aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/sa
Commit message (Expand)AuthorAgeFilesLines
* child-sa: Allow requesting different unique marks for in/outEyal Birger2017-08-071-6/+23
* trap-manager: Don't require that remote is resolvable during installationTobias Brunner2017-08-071-10/+49
* child-create: Don't log CHILD_SA initiation until we know the unique IDTobias Brunner2017-08-071-11/+13
* child-rekey: Add CHILD_SA name and unique ID to collision log messagesTobias Brunner2017-08-071-8/+13
* child-sa: Suppress CHILD_SA state changes if there is no changeTobias Brunner2017-08-071-6/+9
* child-rekey: Don't install outbound SA in case of lost collisionsTobias Brunner2017-08-073-21/+66
* child-sa: Install outbound SA immediately if kernel supports SPIs on policiesTobias Brunner2017-08-073-26/+47
* child-sa: Use flags to track installation of outbound SA and policies separatelyTobias Brunner2017-08-072-28/+44
* ikev2: AES-CMAC-PRF-128 only uses the first 64 bits of each nonceTobias Brunner2017-07-271-2/+5
* ike: Trigger CHILD_INSTALLED state change after corresponding log messageTobias Brunner2017-07-272-10/+9
* ikev1: Only delete redundant CHILD_SAs if configuredTobias Brunner2017-06-261-1/+5
* ike: Apply retransmission_limit before applying the jitterTobias Brunner2017-05-262-8/+8
* linked-list: Change return value of find_first() and signature of its callbackTobias Brunner2017-05-264-104/+125
* linked-list: Change interface of callback for invoke_function()Tobias Brunner2017-05-261-5/+5
* Change interface for enumerator_create_filter() callbackTobias Brunner2017-05-266-94/+150
* Migrate all enumerators to venumerate() interface changeTobias Brunner2017-05-263-8/+20
* child-cfg: Optionally use 96-bit truncation for HMAC-SHA-256Tobias Brunner2017-05-261-0/+8
* child-delete: Delay the removal of the inbound SA of rekeyed CHILD_SAsTobias Brunner2017-05-232-6/+50
* child-sa: Remove state to track installation of half the SA againTobias Brunner2017-05-235-17/+2
* child-sa: Expose state of the outbound SATobias Brunner2017-05-232-17/+61
* child-sa: Add method to remove the outbound SA and policiesTobias Brunner2017-05-232-5/+78
* child-sa: Keep track whether the outbound SA has been installed or notTobias Brunner2017-05-231-8/+13
* child-delete: Track flags per individual CHILD_SATobias Brunner2017-05-231-47/+78
* ikev2: Delay installation of outbound SAs during rekeying on the responderTobias Brunner2017-05-233-10/+92
* child-sa: Add log message for CHILD_SA state changesTobias Brunner2017-05-231-0/+4
* child-sa: Add method to associate rekeyed CHILD_SAs with their replacementTobias Brunner2017-05-232-0/+35
* child-sa: Add methods that allow partial installation of CHILD_SATobias Brunner2017-05-232-5/+144
* child-sa: Add new state to track installation of only the inbound SATobias Brunner2017-05-232-1/+7
* child-sa: Change API used to set/install policiesTobias Brunner2017-05-235-70/+112
* child-sa: Split in- and outbound policy de-/installationTobias Brunner2017-05-231-62/+127
* child-create: Trigger NARROW_RESPONDER_POST hook before installing SAsTobias Brunner2017-05-231-25/+21
* task-manager: Add helper function to calculate the total retransmit timeoutTobias Brunner2017-05-232-1/+42
* ike: Use optional jitter to calculate retransmission timeoutsTobias Brunner2017-05-233-5/+57
* child-sa: Optionally enable hardware offload for CHILD_SAsTobias Brunner2017-05-231-0/+1
* child-cfg: Use flags for boolean optionsTobias Brunner2017-05-233-12/+14
* ike-sa-manager: Improve scalability of IKE_SA count checkingThomas Egerer2017-05-191-19/+10
* Fixed some typos, courtesy of codespellTobias Brunner2017-03-231-1/+1
* ikev1: First do PSK lookups based on identities then fallback to IPsTobias Brunner2017-03-201-36/+34
* ike-sa-manager: Remove superfluous assignmentThomas Egerer2017-03-161-4/+0
* quick-mode: Correctly prepare NAT-OA payloads as responderTobias Brunner2017-03-061-8/+13
* ikev1: Respond to DPDs for rekeyed IKE_SAsTobias Brunner2017-02-172-0/+10
* ike-sa: Optionally try to migrate to the best path on routing priority changesMartin Willi2017-02-171-1/+23
* ikev2: Ignore roam events without MOBIKE but static local addressTobias Brunner2017-02-171-0/+10
* shunt-manager: Add an optional namespace for each shuntTobias Brunner2017-02-162-28/+75
* child-sa: Do not install mark on inbound kernel SAEyal Birger2017-02-141-4/+1
* ikev2: Ignore IKEV2_MESSAGE_ID_SYNC notifies if extension is disabledTobias Brunner2017-02-082-10/+37
* ikev2: Don't increase expected MID after handling MID sync messageTobias Brunner2017-02-082-3/+4
* ikev2: Don't cache response to MID sync requestTobias Brunner2017-02-081-1/+11
* ikev2: Accept INFORMATIONAL messages with MID 0 if used to sync MIDsTobias Brunner2017-02-081-3/+42
* ikev2: Negotiate support for IKE message ID synchronisation during IKE_AUTHTobias Brunner2017-02-082-0/+12
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-20 09:32:50 +0000