aboutsummaryrefslogtreecommitdiffstats
Commit message (Expand)AuthorAgeFilesLines
...
* stroke: Add non-blocking versions of up and downTobias Brunner2013-06-213-5/+23
* starter: Make ipsec.conf path configurable via command lineTobias Brunner2013-06-211-3/+14
* pubkey: Improve comparison of raw public key certificate objectsTobias Brunner2013-06-211-1/+11
* ikev2: use protocol of selected proposal to delete a failed CHILD_SAMartin Willi2013-06-201-2/+2
* charon-cmd: use a copy of pid in initiate callbackMartin Willi2013-06-201-6/+7
* charon-cmd: add IKEv1 aggressive mode profilesMartin Willi2013-06-203-10/+35
* NEWS: Add first bunch of 5.1.0 highlightsMartin Willi2013-06-201-0/+19
* Merge branch 'nat-transport'Martin Willi2013-06-194-60/+306
|\
| * man: update ipsec.conf.5, describing new proto/port definition within leftsubnetMartin Willi2013-06-191-24/+34
| * stroke: support %dynamic in left/rightsubnet for dynamic selectorsMartin Willi2013-06-191-2/+10
| * kernel-netlink: install selectors on SA for transport/BEET mode without proto...Martin Willi2013-06-191-0/+6
| * stroke: support a specific proto/port for each net defined in left/rightsubnetMartin Willi2013-06-191-3/+105
| * ikev2: properly fall back to tunnel mode if transport/BEET mode not configuredMartin Willi2013-06-191-2/+8
| * ikev2: support transport mode over NATMartin Willi2013-06-191-36/+150
|/
* Merge branch 'consistent-reqid'Martin Willi2013-06-194-9/+62
|\
| * ike: reuse the reqid of an installed trap having the same configMartin Willi2013-06-191-1/+5
| * trap-manager: add a method to find reqid for installed traps by configMartin Willi2013-06-192-2/+38
| * trap-manager: don't check-in nonexisting IKE_SA if acquire failsMartin Willi2013-06-191-2/+1
| * trap-manager: fix a memleak when installing a trap to %anyMartin Willi2013-06-191-0/+1
| * kernel-netlink: reject policy refcount if the reqid differsMartin Willi2013-06-191-4/+17
|/
* stroke: add exportconn{cert,chain} commands in addition to exportx509Martin Willi2013-06-195-7/+80
* Raise an alert if the responding peer narrowed traffic selectorsMartin Willi2013-06-192-7/+28
* backtrace: use backtrace_symbols() only if we have backtrace() and dladdr() f...Martin Willi2013-06-191-5/+16
* utils: Remove volatile qualifier from refcount_t typedefTobias Brunner2013-06-191-2/+1
* dhcp: search for transactions only for connections having a poolname "dhcp"Martin Willi2013-06-181-1/+6
* starter: ignore return value of sete[gu]id(), now having warn_unused_resultMartin Willi2013-06-181-5/+4
* socket-default: Make sure sockets are open when checking with FD_ISSETTobias Brunner2013-06-141-4/+4
* socket-default: Properly initialize NAT-T port if opening regular socket failedTobias Brunner2013-06-141-1/+2
* android: Forward initiator flag to libipsec when adding IPsec SATobias Brunner2013-06-131-2/+2
* libipsec: Add initiator flag to definition of ipsec_sa_mgr_t.add_sa()Tobias Brunner2013-06-131-2/+4
* Use subset matching instead of is_contained_in() to select a child_cfgMartin Willi2013-06-131-4/+8
* ha: Fix CHILD_SA installation in ha_dispatcher after adding initiator flagTobias Brunner2013-06-131-4/+8
* kernel-interface: add an exchange initiator parameter to add_sa()Martin Willi2013-06-1114-35/+46
* Merge branch 'unique-sas'Martin Willi2013-06-114-8/+20
|\
| * Use ref_get() to make sure IKE_SA unique IDs are uniqueMartin Willi2013-06-111-2/+2
| * Use ref_get() to make sure CHILD_SA reqids are uniqueMartin Willi2013-06-111-2/+9
| * utils: ref_get() returns the new value of the reference counterMartin Willi2013-06-112-4/+9
|/
* ikev1: keep vendor ID task alive during full Main/Aggressive ModeMartin Willi2013-06-111-8/+75
* Merge branch 'init-auth-fail'Martin Willi2013-06-114-2/+79
|\
| * ikev2: if installing a CHILD_SA as initiator fails, notify the responderMartin Willi2013-06-111-2/+36
| * ikev2: raise LOCAL_AUTH_FAILED when receiving INFORMATIONAL with AUTH_FAILEDMartin Willi2013-06-111-0/+8
| * ikev2: close an established IKE_SA when receiving AUTHENTICATION_FAILEDMartin Willi2013-06-111-0/+6
| * ikev2: if responder authentication fails, send AUTHENTICATION_FAILEDMartin Willi2013-06-111-0/+29
|/
* Merge branch 'scep-bind'Martin Willi2013-06-116-7/+51
|\
| * scepclient: support a --bind option to fetch from a specific source IPMartin Willi2013-06-113-6/+27
| * curl: add an option to fetch bound to a local source addressMartin Willi2013-06-113-0/+23
| * fetcher: add missing "continue" when handling FETCH_CALLBACKMartin Willi2013-06-111-1/+1
|/
* Allow IPComp on NATed connections, both for IKEv1 and IKEv2Martin Willi2013-06-112-33/+10
* leak-detective: Resolve hooked functions during initializationTobias Brunner2013-06-111-1/+4
* Properly compare CHILD_SAs during rekey collisionTobias Brunner2013-06-111-5/+12
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-08 17:30:27 +0000