aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/sa
Commit message (Collapse)AuthorAgeFilesLines
...
* Migrated ike_delete to INIT/METHOD macrosAndreas Steffen2011-10-031-42/+31
|
* Migrated ike_dpd to INIT/METHOD macrosAndreas Steffen2011-10-031-31/+26
|
* Migrated ike_init to INIT/METHOD macrosAndreas Steffen2011-10-031-66/+49
|
* Migrated ike_me to INIT/METHOD macrosAndreas Steffen2011-10-031-88/+61
|
* Migrated ike_natd to INIT/METHOD macrosAndreas Steffen2011-10-031-55/+38
|
* Migrated ike_reauth to INIT/METHOD macrosAndreas Steffen2011-10-031-30/+25
|
* Migrated mediation_manager_t to INIT/METHOD macros.Tobias Brunner2011-10-031-41/+32
|
* Migrated connect_manager_t to INIT/METHOD macros.Tobias Brunner2011-10-031-109/+93
|
* Migrated ike_sa_id_t to INIT/METHOD macros.Tobias Brunner2011-10-031-60/+43
|
* Clear traps during shutdown before unloading kernel pluginsMartin Willi2011-09-122-0/+12
|
* log entry for outbound hash-and-urlAndreas Steffen2011-08-241-0/+1
|
* Try to detect Windows Clients by looking for INTERNAL_IP4/6_SERVER attributeMartin Willi2011-08-192-0/+10
|
* fix double delete of old IKE_SA during reauthenticationAndreas Steffen2011-08-161-2/+2
|
* some more typosAndreas Steffen2011-08-157-7/+7
|
* typos: initator->initiator, authenticaion->authentication.Tobias Brunner2011-08-158-8/+8
|
* If we close a duplicate SA, it is also no authentication failure.Tobias Brunner2011-08-121-2/+4
|
* If local authentication fails, it is not really a peer auth failure.Tobias Brunner2011-08-121-1/+1
|
* Throw an alert if authentication of the peer fails (not only for initiator).Tobias Brunner2011-08-121-34/+27
|
* Throw an alert when the peer address cannot be resolved during initiation.Tobias Brunner2011-08-121-0/+1
|
* Throw an alert via bus_t when remote authentication fails.Tobias Brunner2011-08-121-9/+14
|
* Migrated all SIM/AKA code to libsimaka, use SIM and AKA backend managers ↵Martin Willi2011-08-085-1127/+0
| | | | registered by name
* Properly initialize ike_sa_t.Tobias Brunner2011-08-011-1/+1
|
* Update fallback drop policies if required.Tobias Brunner2011-07-291-2/+20
|
* Install fallback drop policies for all three directions.Tobias Brunner2011-07-281-65/+66
|
* Install fallback drop policies to avoid transmitting unencrypted packets.Tobias Brunner2011-07-271-0/+17
| | | | | | | During the update of a CHILD_SA (e.g. caused by MOBIKE) the old policy is first uninstalled and then the new one is installed. In the short time in between, where no policy is available in the kernel, unencrypted packets could have been transmitted.
* Remove policies in kernel interfaces based on their priority.Tobias Brunner2011-07-272-21/+30
| | | | | | This allows to unroute a connection while the same connection is currently established. In this case both CHILD_SAs share the same reqid but the installed policies have different priorities.
* Inherit authentication information during IKE_SA rekeyingMartin Willi2011-07-251-0/+16
|
* fixed some more misspellingsAndreas Steffen2011-07-201-3/+3
|
* Fixed common misspellings.Tobias Brunner2011-07-206-18/+18
| | | | Mostly found by 'codespell'.
* shunt manager installs policies with %any hostsAndreas Steffen2011-07-141-3/+6
|
* Adapted shunt manager to changed kernel interface (reqid in del_policy).Tobias Brunner2011-07-061-3/+6
|
* Replaced more complex iterator usages.Tobias Brunner2011-07-061-25/+14
|
* Replaced ike_sa_t.create_additional_address_iterator with enumerator.Tobias Brunner2011-07-063-31/+33
|
* Replaced ike_sa_t.create_child_sa_iterator with enumerator.Tobias Brunner2011-07-066-72/+97
| | | | | This required two new methods on ike_sa_t. One returns the number of CHILD_SAs and one allows to remove a CHILD_SA.
* Replaced simple iterator usages.Tobias Brunner2011-07-068-161/+162
|
* Add the reqid to kernel_ipsec_t.del_policy.Tobias Brunner2011-07-061-6/+12
|
* implemented PASS and DROP shunt policiesAndreas Steffen2011-06-282-0/+311
|
* Initialize trap_manager listener with INIT macro, tooMartin Willi2011-06-281-8/+9
|
* Migrated trap_manager_t to INIT/METHOD macrosAndreas Steffen2011-06-281-45/+32
|
* Check if colliding task has actually a CHILD, i.e. after a migrateMartin Willi2011-06-031-1/+4
|
* logging initial EAP Identifier in EAP Identity RequestAndreas Steffen2011-05-291-3/+5
|
* Added strongswan.conf option to override half open IKE_SA timeoutMartin Willi2011-05-161-1/+2
|
* Added a get_count() method to IKE_SA managerMartin Willi2011-05-162-3/+27
|
* Fixed identiation in private_ike_sa_managerMartin Willi2011-05-161-57/+57
|
* Added a non-blocking, skipping variant of IKE_SA enumeratorMartin Willi2011-05-162-6/+24
|
* Typo fixed.Tobias Brunner2011-04-281-1/+1
|
* Resolve and connect to RADIUS servers not before requiredMartin Willi2011-04-211-0/+1
|
* Remove superfluous test for peer_cfg on established IKE_SAsMartin Willi2011-04-201-1/+1
|
* Install ESN SAs if such a proposal has been negotiatedMartin Willi2011-04-201-1/+4
|
* Added an esn parameter to the kernel interface add_sa functionsMartin Willi2011-04-201-1/+1
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-08 01:58:25 +0000