aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* differentiate between executed and displayed iptables commandsAndreas Steffen2010-02-031-5/+13
|
* Use child_updown hook in updown plugin, fixes doubled invocation of down scriptMartin Willi2010-02-031-47/+17
|
* added ikev2/inactivity-timeout scenarioAndreas Steffen2010-02-039-0/+99
|
* renamed init_fetch() to fetch_initialize()Andreas Steffen2010-02-022-2/+2
|
* Some whitespace and code cleanups concerning the mediation extension.Tobias Brunner2010-02-023-12/+10
|
* Join pluto's fetching thread instead of detaching it in order to avoid that ↵Tobias Brunner2010-02-023-6/+26
| | | | the leak-detective reports a memleak.
* corrected captionsAndreas Steffen2010-02-011-2/+2
|
* warn if loaded local certificate is invalidAndreas Steffen2010-02-011-3/+5
|
* Updated NEWS about per-connection inactivity timeoutMartin Willi2010-01-271-3/+3
|
* Added a ipsec.conf "inactivity" option to configure inactivity timeout for ↵Martin Willi2010-01-279-27/+39
| | | | CHILD_SAs
* Made inactivity_timeout a per CHILD_SA config optionMartin Willi2010-01-279-16/+41
|
* Refactored EAP payload, avoid unaligned word accessMartin Willi2010-01-211-103/+68
|
* Added a METHOD2() macro that implements a method for two different interfacesMartin Willi2010-01-211-1/+11
|
* Support RADIUS messages up to 4096 bytes, RADIUS EAP-Message fragmentationMartin Willi2010-01-193-9/+22
|
* Support TLS client authentication Extended Key Usage in x509 generationMartin Willi2010-01-146-21/+38
|
* Block the signals before the call to sigwait.Tobias Brunner2010-01-121-0/+1
|
* Support for closing CHILD/IKE_SA if a CHILD_SA is inactive.Martin Willi2010-01-125-0/+234
|
* Added strongswan.conf options to configure retransmission timeoutsMartin Willi2010-01-112-5/+28
|
* Added a "double" getter to libstrongswan settingsMartin Willi2010-01-112-0/+35
|
* Cast unaligned memcpy() args to char*, avoids over-optimization on ARMMartin Willi2010-01-111-4/+10
| | | | See http://infocenter.arm.com/help/index.jsp?topic=/com.arm.doc.faqs/ka3934.html
* added ikev2/rw-eap-sim-only-radius scenarioAndreas Steffen2010-01-1124-0/+465
|
* log EAP-only authentication proposalAndreas Steffen2010-01-111-3/+5
|
* send strongSwan Vendor ID in ikev2/alg-sha256-96 scenarioAndreas Steffen2010-01-113-0/+4
|
* pluto and charon are using the same strongSwan Vendor IDAndreas Steffen2010-01-111-1/+1
|
* Added NEWS about mutual EAP-only authenticationMartin Willi2010-01-071-0/+6
|
* EAP-MSCHAPv2 is indeed mutual, but is prone to MITM dictionary attacksMartin Willi2010-01-071-1/+1
|
* Support EAP-only authentication for mutual and key deriving EAP methodsMartin Willi2010-01-075-31/+96
|
* Indicate and dected support for EAP-only authenticationMartin Willi2010-01-072-7/+28
|
* Added NEWS for the new Vendor ID requirement for private use allocationsMartin Willi2010-01-071-1/+7
|
* Match to private use algorithms only if we know we are talking to strongSwanMartin Willi2010-01-078-22/+41
|
* Interpret private use BEET mode notify only if we know we are talking to ↵Martin Willi2010-01-071-1/+9
| | | | strongSwan
* Add an option to send a vendor ID, allows us to properly support private ↵Martin Willi2010-01-079-8/+205
| | | | extensions
* added some recent new attributes registered with IANAAndreas Steffen2010-01-072-3/+9
|
* ipsec pki --self|issue supports --pathlen option setting a path length ↵Andreas Steffen2009-12-315-5/+35
| | | | constraint
* make error message about missing MD4 hasher more explicitAndreas Steffen2009-12-301-1/+1
|
* differentiate EAP method initialization errorsAndreas Steffen2009-12-301-12/+18
|
* removed charon-specific load statement in pluto scenarioAndreas Steffen2009-12-262-10/+0
|
* Pluto's fetcher thread is now created via libstrongswan.Tobias Brunner2009-12-261-4/+11
|
* added RFC 3779 CAAndreas Steffen2009-12-2518-0/+409
|
* added three RFC 3779 scenariosAndreas Steffen2009-12-2556-0/+1502
|
* Added RFC 3779 support to NEWSAndreas Steffen2009-12-251-0/+3
|
* enforce RFC 3779 address constraints on traffic selectorsAndreas Steffen2009-12-251-0/+61
|
* Adapted the load_tester kernel-interface to the changes introduced in 6ec949e02.Tobias Brunner2009-12-231-2/+3
|
* Added some IPv6 tweaks for Android.Tobias Brunner2009-12-232-1/+37
| | | | | Android 1.6 does not yet support the Advanced Sockets API for IPv6 as defined in RFC 3542. Also, in6addr_any is missing.
* Semicolon removed.Tobias Brunner2009-12-231-1/+1
|
* According to the man page (and the header files in Android) prctl takes a ↵Tobias Brunner2009-12-231-1/+2
| | | | total of 5 arguments.
* Added a workaround for the missing pthread_cancel on Android.Tobias Brunner2009-12-232-0/+37
|
* Use pthread_cond_timedwait_monotonic on Android.Tobias Brunner2009-12-233-2/+11
|
* Cache queue locking in credential manager corrected.Tobias Brunner2009-12-231-2/+13
|
* Join worker threads when destroying the processor.Tobias Brunner2009-12-231-10/+24
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-21 13:29:06 +0000