aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* kernel-netlink: Add an option to disable roam eventsTobias Brunner2013-05-032-1/+16
|
* android: Replace android-net plugin with kernel-netlinkTobias Brunner2013-05-032-3/+8
| | | | | Virtual IPs are not handled by the kernel-netlink plugin and tun devices are ignored.
* android: Set strongswan.conf options before initializing other librariesTobias Brunner2013-05-031-36/+44
|
* kernel-netlink: Define defaults for routing table and prioTobias Brunner2013-05-031-0/+8
|
* openssl: Define a default for FIPS_MODETobias Brunner2013-05-031-0/+4
|
* In memwipe_check(), don't put magic on stack when calling do_magic()Martin Willi2013-05-031-3/+3
| | | | Otherwise the magic might be on the stack while checking it.
* Dump stack if memwipe() check failsMartin Willi2013-05-031-3/+19
|
* Use attest database in tnc/tnccs-20-os scenario5.0.4Andreas Steffen2013-04-216-2/+268
|
* fixed a 64bit time_t issueAndreas Steffen2013-04-211-3/+4
|
* destroy SQL queryAndreas Steffen2013-04-211-0/+1
|
* Keep last AR IDAndreas Steffen2013-04-211-0/+2
|
* Added use of openssl-fips library to NEWSAndreas Steffen2013-04-191-0/+2
|
* check for successful activation of FIPS modeAndreas Steffen2013-04-191-1/+4
|
* install FIPS-aware OpenSSL Debian packagesAndreas Steffen2013-04-191-18/+5
|
* Added openssl-ikev2/rw-cpa scenarioAndreas Steffen2013-04-1929-0/+472
|
* build openssl-fips in KVM root-imageAndreas Steffen2013-04-195-0/+49
|
* fixed typoAndreas Steffen2013-04-191-1/+1
|
* During libstrongswan initialization, check if memwipe() works as expectedMartin Willi2013-04-181-1/+51
|
* added libstrongswan.plugins.openssl.fips_mode to man pageAndreas Steffen2013-04-161-0/+3
|
* support of OpenSSL FIPS-140-2 libraryAndreas Steffen2013-04-163-1/+21
|
* build soup plugin in KVM test environmentAndreas Steffen2013-04-152-1/+2
|
* disable reauth, tooAndreas Steffen2013-04-151-1/+2
|
* Fix checksum calculation with DESTDIR installationsTobias Brunner2013-04-151-1/+1
|
* version bump to 5.0.4Andreas Steffen2013-04-142-1/+21
|
* Added charon.initiator_only option which causes charon to ignore IKE ↵Andreas Steffen2013-04-1424-2/+277
| | | | initiation requests by peers
* Allow SHA1_Init()/SHA1_Update() to fail if OpenSSL version >= 1.0Martin Willi2013-04-101-0/+14
|
* Check RSA_public_decrypt() length before constructing and comparing a chunkMartin Willi2013-04-101-7/+10
| | | | | If decryption fails, it returns -1. chunk_equals() should catch that error, but be more explicit in error checking.
* RSA_check_key() may return -1 if it failsMartin Willi2013-04-101-2/+2
|
* RAND_bytes/RAND_pseudo_bytes returns -1 if it is not supported by RAND methodMartin Willi2013-04-101-1/+1
|
* Check return value of ECDSA_Verify() correctlyMartin Willi2013-04-101-1/+1
|
* eap-radius: Add an option to exclude ports from Called/Calling-Station-IdMartin Willi2013-04-102-9/+37
|
* version bump to 5.0.4dr1Andreas Steffen2013-04-091-1/+1
|
* fixed another printf statementAndreas Steffen2013-04-091-3/+1
|
* fixed printf statementsAndreas Steffen2013-04-082-10/+29
|
* emit a single assig_vips bus message for all VIPsAndreas Steffen2013-04-068-62/+57
|
* ifmap plugin subscribes to assing_vip bus signalAndreas Steffen2013-04-067-2/+135
|
* Added missing sasl Doxygen groupTobias Brunner2013-04-051-0/+3
|
* unity: Check IKE_SA in only after enumerating virtual IPsTobias Brunner2013-04-051-2/+1
|
* fixed configure options5.0.3Andreas Steffen2013-04-041-0/+2
|
* cleaned up XML code in tnccs-11 pluginAndreas Steffen2013-04-0413-92/+95
|
* duplicheck: track multiple IKE_SAs in checking state to avoid any racesMartin Willi2013-04-041-63/+123
| | | | | | When two consequent duplicates have been detected, track state of each checking IKE_SA separately, avoiding potential race conditions between the active SA and the different SAs in checking state.
* fixed memory leakAndreas Steffen2013-04-031-1/+1
|
* properly handle orphaned renewSession jobsAndreas Steffen2013-04-035-24/+102
|
* support chunked HTTP responsesAndreas Steffen2013-04-034-140/+370
|
* implemented periodic IF-MAP RenewSession requestAndreas Steffen2013-04-037-2/+185
|
* Refactor check_for_rekeyed_child() in quick_mode taskMartin Willi2013-04-031-18/+24
|
* Reuse reqid of an existing Quick Mode, even if it has been rekeyedMartin Willi2013-04-031-1/+2
| | | | | | If two peers rekey Quick Modes at the same time, the original Quick Mode is in REKEYING state and hence the requid is not reused. This is required though, as two identical policies won't work if they have different requids.
* List all stroke counters when "all" is given, and report if connection not knownMartin Willi2013-04-031-30/+88
|
* Defer CHILD_SA rekeying if allocating an SPI failsMartin Willi2013-04-032-12/+26
|
* Accept a certificate/key pair to use client authentication in tls_testMartin Willi2013-04-021-7/+52
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-08 17:50:44 +0000