aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* Show EAP/XAuth identity in "ipsec status", if availableMartin Willi2012-06-251-1/+1
|
* Use XAuth/EAP remote identity for uniqueness checkMartin Willi2012-06-253-4/+6
|
* Add missing XAuth name variable when complaining about missing XAuth backendMartin Willi2012-06-251-1/+1
|
* removed AUTHORS and CREDITSAndreas Steffen2012-06-252-110/+0
|
* some copyright additionsAndreas Steffen2012-06-231-5/+8
|
* update copyrightAndreas Steffen2012-06-231-6/+4
|
* version bump to 5.0.0Andreas Steffen2012-06-231-1/+1
|
* Fix SIGSEGV if kernel install fails during Quick Mode as responder.Tobias Brunner2012-06-221-4/+8
|
* adapted description to IKEv2Andreas Steffen2012-06-223-6/+5
|
* Fixed compile error because of charon->name in certexpire plugin.Tobias Brunner2012-06-211-0/+1
|
* fixed typoAndreas Steffen2012-06-201-1/+1
|
* added ipv6/rw-ip6-in-ip4-ikev1 scenarioAndreas Steffen2012-06-2019-0/+504
|
* added ipv6/rw-ip6-in-ip4-ikev2 scenarioAndreas Steffen2012-06-2014-0/+440
|
* Select requested virtual IP family based on remote TS, if no local TS availableMartin Willi2012-06-201-1/+12
|
* upgraded UML options to 5.0.0Andreas Steffen2012-06-192-8/+9
|
* Doxygen fix in PKCS#7 wrapperTobias Brunner2012-06-191-1/+1
|
* sleep one second moreAndreas Steffen2012-06-191-1/+1
|
* use socket-default in scenarioAndreas Steffen2012-06-192-2/+2
|
* added ikev1/xauth-id-rsa-hybrid scenarioAndreas Steffen2012-06-1814-0/+174
|
* added ikev1/xauth-id-rsa-aggressive scenarioAndreas Steffen2012-06-1814-0/+180
|
* added secret as valid authby argumentAndreas Steffen2012-06-181-1/+1
|
* rsasig is not recognized as authentication methodAndreas Steffen2012-06-1811-22/+22
|
* enable potentially unsafe aggressive modeAndreas Steffen2012-06-181-0/+2
|
* change ikev1/xauth scenarios to modern notationAndreas Steffen2012-06-1817-24/+51
|
* testing: List IPv6 routing table in IPv6 test cases.Tobias Brunner2012-06-151-2/+8
|
* NLM_F_DUMP includes NLM_F_ROOT.Tobias Brunner2012-06-151-1/+1
|
* Don't create roam jobs based on cached/cloned routes.Tobias Brunner2012-06-151-0/+4
|
* Don't compare ports when comparing cached routes.Tobias Brunner2012-06-153-6/+6
| | | | At least src_ip has a port set sometimes.
* starter: Fixed parsing of %defaultroute.Tobias Brunner2012-06-151-6/+12
|
* Adopt children as XAuth initiator (which is IKE responder)Martin Willi2012-06-141-2/+2
|
* Added 5.0 NEWS about IKEv1 in charonMartin Willi2012-06-141-0/+9
|
* Print the kind of *Swan during starter startupMartin Willi2012-06-141-1/+4
|
* Show what kind of *Swan we run in "ipsec status"Martin Willi2012-06-141-3/+16
|
* Require a scary option to respond to Aggressive Mode PSK requestsMartin Willi2012-06-141-0/+17
| | | | | | | | While Aggressive Mode PSK is widely used, it is known to be subject to dictionary attacks by passive attackers. We don't complain as initiator to be compatible with existing (insecure) setups, but require a scary strongswan.conf option if someone wants to use it as responder.
* thanks to narrowing treat right|leftsubnetwithin as synonyms for ↵Andreas Steffen2012-06-141-2/+2
| | | | right|leftsubnet
* removed plutostart parameterAndreas Steffen2012-06-13633-633/+0
|
* scepclient: Fixed Makefile after removing enable-smartcard configure option.Tobias Brunner2012-06-131-6/+0
|
* Use proper defines for IPV6_PKTINFO on Mac OS X Lion and newer.Tobias Brunner2012-06-131-0/+2
|
* Some updates to the INSTALL document.Tobias Brunner2012-06-131-85/+58
|
* Removed remaining pluto related configure options.Tobias Brunner2012-06-131-21/+3
|
* starter: Print additional help texts for selected deprecated keywords.Tobias Brunner2012-06-124-6/+25
|
* starter: Improved how deprecated keywords are handled.Tobias Brunner2012-06-124-7/+99
| | | | We only throw a warning now instead of rejecting the config.
* Revert "starter: Don't treat unsupported keywords as fatal errors just ↵Tobias Brunner2012-06-121-3/+3
| | | | | | report them." This reverts commit e55876a657ae9d4bbf14320e5a14f86cc5c31c7f.
* NEWS about specifying trustchain HASH algorithm requirementsMartin Willi2012-06-121-0/+7
|
* Add documentation for signature hash algorithm enforcing to man ipsec.confMartin Willi2012-06-121-4/+11
|
* Added signature scheme options left/rightauthMartin Willi2012-06-121-11/+99
|
* Support multiple different public key strength types in constraintsMartin Willi2012-06-121-41/+38
|
* Add signature schemes to auth_cfg during trustchain validationMartin Willi2012-06-125-19/+45
|
* certificate_t->issued_by takes an argument to receive signature schemeMartin Willi2012-06-1216-24/+68
|
* Define auth_cfg rules for signature schemesMartin Willi2012-06-122-0/+53
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-24 04:43:42 +0000