aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/sa
Commit message (Expand)AuthorAgeFilesLines
* ikev1: Only delete redundant CHILD_SAs if configuredTobias Brunner2017-06-261-1/+5
* ike: Apply retransmission_limit before applying the jitterTobias Brunner2017-05-262-8/+8
* linked-list: Change return value of find_first() and signature of its callbackTobias Brunner2017-05-264-104/+125
* linked-list: Change interface of callback for invoke_function()Tobias Brunner2017-05-261-5/+5
* Change interface for enumerator_create_filter() callbackTobias Brunner2017-05-266-94/+150
* Migrate all enumerators to venumerate() interface changeTobias Brunner2017-05-263-8/+20
* child-cfg: Optionally use 96-bit truncation for HMAC-SHA-256Tobias Brunner2017-05-261-0/+8
* child-delete: Delay the removal of the inbound SA of rekeyed CHILD_SAsTobias Brunner2017-05-232-6/+50
* child-sa: Remove state to track installation of half the SA againTobias Brunner2017-05-235-17/+2
* child-sa: Expose state of the outbound SATobias Brunner2017-05-232-17/+61
* child-sa: Add method to remove the outbound SA and policiesTobias Brunner2017-05-232-5/+78
* child-sa: Keep track whether the outbound SA has been installed or notTobias Brunner2017-05-231-8/+13
* child-delete: Track flags per individual CHILD_SATobias Brunner2017-05-231-47/+78
* ikev2: Delay installation of outbound SAs during rekeying on the responderTobias Brunner2017-05-233-10/+92
* child-sa: Add log message for CHILD_SA state changesTobias Brunner2017-05-231-0/+4
* child-sa: Add method to associate rekeyed CHILD_SAs with their replacementTobias Brunner2017-05-232-0/+35
* child-sa: Add methods that allow partial installation of CHILD_SATobias Brunner2017-05-232-5/+144
* child-sa: Add new state to track installation of only the inbound SATobias Brunner2017-05-232-1/+7
* child-sa: Change API used to set/install policiesTobias Brunner2017-05-235-70/+112
* child-sa: Split in- and outbound policy de-/installationTobias Brunner2017-05-231-62/+127
* child-create: Trigger NARROW_RESPONDER_POST hook before installing SAsTobias Brunner2017-05-231-25/+21
* task-manager: Add helper function to calculate the total retransmit timeoutTobias Brunner2017-05-232-1/+42
* ike: Use optional jitter to calculate retransmission timeoutsTobias Brunner2017-05-233-5/+57
* child-sa: Optionally enable hardware offload for CHILD_SAsTobias Brunner2017-05-231-0/+1
* child-cfg: Use flags for boolean optionsTobias Brunner2017-05-233-12/+14
* ike-sa-manager: Improve scalability of IKE_SA count checkingThomas Egerer2017-05-191-19/+10
* Fixed some typos, courtesy of codespellTobias Brunner2017-03-231-1/+1
* ikev1: First do PSK lookups based on identities then fallback to IPsTobias Brunner2017-03-201-36/+34
* ike-sa-manager: Remove superfluous assignmentThomas Egerer2017-03-161-4/+0
* quick-mode: Correctly prepare NAT-OA payloads as responderTobias Brunner2017-03-061-8/+13
* ikev1: Respond to DPDs for rekeyed IKE_SAsTobias Brunner2017-02-172-0/+10
* ike-sa: Optionally try to migrate to the best path on routing priority changesMartin Willi2017-02-171-1/+23
* ikev2: Ignore roam events without MOBIKE but static local addressTobias Brunner2017-02-171-0/+10
* shunt-manager: Add an optional namespace for each shuntTobias Brunner2017-02-162-28/+75
* child-sa: Do not install mark on inbound kernel SAEyal Birger2017-02-141-4/+1
* ikev2: Ignore IKEV2_MESSAGE_ID_SYNC notifies if extension is disabledTobias Brunner2017-02-082-10/+37
* ikev2: Don't increase expected MID after handling MID sync messageTobias Brunner2017-02-082-3/+4
* ikev2: Don't cache response to MID sync requestTobias Brunner2017-02-081-1/+11
* ikev2: Accept INFORMATIONAL messages with MID 0 if used to sync MIDsTobias Brunner2017-02-081-3/+42
* ikev2: Negotiate support for IKE message ID synchronisation during IKE_AUTHTobias Brunner2017-02-082-0/+12
* ikev2: Add task to handle IKEV2_MESSAGE_ID_SYNC notifies as responderTobias Brunner2017-02-085-0/+341
* ike: Publish getter for the current message ID on IKE_SATobias Brunner2017-02-082-1/+19
* ike: Add getter for the current message ID to task managerTobias Brunner2017-02-083-1/+23
* ikev1: Factor out IV and QM managementTobias Brunner2017-02-084-261/+498
* keymat: Allow keymat to modify signature scheme(s)Thomas Egerer2017-02-087-18/+49
* ike-auth: Don't send INITIAL_CONTACT if remote ID contains wildcardsTobias Brunner2017-02-061-1/+2
* Implemented EdDSA for IKEv2 using a pro forma Identity hash functionAndreas Steffen2016-12-141-0/+32
* ikev1: Minor code optimization in task managerThomas Egerer2016-12-071-11/+5
* child-sa: Use single return statement in update_usebytes()Thomas Egerer2016-11-181-4/+8
* task-manager: Only trigger retransmit cleared alert if there was at least one...Tobias Brunner2016-10-052-2/+2
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-22 11:04:46 +0000