aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/sa
Commit message (Expand)AuthorAgeFilesLines
...
* ike-rekey: Add the name/ID of the redundant IKE_SAs to the log messagesTobias Brunner2016-06-171-8/+13
* ike-sa-manager: Make sure rng is defined before destroying it in flush()Tobias Brunner2016-06-171-1/+1
* ike-rekey: Establish new IKE_SA earlier as responder, but only if no collisionTobias Brunner2016-06-171-3/+8
* child-delete: Check if the deleted CHILD_SA is the redundant SA of a collisionTobias Brunner2016-06-171-4/+39
* child-rekey: Add method to check for the redundant SA created in a collisionTobias Brunner2016-06-172-18/+37
* child-rekey: Don't change state to INSTALLED if it was already REKEYINGTobias Brunner2016-06-171-3/+5
* ikev2: Use CHILD_REKEYED for replaced CHILD_SAs after rekeyingTobias Brunner2016-06-172-9/+12
* child-rekey: Use more appropriate error notifies if CHILD_SA is not found or ...Tobias Brunner2016-06-171-3/+8
* child-rekey: Recreate the CHILD_SA if we receive a CHILD_SA_NOT_FOUND notifyTobias Brunner2016-06-171-0/+28
* child-create: Handle TEMPORARY_FAILURE notify as failureTobias Brunner2016-06-172-4/+5
* child-delete: Remove unnecessary call to destroy_child_sa()Tobias Brunner2016-06-171-2/+0
* quick-mode: Fix reporting lifebytes if lifetime is configuredTobias Brunner2016-06-171-2/+2
* child-sa: Use non-static variable to store generated unique markTobias Brunner2016-06-061-1/+2
* ike: Don't trigger message hook when fragmenting pre-generated messagesTobias Brunner2016-06-061-2/+10
* task-manager: Add retransmit cleared alertTobias Brunner2016-06-062-0/+13
* task-manager: Add retransmit count to retransmit send alertThomas Egerer2016-06-062-2/+4
* ikev1: Queue INFORMATIONAL messages during XAuthTobias Brunner2016-06-061-5/+12
* ikev2: Handle INITIAL_CONTACT notifies also when peer is authenticated with EAPTobias Brunner2016-06-061-16/+5
* child-sa: Install "outbound" FWD policy with lower priorityTobias Brunner2016-05-061-1/+12
* trap-manager: Allow local address to be unspecifiedTobias Brunner2016-05-061-3/+1
* ikev1: Activate DELETE tasks before other tasks in state ESTABLISHEDTobias Brunner2016-05-061-7/+7
* ikev1: Don't use rekeyed CHILD_SAs for rekey detectionTobias Brunner2016-05-061-4/+4
* ikev1: Don't call updown hook etc. when deleting redundant CHILD_SAsTobias Brunner2016-05-061-0/+1
* vici list-conns sends reauthentication and rekeying time informationAndreas Steffen2016-05-042-2/+2
* Implemented IPsec policies restricted to given network interfaceAndreas Steffen2016-04-092-2/+20
* Support manually-set IPsec policy prioritiesAndreas Steffen2016-04-092-20/+43
* shunt-manager: Install "outbound" FWD policyTobias Brunner2016-04-091-2/+8
* child-sa: Install "outbound" FWD policyTobias Brunner2016-04-091-0/+16
* kernel: Use structs to pass information to the kernel-ipsec interfaceTobias Brunner2016-04-092-97/+236
* Use standard unsigned integer typesAndreas Steffen2016-03-2451-337/+337
* ike-sa-manager: Avoid memory leak if IKE_SAs get checked in after flush() was...Tobias Brunner2016-03-231-23/+38
* Fix some Doxygen issuesTobias Brunner2016-03-111-1/+1
* ike-sa: Improve interaction between flush_auth_cfg and delayed revocation checksTobias Brunner2016-03-101-26/+37
* ikev2: Delay online revocation checks during make-before-break reauthenticationTobias Brunner2016-03-101-0/+5
* ikev2: Add task that verifies a peer's certificateTobias Brunner2016-03-105-0/+179
* ikev2: Initiate other tasks after a no-op taskTobias Brunner2016-03-101-1/+1
* ikev2: Don't do online revocation checks in pubkey authenticator if requestedTobias Brunner2016-03-101-1/+8
* ike-sa: Add condition to suspend online certificate revocation checks for an ...Tobias Brunner2016-03-101-0/+5
* ike-sa: Add method to verify certificates in completed authentication roundsTobias Brunner2016-03-102-0/+111
* credential-manager: Make online revocation checks optional for public key enu...Tobias Brunner2016-03-102-2/+2
* ike-sa-manager: Log a checkin/failure message for every checkoutThomas Egerer2016-03-071-8/+32
* ike-sa-manager: Log some additional details like SPIs when checking out SAsTobias Brunner2016-03-041-7/+16
* ikev2: Always store signature scheme in auth-cfgTobias Brunner2016-03-041-12/+1
* ikev2: Diversify signature scheme ruleThomas Egerer2016-03-042-3/+4
* ike-init: Verify REDIRECT notify before processing IKE_SA_INIT messageTobias Brunner2016-03-041-7/+51
* ikev2: Allow tasks to verify request messages before processing themTobias Brunner2016-03-041-4/+47
* ikev2: Allow tasks to verify response messages before processing themTobias Brunner2016-03-041-1/+27
* task: Add optional pre_process() methodTobias Brunner2016-03-041-1/+13
* ike-init: Ignore notifies related to redirects during rekeyingTobias Brunner2016-03-041-3/+13
* ike-sa: Add limit for the number of redirects within a defined time periodTobias Brunner2016-03-042-0/+54
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-15 17:28:25 +0000