aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/sa
Commit message (Expand)AuthorAgeFilesLines
...
* kernel: Use structs to pass information to the kernel-ipsec interfaceTobias Brunner2016-04-092-97/+236
* Use standard unsigned integer typesAndreas Steffen2016-03-2451-337/+337
* ike-sa-manager: Avoid memory leak if IKE_SAs get checked in after flush() was...Tobias Brunner2016-03-231-23/+38
* Fix some Doxygen issuesTobias Brunner2016-03-111-1/+1
* ike-sa: Improve interaction between flush_auth_cfg and delayed revocation checksTobias Brunner2016-03-101-26/+37
* ikev2: Delay online revocation checks during make-before-break reauthenticationTobias Brunner2016-03-101-0/+5
* ikev2: Add task that verifies a peer's certificateTobias Brunner2016-03-105-0/+179
* ikev2: Initiate other tasks after a no-op taskTobias Brunner2016-03-101-1/+1
* ikev2: Don't do online revocation checks in pubkey authenticator if requestedTobias Brunner2016-03-101-1/+8
* ike-sa: Add condition to suspend online certificate revocation checks for an ...Tobias Brunner2016-03-101-0/+5
* ike-sa: Add method to verify certificates in completed authentication roundsTobias Brunner2016-03-102-0/+111
* credential-manager: Make online revocation checks optional for public key enu...Tobias Brunner2016-03-102-2/+2
* ike-sa-manager: Log a checkin/failure message for every checkoutThomas Egerer2016-03-071-8/+32
* ike-sa-manager: Log some additional details like SPIs when checking out SAsTobias Brunner2016-03-041-7/+16
* ikev2: Always store signature scheme in auth-cfgTobias Brunner2016-03-041-12/+1
* ikev2: Diversify signature scheme ruleThomas Egerer2016-03-042-3/+4
* ike-init: Verify REDIRECT notify before processing IKE_SA_INIT messageTobias Brunner2016-03-041-7/+51
* ikev2: Allow tasks to verify request messages before processing themTobias Brunner2016-03-041-4/+47
* ikev2: Allow tasks to verify response messages before processing themTobias Brunner2016-03-041-1/+27
* task: Add optional pre_process() methodTobias Brunner2016-03-041-1/+13
* ike-init: Ignore notifies related to redirects during rekeyingTobias Brunner2016-03-041-3/+13
* ike-sa: Add limit for the number of redirects within a defined time periodTobias Brunner2016-03-042-0/+54
* ike-sa: Reauthenticate to the same addresses we currently useTobias Brunner2016-03-041-2/+5
* ike-sa: Add redirect() method to actively redirect an IKE_SATobias Brunner2016-03-042-0/+50
* ike-redirect: Add task to redirect active IKE_SAsTobias Brunner2016-03-045-0/+218
* ike-auth: Handle REDIRECT notifies during IKE_AUTHTobias Brunner2016-03-041-22/+44
* ike-sa: Handle redirect requests for established SAs as reestablishmentTobias Brunner2016-03-041-82/+174
* ike-auth: Send REDIRECT notify during IKE_AUTH if requested by providersTobias Brunner2016-03-041-27/+51
* ike-config: Do not assign attributes for redirected IKE_SAsTobias Brunner2016-03-041-0/+5
* child-create: Don't create CHILD_SA if the IKE_SA got redirected in IKE_AUTHTobias Brunner2016-03-041-0/+4
* ike-sa: Add a condition to mark redirected IKE_SAsTobias Brunner2016-03-041-0/+5
* ike-init: Handle REDIRECTED_FROM similar to REDIRECT_SUPPORTED as serverTobias Brunner2016-03-041-0/+17
* ike-init: Send REDIRECTED_FROM instead of REDIRECT_SUPPORTED if appropriateTobias Brunner2016-03-041-1/+19
* ike-sa: Keep track of the address of the gateway that redirected usTobias Brunner2016-03-042-1/+27
* ikev2: Add option to disable following redirects as clientTobias Brunner2016-03-042-1/+20
* ikev2: Handle REDIRECT notifies during IKE_SA_INITTobias Brunner2016-03-043-0/+64
* ike-init: Send REDIRECT notify during IKE_SA_INIT if requested by providersTobias Brunner2016-03-041-0/+17
* redirect-manager: Add helper function to create and parse REDIRECT notify dataTobias Brunner2016-03-042-11/+162
* redirect-manager: Verify type of returned gateway IDTobias Brunner2016-03-041-1/+12
* ike-init: Send REDIRECT_SUPPORTED as initiatorTobias Brunner2016-03-041-0/+5
* ike-init: Enable redirection extension if client sends REDIRECT_SUPPORTED notifyTobias Brunner2016-03-041-0/+4
* ike-sa: Add new extension for IKEv2 redirection (RFC 5685)Tobias Brunner2016-03-041-1/+6
* redirect-manager: Add manager for redirect providersTobias Brunner2016-03-042-0/+221
* redirect-provider: Add interface to redirect clients during initial messagesTobias Brunner2016-03-041-0/+59
* libhydra: Move kernel interface to libcharonTobias Brunner2016-03-0310-95/+75
* ikev1: Send and verify IPv6 addresses correctlyTobias Brunner2016-03-031-26/+11
* ikev1: Allow immediate deletion of rekeyed CHILD_SAsTobias Brunner2016-03-031-1/+17
* ikev1: Avoid modifying local auth config when detecting pubkey methodTobias Brunner2016-03-031-1/+1
* ike: Keep track of send keepalive jobs to avoid scheduling more than one per ...Tobias Brunner2016-03-032-10/+23
* ike: Don't send NAT keepalives if we have no path to the other peerTobias Brunner2016-03-031-3/+9
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-17 04:59:46 +0000