aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/sa
Commit message (Expand)AuthorAgeFilesLines
...
* credential-manager: Make online revocation checks optional for public key enu...Tobias Brunner2016-03-102-2/+2
* ike-sa-manager: Log a checkin/failure message for every checkoutThomas Egerer2016-03-071-8/+32
* ike-sa-manager: Log some additional details like SPIs when checking out SAsTobias Brunner2016-03-041-7/+16
* ikev2: Always store signature scheme in auth-cfgTobias Brunner2016-03-041-12/+1
* ikev2: Diversify signature scheme ruleThomas Egerer2016-03-042-3/+4
* ike-init: Verify REDIRECT notify before processing IKE_SA_INIT messageTobias Brunner2016-03-041-7/+51
* ikev2: Allow tasks to verify request messages before processing themTobias Brunner2016-03-041-4/+47
* ikev2: Allow tasks to verify response messages before processing themTobias Brunner2016-03-041-1/+27
* task: Add optional pre_process() methodTobias Brunner2016-03-041-1/+13
* ike-init: Ignore notifies related to redirects during rekeyingTobias Brunner2016-03-041-3/+13
* ike-sa: Add limit for the number of redirects within a defined time periodTobias Brunner2016-03-042-0/+54
* ike-sa: Reauthenticate to the same addresses we currently useTobias Brunner2016-03-041-2/+5
* ike-sa: Add redirect() method to actively redirect an IKE_SATobias Brunner2016-03-042-0/+50
* ike-redirect: Add task to redirect active IKE_SAsTobias Brunner2016-03-045-0/+218
* ike-auth: Handle REDIRECT notifies during IKE_AUTHTobias Brunner2016-03-041-22/+44
* ike-sa: Handle redirect requests for established SAs as reestablishmentTobias Brunner2016-03-041-82/+174
* ike-auth: Send REDIRECT notify during IKE_AUTH if requested by providersTobias Brunner2016-03-041-27/+51
* ike-config: Do not assign attributes for redirected IKE_SAsTobias Brunner2016-03-041-0/+5
* child-create: Don't create CHILD_SA if the IKE_SA got redirected in IKE_AUTHTobias Brunner2016-03-041-0/+4
* ike-sa: Add a condition to mark redirected IKE_SAsTobias Brunner2016-03-041-0/+5
* ike-init: Handle REDIRECTED_FROM similar to REDIRECT_SUPPORTED as serverTobias Brunner2016-03-041-0/+17
* ike-init: Send REDIRECTED_FROM instead of REDIRECT_SUPPORTED if appropriateTobias Brunner2016-03-041-1/+19
* ike-sa: Keep track of the address of the gateway that redirected usTobias Brunner2016-03-042-1/+27
* ikev2: Add option to disable following redirects as clientTobias Brunner2016-03-042-1/+20
* ikev2: Handle REDIRECT notifies during IKE_SA_INITTobias Brunner2016-03-043-0/+64
* ike-init: Send REDIRECT notify during IKE_SA_INIT if requested by providersTobias Brunner2016-03-041-0/+17
* redirect-manager: Add helper function to create and parse REDIRECT notify dataTobias Brunner2016-03-042-11/+162
* redirect-manager: Verify type of returned gateway IDTobias Brunner2016-03-041-1/+12
* ike-init: Send REDIRECT_SUPPORTED as initiatorTobias Brunner2016-03-041-0/+5
* ike-init: Enable redirection extension if client sends REDIRECT_SUPPORTED notifyTobias Brunner2016-03-041-0/+4
* ike-sa: Add new extension for IKEv2 redirection (RFC 5685)Tobias Brunner2016-03-041-1/+6
* redirect-manager: Add manager for redirect providersTobias Brunner2016-03-042-0/+221
* redirect-provider: Add interface to redirect clients during initial messagesTobias Brunner2016-03-041-0/+59
* libhydra: Move kernel interface to libcharonTobias Brunner2016-03-0310-95/+75
* ikev1: Send and verify IPv6 addresses correctlyTobias Brunner2016-03-031-26/+11
* ikev1: Allow immediate deletion of rekeyed CHILD_SAsTobias Brunner2016-03-031-1/+17
* ikev1: Avoid modifying local auth config when detecting pubkey methodTobias Brunner2016-03-031-1/+1
* ike: Keep track of send keepalive jobs to avoid scheduling more than one per ...Tobias Brunner2016-03-032-10/+23
* ike: Don't send NAT keepalives if we have no path to the other peerTobias Brunner2016-03-031-3/+9
* ikev2: Use config value for sending of vendor IDsThomas Egerer2016-03-011-13/+43
* ike-sa-manager: Store a reference to the thread that checked out an IKE_SATobias Brunner2016-02-171-13/+14
* ikev2: Add debug message about failed IKE authenticationThomas Egerer2016-02-021-0/+4
* ikev1: Log successful authentication with signature schemeThomas Egerer2016-02-011-1/+1
* ikev1: Always enable charon.reuse_ikesaTobias Brunner2016-02-011-2/+2
* child-rekey: Suppress updown event when deleting redundant CHILD_SAsTobias Brunner2016-02-011-1/+10
* ike-sa-manager: Don't update entries for init messages after unlocking segmentTobias Brunner2016-02-011-3/+2
* mode-config: Reassign migrated virtual IP if client requests %anyTobias Brunner2015-11-121-1/+3
* ike-sa-manager: Allow plugins to provide IKE SPIs via a callbackTobias Brunner2015-11-112-11/+54
* ikev1: Also use message hashes for Quick Mode for the early retransmission checkTobias Brunner2015-11-111-4/+8
* kernel-interface: Pass the same data to del_policy() that was passed to add_p...Tobias Brunner2015-11-102-98/+107
generated by cgit v1.2.3 (git 2.25.1) at 2024-09-30 20:24:33 +0000