aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* configure NAT keep alive interval using the charon.keep_alive keyAndreas Steffen2008-09-031-2/+9
|
* typosTobias Brunner2008-09-031-6/+5
|
* handle INFORMATIONAL exchanges with NATD payloads in mobike taskMartin Willi2008-09-021-0/+2
|
* libstrongswan agent plugin to use ssh-agent for RSA signaturesMartin Willi2008-09-027-0/+725
|
* ported openac to credential factory changesMartin Willi2008-09-021-3/+5
|
* refactored credential builderMartin Willi2008-09-0229-367/+428
| | | | | | | | | allow enumeration of matching builders try a second builder if the first one fails builder clones resources internally on demand caller frees added resources on failure and success stricter handling of non-supported build parts
* OIDs used by strongSwanAndreas Steffen2008-09-011-1/+1
|
* added thread_analysis toolAndreas Steffen2008-09-012-1/+275
|
* use libcap for capability droppingMartin Willi2008-08-297-60/+71
| | | | | optional, must be enabled --with-capabilities=libcap will be extended to support --with-capabilities=libcap2
* streamlined ipsec listalgs outputAndreas Steffen2008-08-291-2/+3
|
* capability API to allow plugin-controlled capability setMartin Willi2008-08-286-35/+51
|
* cosmeticsMartin Willi2008-08-281-3/+3
|
* creating default IKE proposals dynamically using algorithm enumeration APIMartin Willi2008-08-286-62/+147
|
* separated sha1_prf implementation from sha1_hasherMartin Willi2008-08-286-133/+208
|
* crypto_factory algorithm enumeration APIMartin Willi2008-08-288-102/+294
| | | | implementation of "ipsec listalgs"
* * allow to load templates from arbitrary placesTobias Brunner2008-08-284-48/+19
| | | | * changed implementation of guest?/iface?
* mkdir_p: utility function to create a directory and all required parent ↵Tobias Brunner2008-08-282-0/+61
| | | | directories
* build scripts for ubuntu NetworkManager packagesMartin Willi2008-08-2711-0/+193
|
* check user account validity after PAM authenticationMartin Willi2008-08-271-1/+10
|
* version bump to 4.2.7Andreas Steffen2008-08-274-4/+6
|
* additional NEWS for 4.2.64.2.6Martin Willi2008-08-271-0/+14
|
* * guest#running?Tobias Brunner2008-08-275-12/+139
| | | | | | * guest?, iface? (also Guest.include? resp. guest.include?) * easy accessors for guests and ifaces (Guest.sun instead of Guest["sun"] and guest.eth0 instead of guest["eth0"]) * if a block is given for iface#add or iface#del then the change is only temporary while executing the block and gets reverted afterwards
* my changes for the 4.2.6 releaseAndreas Steffen2008-08-271-0/+13
|
* added ikev2/rw-eap-aka-identity scenarioAndreas Steffen2008-08-2611-0/+118
|
* cosmeticsAndreas Steffen2008-08-261-1/+1
|
* ipsec statusall lists eap_type and eap_identityAndreas Steffen2008-08-261-1/+19
|
* enable-eap-identity in UML scenariosAndreas Steffen2008-08-262-0/+6
|
* using strongSwan, not NetworkManager version numberMartin Willi2008-08-262-1/+1
|
* fixing charon path for now for ubuntu packageMartin Willi2008-08-261-1/+1
|
* added ikev2/multi-level-ca-cr-init and ikev2/multi-level-ca-cr-resp scenariosAndreas Steffen2008-08-2636-0/+602
|
* completed support of AUTHZ_CA_CERT and AUTHZ_CA_CERT_NAME attributesAndreas Steffen2008-08-264-23/+87
|
* adapted sql/rw-eap-aka-rsa scenario to new EAP identity typeAndreas Steffen2008-08-252-6/+24
|
* list CA restrictions in ipsec statusallAndreas Steffen2008-08-251-9/+43
|
* added NM gnome plugin to distributionMartin Willi2008-08-251-0/+17
|
* removed generated Makefile.in.in from svnMartin Willi2008-08-251-218/+0
|
* enforce DN of configured gateway certificateMartin Willi2008-08-252-46/+52
|
* new EAP-Identity handling uses ID_EAP in pluginsMartin Willi2008-08-251-1/+3
|
* disabled PSK option until we have a way to enforce strong secretsMartin Willi2008-08-251-1/+3
|
* use username part of RFC822 IDs for PAM authentication Martin Willi2008-08-251-3/+9
|
* ported parts of two-sim branchMartin Willi2008-08-2240-253/+676
| | | | | | eap_identity parameter to exchange in eap_identity some auth_info/peer_cfg refactorings fixed some bugs, introduced new ones
* run guests with some nicenessMartin Willi2008-08-221-0/+1
|
* pool names are uniqueMartin Willi2008-08-221-5/+1
|
* do not return IPv6 src addresses for IPv4 destinationsMartin Willi2008-08-211-2/+4
|
* fixed EAP-GTC secret lookupMartin Willi2008-08-212-8/+22
| | | | | improved error logging PAM authentication needs CAP_AUDIT_WRITE capability
* a (incomplete) implementation of draft-sheffer-ikev2-gtc-00.txt using PAMMartin Willi2008-08-2112-6/+1009
|
* corrected captionAndreas Steffen2008-08-211-1/+1
|
* charon.process_route = no does not process RTM_NEWROUTE and RTM_DELROUTE ↵Andreas Steffen2008-08-211-3/+14
| | | | events. Useful for taking down hundreds of virtual IPs on the same host
* added sqlite busy handler: retries on locking conflictsMartin Willi2008-08-211-0/+14
|
* avoid too many alloca()s in netlink send, problematic on MIPSMartin Willi2008-08-211-2/+7
|
* some string fixesMartin Willi2008-08-202-2/+2
|