aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* fixed configure options5.0.3Andreas Steffen2013-04-041-0/+2
|
* cleaned up XML code in tnccs-11 pluginAndreas Steffen2013-04-0413-92/+95
|
* duplicheck: track multiple IKE_SAs in checking state to avoid any racesMartin Willi2013-04-041-63/+123
| | | | | | When two consequent duplicates have been detected, track state of each checking IKE_SA separately, avoiding potential race conditions between the active SA and the different SAs in checking state.
* fixed memory leakAndreas Steffen2013-04-031-1/+1
|
* properly handle orphaned renewSession jobsAndreas Steffen2013-04-035-24/+102
|
* support chunked HTTP responsesAndreas Steffen2013-04-034-140/+370
|
* implemented periodic IF-MAP RenewSession requestAndreas Steffen2013-04-037-2/+185
|
* Refactor check_for_rekeyed_child() in quick_mode taskMartin Willi2013-04-031-18/+24
|
* Reuse reqid of an existing Quick Mode, even if it has been rekeyedMartin Willi2013-04-031-1/+2
| | | | | | If two peers rekey Quick Modes at the same time, the original Quick Mode is in REKEYING state and hence the requid is not reused. This is required though, as two identical policies won't work if they have different requids.
* List all stroke counters when "all" is given, and report if connection not knownMartin Willi2013-04-031-30/+88
|
* Defer CHILD_SA rekeying if allocating an SPI failsMartin Willi2013-04-032-12/+26
|
* Accept a certificate/key pair to use client authentication in tls_testMartin Willi2013-04-021-7/+52
|
* version bump to 5.0.3Andreas Steffen2013-04-021-1/+1
|
* allow retrieval of private keys from other credential setsAndreas Steffen2013-04-022-9/+26
|
* improve checking of sent and received http messagesAndreas Steffen2013-04-021-3/+7
|
* Updated strongswan.conf(5) man pageTobias Brunner2013-04-011-10/+42
|
* Load raw keys before possibly destroying the identityTobias Brunner2013-04-011-12/+11
| | | | | | | | If no identity (or %any) is configured the identification_t object is destroyed and an invalid object was associated with the created pubkey certificate. Actually using %any does not work as the certificate would not match when the client later provides an identity.
* ipseckey: Use proper daemon name for enable optionTobias Brunner2013-04-011-1/+1
|
* Properly handle situation if no resolver plugins are loadedTobias Brunner2013-04-012-4/+7
|
* fixed capability metadataAndreas Steffen2013-03-311-1/+2
|
* fix start of wpa_supplicantAndreas Steffen2013-03-313-6/+21
|
* updated strongswan.conf man page for tn_ifmap pluginAndreas Steffen2013-03-311-12/+12
|
* renamed tnc_ifmap2 plugin to tnc_ifmapAndreas Steffen2013-03-3112-185/+185
|
* removed obsoleted tnc_ifmap pluginAndreas Steffen2013-03-319-1358/+0
|
* implemented http basic authenticationAndreas Steffen2013-03-313-46/+80
|
* parse IF-MAP server URIAndreas Steffen2013-03-313-41/+105
|
* implemented publish_enforcement_report and endSession methodsAndreas Steffen2013-03-301-6/+58
|
* implemented publish_ike_sa methodAndreas Steffen2013-03-301-6/+252
|
* ifmap message type is knownAndreas Steffen2013-03-303-12/+7
|
* implemented publish_device_ip methodAndreas Steffen2013-03-301-13/+132
|
* added IF-MAP SOAP error handlingAndreas Steffen2013-03-301-9/+32
|
* created tnc_ifmap2_soap_msg classAndreas Steffen2013-03-294-220/+343
|
* implement NewSession and PurgePublisher messages using the libxml2 libraryAndreas Steffen2013-03-294-82/+268
|
* set up a new IF-MAP sessionAndreas Steffen2013-03-2910-0/+888
|
* fixed typoAndreas Steffen2013-03-271-1/+1
|
* Fixed Doxygen comment in eap_radius pluginTobias Brunner2013-03-271-2/+3
|
* Fix detection and use of netinet/ip6.h on FreeBSDTobias Brunner2013-03-272-1/+6
|
* Don't set USE_ATTR_SQL when the sql plugin is enabled onlyTobias Brunner2013-03-271-1/+1
|
* Make some private functions in plugins staticTobias Brunner2013-03-272-5/+5
| | | | Fixes monolithic build.
* Use new strongSwan HA kernel patchset keeping iptables ABIMartin Willi2013-03-264-101/+2
| | | | | Allows us to install stock debian iptables without the need for patching and compiling our own.
* Define SSHCONF from strongswan testing directory, not TESTDIRMartin Willi2013-03-265-3/+4
| | | | | This fixes the use of SSHCONF in the ssh wrapper script before ./do-tests had a chance to create the required symlinks.
* Lazy unmount guest filesystem after building image, as it still might be busyMartin Willi2013-03-261-1/+1
|
* crypt_burn: Proper cleanupTobias Brunner2013-03-251-0/+2
|
* crypt_burn: Fix loop condition for regular cryptersTobias Brunner2013-03-251-1/+1
|
* libpts: Cast first argument for %.*s to intTobias Brunner2013-03-251-1/+1
|
* error-notify: Close file descriptors in case clients are still connectedTobias Brunner2013-03-251-0/+6
|
* libpttls: Destroy reader when handling errors during SASLTobias Brunner2013-03-251-0/+2
|
* pacman: Define gen_time out of the loopTobias Brunner2013-03-251-1/+2
| | | | It gets assigned if count==3 but only used later when count >= 7.
* ipseckey: NULL pointer dereference fixed in error caseTobias Brunner2013-03-251-0/+1
|
* Recipes: Disable Anet unit testsReto Buerki2013-03-251-1/+1
| | | | | | Some Anet unit tests may fail because of the network configuration on the testing host. These failures do not indicate a problem in Anet but are a result of unpredictable events.
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 03:30:09 +0000