schedule half-open-timeout delete job after successfully handling...Tobias Brunner2013-07-291-8/+16
* ikev1: Always send ID payloads (traffic selectors) during Quick ModeTobias Brunner2013-07-251-26/+4
* Fix various API doc issues and typosTobias Brunner2013-07-186-13/+11
* ike: Fix reestablishing SAs if no child-creating tasks are queuedTobias Brunner2013-07-181-2/+5
* ike-sa: uninstall CHILD_SAs before removing virtual IPsMartin Willi2013-07-181-1/+8
* ikev1: Reestablish IKE_SA/CHILD_SAs if it gets deleted by the peerTobias Brunner2013-07-171-0/+5
* ike: Migrate queued CHILD_SA-creating tasks when reestablishing an IKE_SATobias Brunner2013-07-174-2/+115
* ikev1: Support closeaction of CHILD_SA.Oliver Smith2013-07-171-7/+49
* child-sa: refactor proxy transport mode address lookupMartin Willi2013-07-171-56/+42
* child-sa: replace traffic selector lists by arraysMartin Willi2013-07-171-18/+19
* child-sa: replace get_traffic_selectors() with create_ts_enumerator()Martin Willi2013-07-177-59/+78
* ikev2: replace linked lists by arrays in task managerMartin Willi2013-07-171-70/+76
* ike-sa: use arrays instead of linked lists in long lived collectionsMartin Willi2013-07-171-116/+98
* ike: Resolve hosts only for address families currently supportedTobias Brunner2013-07-051-3/+16
* Reuse reqid when restarting CHILD_SAs for dpd|closeaction=restartTobias Brunner2013-07-012-3/+4
* Reuse reqid for trap policies installed for dpd|closeaction=holdTobias Brunner2013-07-014-5/+8
* ikev2: keep the CHILD_SA we delete as initiator in the list to destroyMartin Willi2013-06-251-6/+5
* ike: Force NAT-T/UDP encapsulation if kernel interface requires itTobias Brunner2013-06-212-5/+32
* ikev2: use protocol of selected proposal to delete a failed CHILD_SAMartin Willi2013-06-201-2/+2
* ikev2: properly fall back to tunnel mode if transport/BEET mode not configuredMartin Willi2013-06-191-2/+8
* ikev2: support transport mode over NATMartin Willi2013-06-191-36/+150
* ike: reuse the reqid of an installed trap having the same configMartin Willi2013-06-191-1/+5
* trap-manager: add a method to find reqid for installed traps by configMartin Willi2013-06-192-2/+38
* trap-manager: don't check-in nonexisting IKE_SA if acquire failsMartin Willi2013-06-191-2/+1
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-14 20:59:03 +0000