aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* Use mac_t and PRF and signer wrappers in cmac pluginTobias Brunner2012-06-258-443/+82
|
* Use mac_t and PRF and signer wrappers in xcbc pluginTobias Brunner2012-06-258-452/+91
|
* Make the hmac_t interface a generic interface for message authentication codesTobias Brunner2012-06-2511-132/+131
|
* Simplified creation of PRFs and signers in openssl and hmac pluginsTobias Brunner2012-06-252-136/+10
|
* Function to convert PRFs to hash algorithms addedTobias Brunner2012-06-252-0/+39
|
* hasher_algorithm_from_integrity() optionally returns truncation lengthTobias Brunner2012-06-253-7/+45
|
* Use simple wrappers for HMAC based PRF and signer in openssl pluginTobias Brunner2012-06-258-562/+132
|
* Use simple wrappers for HMAC based PRF and signer in hmac pluginTobias Brunner2012-06-258-524/+127
|
* Simple wrappers for HMAC based prf_t and signer_t implementations addedTobias Brunner2012-06-256-0/+395
|
* Refactored OpenSSL based HMAC implementationTobias Brunner2012-06-255-173/+382
|
* Adding OpenSSL HMAC signer functions to openssl pluginAleksandr Grinberg2012-06-254-1/+322
|
* Adding OpenSSL HMAC pseudo random functions to openssl pluginAleksandr Grinberg2012-06-254-1/+245
|
* Adding OpenSSL random number functions to openssl pluginAleksandr Grinberg2012-06-254-1/+159
|
* Fixed IPv6 source address lookupTobias Brunner2012-06-251-5/+43
| | | | | | | | | | | | | Because Linux kernels prior to 3.0 do not support RTA_PREFSRC for IPv6 routes we didn't use NLM_F_DUMP to get all routes. Still routes installed with policies are installed also for IPv6. So since only one route is returned without DUMP, and we ignore all routes from our own routing table, no source address was found during roaming if DST of the installed route included the IKE peer. With newer kernels we can now use DUMP as we did for IPv4 already, for older kernels we do so if our own routes are installed in a separate routing table, otherwise we still use GET.
* updated default configuration of UML hosts to 5.0.0Andreas Steffen2012-06-2514-72/+19
|
* added charon.cisco_unity to strongswan.conf.5 man pageAndreas Steffen2012-06-251-0/+3
|
* support Cisco Unity VIDAndreas Steffen2012-06-252-3/+11
|
* Enable xauth-generic by default but don't build it if IKEv1 is disabledTobias Brunner2012-06-251-1/+5
|
* Remove CREDITS from distributionTobias Brunner2012-06-251-1/+1
|
* The AUTHORS file is required by automakeTobias Brunner2012-06-251-0/+0
|
* LICENSE file updatedTobias Brunner2012-06-251-21/+8
|
* ldaphost and ldapbase ca section keywords are deprecatedTobias Brunner2012-06-254-8/+2
|
* Removed pluto-specifics from ipsec scriptTobias Brunner2012-06-251-75/+1
|
* README file cleaned up and updatedTobias Brunner2012-06-251-2117/+481
|
* Enforce uniqueids=keep based on XAuth identityMartin Willi2012-06-251-0/+6
|
* Don't send XAUTH_OK if a hook prevents SA to establishMartin Willi2012-06-251-4/+14
|
* Enforce uniqueids=keep only for non-XAuth Main/Agressive ModesMartin Willi2012-06-252-28/+28
|
* Show EAP/XAuth identity in "ipsec status", if availableMartin Willi2012-06-251-1/+1
|
* Use XAuth/EAP remote identity for uniqueness checkMartin Willi2012-06-253-4/+6
|
* Add missing XAuth name variable when complaining about missing XAuth backendMartin Willi2012-06-251-1/+1
|
* removed AUTHORS and CREDITSAndreas Steffen2012-06-252-110/+0
|
* some copyright additionsAndreas Steffen2012-06-231-5/+8
|
* update copyrightAndreas Steffen2012-06-231-6/+4
|
* version bump to 5.0.0Andreas Steffen2012-06-231-1/+1
|
* Fix SIGSEGV if kernel install fails during Quick Mode as responder.Tobias Brunner2012-06-221-4/+8
|
* adapted description to IKEv2Andreas Steffen2012-06-223-6/+5
|
* Fixed compile error because of charon->name in certexpire plugin.Tobias Brunner2012-06-211-0/+1
|
* fixed typoAndreas Steffen2012-06-201-1/+1
|
* added ipv6/rw-ip6-in-ip4-ikev1 scenarioAndreas Steffen2012-06-2019-0/+504
|
* added ipv6/rw-ip6-in-ip4-ikev2 scenarioAndreas Steffen2012-06-2014-0/+440
|
* Select requested virtual IP family based on remote TS, if no local TS availableMartin Willi2012-06-201-1/+12
|
* upgraded UML options to 5.0.0Andreas Steffen2012-06-192-8/+9
|
* Doxygen fix in PKCS#7 wrapperTobias Brunner2012-06-191-1/+1
|
* sleep one second moreAndreas Steffen2012-06-191-1/+1
|
* use socket-default in scenarioAndreas Steffen2012-06-192-2/+2
|
* added ikev1/xauth-id-rsa-hybrid scenarioAndreas Steffen2012-06-1814-0/+174
|
* added ikev1/xauth-id-rsa-aggressive scenarioAndreas Steffen2012-06-1814-0/+180
|
* added secret as valid authby argumentAndreas Steffen2012-06-181-1/+1
|
* rsasig is not recognized as authentication methodAndreas Steffen2012-06-1811-22/+22
|
* enable potentially unsafe aggressive modeAndreas Steffen2012-06-181-0/+2
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-14 10:11:06 +0000