aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/sa
Commit message (Expand)AuthorAgeFilesLines
...
* ike-sa: Reauthenticate to the same addresses we currently useTobias Brunner2016-03-041-2/+5
* ike-sa: Add redirect() method to actively redirect an IKE_SATobias Brunner2016-03-042-0/+50
* ike-redirect: Add task to redirect active IKE_SAsTobias Brunner2016-03-045-0/+218
* ike-auth: Handle REDIRECT notifies during IKE_AUTHTobias Brunner2016-03-041-22/+44
* ike-sa: Handle redirect requests for established SAs as reestablishmentTobias Brunner2016-03-041-82/+174
* ike-auth: Send REDIRECT notify during IKE_AUTH if requested by providersTobias Brunner2016-03-041-27/+51
* ike-config: Do not assign attributes for redirected IKE_SAsTobias Brunner2016-03-041-0/+5
* child-create: Don't create CHILD_SA if the IKE_SA got redirected in IKE_AUTHTobias Brunner2016-03-041-0/+4
* ike-sa: Add a condition to mark redirected IKE_SAsTobias Brunner2016-03-041-0/+5
* ike-init: Handle REDIRECTED_FROM similar to REDIRECT_SUPPORTED as serverTobias Brunner2016-03-041-0/+17
* ike-init: Send REDIRECTED_FROM instead of REDIRECT_SUPPORTED if appropriateTobias Brunner2016-03-041-1/+19
* ike-sa: Keep track of the address of the gateway that redirected usTobias Brunner2016-03-042-1/+27
* ikev2: Add option to disable following redirects as clientTobias Brunner2016-03-042-1/+20
* ikev2: Handle REDIRECT notifies during IKE_SA_INITTobias Brunner2016-03-043-0/+64
* ike-init: Send REDIRECT notify during IKE_SA_INIT if requested by providersTobias Brunner2016-03-041-0/+17
* redirect-manager: Add helper function to create and parse REDIRECT notify dataTobias Brunner2016-03-042-11/+162
* redirect-manager: Verify type of returned gateway IDTobias Brunner2016-03-041-1/+12
* ike-init: Send REDIRECT_SUPPORTED as initiatorTobias Brunner2016-03-041-0/+5
* ike-init: Enable redirection extension if client sends REDIRECT_SUPPORTED notifyTobias Brunner2016-03-041-0/+4
* ike-sa: Add new extension for IKEv2 redirection (RFC 5685)Tobias Brunner2016-03-041-1/+6
* redirect-manager: Add manager for redirect providersTobias Brunner2016-03-042-0/+221
* redirect-provider: Add interface to redirect clients during initial messagesTobias Brunner2016-03-041-0/+59
* libhydra: Move kernel interface to libcharonTobias Brunner2016-03-0310-95/+75
* ikev1: Send and verify IPv6 addresses correctlyTobias Brunner2016-03-031-26/+11
* ikev1: Allow immediate deletion of rekeyed CHILD_SAsTobias Brunner2016-03-031-1/+17
* ikev1: Avoid modifying local auth config when detecting pubkey methodTobias Brunner2016-03-031-1/+1
* ike: Keep track of send keepalive jobs to avoid scheduling more than one per ...Tobias Brunner2016-03-032-10/+23
* ike: Don't send NAT keepalives if we have no path to the other peerTobias Brunner2016-03-031-3/+9
* ikev2: Use config value for sending of vendor IDsThomas Egerer2016-03-011-13/+43
* ike-sa-manager: Store a reference to the thread that checked out an IKE_SATobias Brunner2016-02-171-13/+14
* ikev2: Add debug message about failed IKE authenticationThomas Egerer2016-02-021-0/+4
* ikev1: Log successful authentication with signature schemeThomas Egerer2016-02-011-1/+1
* ikev1: Always enable charon.reuse_ikesaTobias Brunner2016-02-011-2/+2
* child-rekey: Suppress updown event when deleting redundant CHILD_SAsTobias Brunner2016-02-011-1/+10
* ike-sa-manager: Don't update entries for init messages after unlocking segmentTobias Brunner2016-02-011-3/+2
* mode-config: Reassign migrated virtual IP if client requests %anyTobias Brunner2015-11-121-1/+3
* ike-sa-manager: Allow plugins to provide IKE SPIs via a callbackTobias Brunner2015-11-112-11/+54
* ikev1: Also use message hashes for Quick Mode for the early retransmission checkTobias Brunner2015-11-111-4/+8
* kernel-interface: Pass the same data to del_policy() that was passed to add_p...Tobias Brunner2015-11-102-98/+107
* trap-manager: Also clean up remote address in error casesTobias Brunner2015-11-101-0/+2
* traffic-selector: Don't end printf'ed list of traffic selectors with a spaceTobias Brunner2015-11-104-7/+7
* ike-natd: Create fake NAT-D payloads in a more static wayTobias Brunner2015-11-091-20/+8
* ike-sa-manager: Signal entries that we don't actually check outTobias Brunner2015-11-091-1/+8
* ike-sa-manager: Signal waiting threads after check out/in for uniqueness checkTobias Brunner2015-11-091-0/+3
* ikev1: Fix calculation of DPD timeoutTobias Brunner2015-11-091-0/+2
* xauth: Call authorize() hook also when xauth-noauth is usedTobias Brunner2015-11-091-2/+8
* ikev2: Fix size of key material for CAMELLIA-CTRTobias Brunner2015-10-301-0/+1
* ike-mobike: Send retransmits to the current local and remote addressesTobias Brunner2015-10-301-1/+5
* ikev1: Handle queued INFORMATIONAL message after receiving the last AM requestTobias Brunner2015-10-301-0/+16
* ikev1: Queue INFORMATIONAL request if AM is not complete yetTobias Brunner2015-10-301-6/+13
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-14 10:54:00 +0000